Vulnerabilities > Opensuse > Leap

DATE CVE VULNERABILITY TITLE RISK
2020-06-22 CVE-2020-4032 In FreeRDP before version 2.1.2, there is an integer casting vulnerability in update_recv_secondary_order.
network
low complexity
freerdp opensuse fedoraproject canonical debian
4.3
4.3
2020-06-22 CVE-2020-4031 In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject.
network
low complexity
freerdp fedoraproject opensuse canonical debian
7.5
7.5
2020-06-22 CVE-2020-4030 In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse.
network
low complexity
freerdp fedoraproject opensuse canonical debian
6.5
6.5
2020-06-22 CVE-2020-11099 In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet.
network
low complexity
freerdp opensuse fedoraproject canonical debian
6.5
6.5
2020-06-22 CVE-2020-11098 In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put.
network
low complexity
freerdp fedoraproject opensuse canonical debian
6.5
6.5
2020-06-22 CVE-2020-11097 In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES.
network
low complexity
freerdp fedoraproject opensuse canonical debian
5.4
5.4
2020-06-22 CVE-2020-11096 In FreeRDP before version 2.1.2, there is a global OOB read in update_read_cache_bitmap_v3_order.
network
low complexity
freerdp fedoraproject opensuse canonical debian
6.5
6.5
2020-06-22 CVE-2020-11095 In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES.
network
low complexity
freerdp fedoraproject opensuse canonical debian
5.4
5.4
2020-06-22 CVE-2020-14983 Classic Buffer Overflow vulnerability in multiple products
The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players value, leading to a buffer overflow.
network
low complexity
chocolate-doom opensuse CWE-120
critical
 9.8
9.8
2020-06-22 CVE-2020-8933 Incorrect Default Permissions vulnerability in multiple products
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root.
local
low complexity
google opensuse CWE-276
7.8
7.8