Vulnerabilities > Opensuse > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-29 | CVE-2020-15393 | Memory Leak vulnerability in multiple products In the Linux kernel 4.4 through 5.7.6, usbtest_disconnect in drivers/usb/misc/usbtest.c has a memory leak, aka CID-28ebeb8db770. | 5.5 |
| 2020-06-29 | CVE-2020-8024 | Unspecified vulnerability in Opensuse Hylafax+ 5.6.1Lp151.3.7/7.0.22.1 A Incorrect Default Permissions vulnerability in the packaging of hylafax+ of openSUSE Leap 15.2, openSUSE Leap 15.1, openSUSE Factory allows local attackers to escalate from user uucp to users calling hylafax binaries. | 5.3 |
| 2020-06-26 | CVE-2020-10769 | Out-of-bounds Read vulnerability in multiple products A buffer over-read flaw was found in RH kernel versions before 5.0 in crypto_authenc_extractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module, authenc. | 5.5 |
| 2020-06-26 | CVE-2020-10753 | Injection vulnerability in multiple products A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway). | 6.5 |
| 2020-06-26 | CVE-2020-15306 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in OpenEXR before v2.5.2. | 5.5 |
| 2020-06-26 | CVE-2020-15305 | Use After Free vulnerability in multiple products An issue was discovered in OpenEXR before 2.5.2. | 5.5 |
| 2020-06-26 | CVE-2020-15304 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in OpenEXR before 2.5.2. | 5.5 |
| 2020-06-24 | CVE-2020-15025 | Memory Leak vulnerability in multiple products ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service (memory consumption) by sending packets, because memory is not freed in situations where a CMAC key is used and associated with a CMAC algorithm in the ntp.keys file. | 4.9 |
| 2020-06-24 | CVE-2020-12866 | NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, GHSL-2020-079. | 5.7 |
| 2020-06-24 | CVE-2020-12864 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-081. | 4.3 |