Vulnerabilities > Opensuse > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-15 | CVE-2018-14662 | It was found Ceph versions before 13.2.4 that authenticated ceph users with read only permissions could steal dm-crypt encryption keys used in ceph disk encryption. | 5.7 |
| 2019-01-15 | CVE-2018-16846 | It was found in Ceph versions before 13.2.4 that authenticated ceph RGW users can cause a denial of service against OMAPs holding bucket indices. | 6.5 |
| 2019-01-15 | CVE-2019-3811 | A vulnerability was found in sssd. | 5.2 |
| 2018-12-28 | CVE-2018-20534 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a denial of service. | 6.5 |
| 2018-12-28 | CVE-2018-20533 | NULL Pointer Dereference vulnerability in multiple products There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service. | 6.5 |
| 2018-12-28 | CVE-2018-20532 | NULL Pointer Dereference vulnerability in multiple products There is a NULL pointer dereference at ext/testcase.c (function testcase_read) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service. | 6.5 |
| 2018-12-26 | CVE-2018-19871 | Resource Exhaustion vulnerability in multiple products An issue was discovered in Qt before 5.11.3. | 6.5 |
| 2018-12-26 | CVE-2018-19869 | Improper Input Validation vulnerability in multiple products An issue was discovered in Qt before 5.11.3. | 6.5 |
| 2018-12-26 | CVE-2018-20482 | Infinite Loop vulnerability in multiple products GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of service (infinite read loop in sparse_dump_region in sparse.c) by modifying a file that is supposed to be archived by a different user's process (e.g., a system backup running as root). | 4.7 |
| 2018-12-26 | CVE-2018-20467 | Infinite Loop vulnerability in multiple products In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption. | 6.5 |