Enterprise Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-14	CVE-2012-1168	Improper Input Validation vulnerability in multiple products Moodle before 2.2.2 has a password and web services issue where when the user profile is updated the user password is reset if not specified. network low complexity moodle fedoraproject redhat CWE-20	8.2
2019-11-14	CVE-2012-1156	Information Exposure Through Log Files vulnerability in multiple products Moodle before 2.2.2 has users' private files included in course backups network low complexity moodle fedoraproject redhat CWE-532	7.5
2019-11-14	CVE-2012-1155	Information Exposure vulnerability in multiple products Moodle has a database activity export permission issue where the export function of the database activity module exports all entries even those from groups the user does not belong to network low complexity moodle fedoraproject redhat debian CWE-200	7.5
2019-11-14	CVE-2011-1145	Classic Buffer Overflow vulnerability in multiple products The SQLDriverConnect() function in unixODBC before 2.2.14p2 have a possible buffer overflow condition when specifying a large value for SAVEFILE parameter in the connection string. local low complexity unixodbc debian opensuse redhat CWE-120	7.8
2019-11-13	CVE-2010-4664	Improper Privilege Management vulnerability in multiple products In ConsoleKit before 0.4.2, an intended security policy restriction bypass was found. network low complexity consolekit-project debian redhat CWE-269	8.8
2019-11-13	CVE-2010-4661	Unrestricted Upload of File with Dangerous Type vulnerability in multiple products udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules. local low complexity udisks-project redhat debian opensuse fedoraproject CWE-434	7.8
2019-11-13	CVE-2010-4657	Missing Release of Resource after Effective Lifetime vulnerability in multiple products PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAttribute, which are then misparsed by libxml2. network low complexity php redhat debian CWE-772	7.5
2019-11-12	CVE-2011-2897	Improper Input Validation vulnerability in multiple products gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw network low complexity gnome redhat debian CWE-20 critical	9.8
2019-11-08	CVE-2019-14824	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products A flaw was found in the 'deref' plugin of 389-ds-base where it could use the 'search' permission to display attribute values. network low complexity fedoraproject redhat debian CWE-732	6.5
2019-11-07	CVE-2019-18811	Memory Leak vulnerability in multiple products A memory leak in the sof_set_get_large_ctrl_data() function in sound/soc/sof/ipc.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering sof_get_ctrl_copy_params() failures, aka CID-45c1380358b1. local low complexity linux fedoraproject redhat CWE-401	5.5