Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-25	CVE-2019-14891	Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products A flaw was found in cri-o, as a result of all pod-related processes being placed in the same memory cgroup. network high complexity kubernetes fedoraproject redhat CWE-754	5.0
2019-11-22	CVE-2015-7810	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files local high complexity videolan redhat fedoraproject debian CWE-367	4.7
2019-11-21	CVE-2019-19221	Out-of-bounds Read vulnerability in multiple products In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. local low complexity libarchive debian fedoraproject canonical CWE-125	5.5
2019-11-21	CVE-2015-2793	Cross-site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in templates/openid-selector.tmpl in ikiwiki before 3.20150329 allows remote attackers to inject arbitrary web script or HTML via the openid_identifier parameter in a verify action to ikiwiki.cgi. network low complexity ikiwiki fedoraproject CWE-79	6.1
2019-11-20	CVE-2012-6136	Incorrect Default Permissions vulnerability in multiple products tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes. local low complexity redhat fedoraproject debian CWE-276	5.5
2019-11-19	CVE-2011-2924	Link Following vulnerability in multiple products foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. local low complexity linuxfoundation debian fedoraproject CWE-59	5.5
2019-11-18	CVE-2014-5118	Improper Input Validation vulnerability in multiple products Trusted Boot (tboot) before 1.8.2 has a 'loader.c' Security Bypass Vulnerability local low complexity trusted-boot-project redhat fedoraproject CWE-20	5.5
2019-11-18	CVE-2019-19073	Memory Leak vulnerability in multiple products Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. local low complexity linux fedoraproject opensuse CWE-401	4.0
2019-11-18	CVE-2019-19072	Memory Leak vulnerability in multiple products A memory leak in the predicate_parse() function in kernel/trace/trace_events_filter.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-96c5c6e6a5b6. local low complexity canonical fedoraproject redhat linux CWE-401	4.4
2019-11-18	CVE-2019-19068	Memory Leak vulnerability in multiple products A memory leak in the rtl8xxxu_submit_int_urb() function in drivers/net/wireless/realtek/rtl8xxxu/rtl8xxxu_core.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering usb_submit_urb() failures, aka CID-a2cdd07488e6. low complexity linux redhat debian canonical fedoraproject opensuse CWE-401	4.6