Leap

DATE	CVE	VULNERABILITY TITLE	RISK
2019-08-02	CVE-2019-14524	Out-of-bounds Write vulnerability in multiple products An issue was discovered in Schism Tracker through 20190722. local low complexity schismtracker opensuse CWE-787	7.8
2019-08-01	CVE-2019-14492	Out-of-bounds Read vulnerability in multiple products An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. network low complexity opencv opensuse CWE-125	5.0
2019-07-31	CVE-2019-10185	Path Traversal vulnerability in multiple products It was found that icedtea-web up to and including 1.7.2 and 1.8.2 was vulnerable to a zip-slip attack during auto-extraction of a JAR file. network low complexity icedtea-web-project debian opensuse CWE-22	8.6
2019-07-31	CVE-2019-10181	Insufficient Verification of Data Authenticity vulnerability in multiple products It was found that in icedtea-web up to and including 1.7.2 and 1.8.2 executable code could be injected in a JAR file without compromising the signature verification. network high complexity icedtea-web-project debian opensuse CWE-345	8.1
2019-07-31	CVE-2019-5060	Integer Overflow or Wraparound vulnerability in multiple products An exploitable code execution vulnerability exists in the XPM image rendering function of SDL2_image 2.0.4. network libsdl opensuse CWE-190	6.8
2019-07-31	CVE-2019-5059	Integer Overflow or Wraparound vulnerability in multiple products An exploitable code execution vulnerability exists in the XPM image rendering functionality of SDL2_image 2.0.4. network libsdl opensuse CWE-190	6.8
2019-07-31	CVE-2019-5058	Out-of-bounds Write vulnerability in multiple products An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. network libsdl opensuse CWE-787	6.8
2019-07-31	CVE-2019-5057	Out-of-bounds Write vulnerability in multiple products An exploitable code execution vulnerability exists in the PCX image-rendering functionality of SDL2_image 2.0.4. network libsdl opensuse CWE-787	6.8
2019-07-30	CVE-2019-10163	Allocation of Resources Without Limits or Throttling vulnerability in multiple products A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to cause a high CPU load or even prevent any further updates to any slave zone by sending a large number of NOTIFY messages. network low complexity powerdns opensuse CWE-770	4.3
2019-07-30	CVE-2019-5460	Double Free vulnerability in multiple products Double Free in VLC versions <= 3.0.6 leads to a crash. local low complexity videolan opensuse CWE-415	5.5