High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-08	CVE-2019-11745	Out-of-bounds Write vulnerability in multiple products When encrypting with a block cipher, if a call to NSC_EncryptUpdate was made with data smaller than the block size, a small out of bounds write could occur. network low complexity mozilla opensuse canonical debian redhat siemens CWE-787	8.8
2020-01-03	CVE-2020-5496	Out-of-bounds Write vulnerability in multiple products FontForge 20190801 has a heap-based buffer overflow in the Type2NotDefSplines() function in splinesave.c. network low complexity fontforge opensuse CWE-787	8.8
2020-01-03	CVE-2020-5395	Use After Free vulnerability in multiple products FontForge 20190801 has a use-after-free in SFD_GetFontMetaData in sfd.c. network low complexity fontforge fedoraproject opensuse CWE-416	8.8
2019-12-27	CVE-2019-20014	Double Free vulnerability in multiple products An issue was discovered in GNU LibreDWG before 0.93. network low complexity gnu opensuse CWE-415	8.8
2019-12-27	CVE-2019-20011	Out-of-bounds Read vulnerability in multiple products An issue was discovered in GNU LibreDWG 0.92. network low complexity gnu opensuse CWE-125	8.8
2019-12-27	CVE-2019-20010	Use After Free vulnerability in multiple products An issue was discovered in GNU LibreDWG 0.92. network low complexity gnu opensuse CWE-416	8.8
2019-12-26	CVE-2019-15695	Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. network low complexity tigervnc opensuse CWE-754	7.2
2019-12-26	CVE-2019-15694	Out-of-bounds Write vulnerability in multiple products TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow, which could be triggered from DecodeManager::decodeRect. network low complexity tigervnc opensuse CWE-787	7.2
2019-12-26	CVE-2019-15692	Out-of-bounds Write vulnerability in multiple products TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow. network low complexity tigervnc opensuse CWE-787	7.2
2019-12-26	CVE-2019-15691	Operation on a Resource after Expiration or Release vulnerability in multiple products TigerVNC version prior to 1.10.1 is vulnerable to stack use-after-return, which occurs due to incorrect usage of stack memory in ZRLEDecoder. network low complexity tigervnc opensuse CWE-672	7.2