| 2018-11-12 | CVE-2018-19214 | Out-of-bounds Read vulnerability in multiple products
Netwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for insufficient input. | 7.8 |
| 2018-10-31 | CVE-2018-14651 | It was found that the fix for CVE-2018-10927, CVE-2018-10928, CVE-2018-10929, CVE-2018-10930, and CVE-2018-10926 was incomplete. | 8.8 |
| 2018-10-24 | CVE-2016-10730 | Permissions, Privileges, and Access Controls vulnerability in multiple products
An issue was discovered in Amanda 3.3.1. | 7.8 |
| 2018-10-24 | CVE-2016-10729 | Command Injection vulnerability in multiple products
An issue was discovered in Amanda 3.3.1. | 7.8 |
| 2018-09-28 | CVE-2018-14648 | Resource Exhaustion vulnerability in multiple products
A flaw was found in 389 Directory Server. | 7.5 |
| 2018-09-21 | CVE-2018-14645 | Out-of-bounds Read vulnerability in multiple products
A flaw was discovered in the HPACK decoder of HAProxy, before 1.8.14, that is used for HTTP/2. | 7.5 |
| 2018-09-05 | CVE-2018-16540 | Use After Free vulnerability in multiple products
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a use-after-free in copydevice handling to crash the interpreter or possibly have unspecified other impact. | 7.8 |
| 2018-09-04 | CVE-2018-10928 | A flaw was found in RPC request using gfs3_symlink_req in glusterfs server which allows symlink destinations to point to file paths outside of the gluster volume. | 8.8 |
| 2018-09-04 | CVE-2018-10926 | A flaw was found in RPC request using gfs3_mknod_req supported by glusterfs server. | 8.8 |
| 2018-08-30 | CVE-2018-14622 | Unchecked Return Value vulnerability in multiple products
A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. | 7.5 |