High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-02-08	CVE-2019-11484	Integer Overflow or Wraparound vulnerability in multiple products Kevin Backhouse discovered an integer overflow in bson_ensure_space, as used in whoopsie. local low complexity whoopsie-project canonical CWE-190	7.8
2020-02-08	CVE-2019-11481	Link Following vulnerability in multiple products Kevin Backhouse discovered that apport would read a user-supplied configuration file with elevated privileges. local low complexity canonical apport-project CWE-59	7.8
2020-02-06	CVE-2014-2030	Out-of-bounds Write vulnerability in multiple products Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick, possibly 6.8.8-5, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PSD image, involving the L%06ld string, a different vulnerability than CVE-2014-1947. network low complexity imagemagick canonical opensuse CWE-787	8.8
2020-02-06	CVE-2014-1958	Classic Buffer Overflow vulnerability in multiple products Buffer overflow in the DecodePSDPixels function in coders/psd.c in ImageMagick before 6.8.8-5 might allow remote attackers to execute arbitrary code via a crafted PSD image, involving the L%06ld string, a different vulnerability than CVE-2014-2030. network low complexity imagemagick canonical opensuse CWE-120	8.8
2020-02-06	CVE-2016-9928	Improper Privilege Management vulnerability in multiple products MCabber before 1.0.4 is vulnerable to roster push attacks, which allows remote attackers to intercept communications, or add themselves as an entity on a 3rd party's roster as another user, which will also garner associated privileges, via crafted XMPP packets. network high complexity mcabber canonical debian CWE-269	7.4
2020-02-06	CVE-2020-8648	Use After Free vulnerability in multiple products There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c. local low complexity linux debian opensuse netapp broadcom canonical CWE-416	7.1
2020-02-05	CVE-2020-3123	Out-of-bounds Read vulnerability in multiple products A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. network low complexity clamav canonical CWE-125	7.5
2020-02-04	CVE-2019-12528	An issue was discovered in Squid before 4.10. network low complexity squid-cache fedoraproject debian opensuse canonical	7.5
2020-02-04	CVE-2020-8517	Out-of-bounds Write vulnerability in multiple products An issue was discovered in Squid before 4.10. network low complexity squid-cache opensuse canonical CWE-787	7.5
2020-02-04	CVE-2020-8450	Incorrect Calculation of Buffer Size vulnerability in multiple products An issue was discovered in Squid before 4.10. network low complexity squid-cache canonical opensuse fedoraproject debian CWE-131	7.3