Vulnerabilities > Opensuse > Leap
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-08-02 | CVE-2019-14524 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in Schism Tracker through 20190722. | 7.8 |
2019-08-01 | CVE-2019-14492 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. | 5.0 |
2019-07-31 | CVE-2019-10185 | Path Traversal vulnerability in multiple products It was found that icedtea-web up to and including 1.7.2 and 1.8.2 was vulnerable to a zip-slip attack during auto-extraction of a JAR file. | 8.6 |
2019-07-31 | CVE-2019-10181 | Insufficient Verification of Data Authenticity vulnerability in multiple products It was found that in icedtea-web up to and including 1.7.2 and 1.8.2 executable code could be injected in a JAR file without compromising the signature verification. | 8.1 |
2019-07-31 | CVE-2019-5060 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable code execution vulnerability exists in the XPM image rendering function of SDL2_image 2.0.4. | 6.8 |
2019-07-31 | CVE-2019-5059 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable code execution vulnerability exists in the XPM image rendering functionality of SDL2_image 2.0.4. | 6.8 |
2019-07-31 | CVE-2019-5058 | Out-of-bounds Write vulnerability in multiple products An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. | 6.8 |
2019-07-31 | CVE-2019-5057 | Out-of-bounds Write vulnerability in multiple products An exploitable code execution vulnerability exists in the PCX image-rendering functionality of SDL2_image 2.0.4. | 6.8 |
2019-07-30 | CVE-2019-10163 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to cause a high CPU load or even prevent any further updates to any slave zone by sending a large number of NOTIFY messages. | 4.3 |
2019-07-30 | CVE-2019-5460 | Double Free vulnerability in multiple products Double Free in VLC versions <= 3.0.6 leads to a crash. | 5.5 |