Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-11-27	CVE-2020-27746	Race Condition vulnerability in multiple products Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 magic cookies is affected by a race condition in a read operation on the /proc filesystem. network schedmd debian CWE-362	4.3
2020-11-27	CVE-2020-27745	Classic Buffer Overflow vulnerability in multiple products Slurm before 19.05.8 and 20.x before 20.02.6 has an RPC Buffer Overflow in the PMIx MPI plugin. network schedmd debian CWE-120	6.8
2020-11-26	CVE-2020-29130	Out-of-bounds Read vulnerability in multiple products slirp.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length. network low complexity libslirp-project debian fedoraproject CWE-125	4.3
2020-11-26	CVE-2020-29129	Out-of-bounds Read vulnerability in multiple products ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length. network low complexity libslirp-project fedoraproject debian CWE-125	4.3
2020-11-26	CVE-2020-25653	Race Condition vulnerability in multiple products A race condition vulnerability was found in the way the spice-vdagentd daemon handled new client connections. local high complexity spice-space debian fedoraproject CWE-362	6.3
2020-11-26	CVE-2020-25652	Allocation of Resources Without Limits or Throttling vulnerability in multiple products A flaw was found in the spice-vdagentd daemon, where it did not properly handle client connections that can be established via the UNIX domain socket in `/run/spice-vdagentd/spice-vdagent-sock`. local low complexity spice-space debian fedoraproject CWE-770	5.5
2020-11-26	CVE-2020-25651	Race Condition vulnerability in multiple products A flaw was found in the SPICE file transfer protocol. local high complexity spice-space debian fedoraproject CWE-362	6.4
2020-11-25	CVE-2020-25650	Allocation of Resources Without Limits or Throttling vulnerability in multiple products A flaw was found in the way the spice-vdagentd daemon handled file transfers from the host system to the virtual machine. local low complexity spice-space debian fedoraproject CWE-770	5.5
2020-11-24	CVE-2020-28928	Out-of-bounds Write vulnerability in multiple products In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access (buffer overflow). local low complexity musl-libc debian fedoraproject oracle CWE-787	5.5
2020-11-23	CVE-2020-0569	Out-of-bounds Write vulnerability in multiple products Out of bounds write in Intel(R) PROSet/Wireless WiFi products on Windows 10 may allow an authenticated user to potentially enable denial of service via local access. low complexity intel debian canonical opensuse qt CWE-787	5.7