The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of CentOS

RHEL: denial of service via Core Dumping mmget_not_zero
An attacker can trigger a fatal error via Core Dumping mmget_not_zero() of RHEL, in order to trigger a denial of service...
CERTFR-2020-AVI-071, CVE-2019-14898, RHBUG-1774671, RHSA-2020:0328-01, RHSA-2020:0339-01, RHSA-2020:0374-01, RHSA-2020:0375-01, VIGILANCE-VUL-31508
QEMU: memory corruption via iSCSI Block Driver
An attacker, inside a guest system, can trigger a memory corruption via iSCSI Block Driver of QEMU, in order to trigger a denial of service, and possibly to run code on the host system...
CVE-2020-1711, DLA-2144-1, DSA-4616-1, RHSA-2020:0669-01, USN-4283-1, VIGILANCE-VUL-31422
ReportLab: code execution via toColor eval
An attacker can use a vulnerability via toColor eval of ReportLab, in order to run code...
CVE-2019-17626, DLA-2112-1, openSUSE-SU-2020:0160-1, RHSA-2020:0195-01, RHSA-2020:0197-01, RHSA-2020:0201-01, RHSA-2020:0230-01, SUSE-SU-2020:0255-1, SUSE-SU-2020:0324-1, USN-4273-1, VIGILANCE-VUL-31394
Mozilla NSS: information disclosure via HelloRetryRequest Lower Protocol Negotiation
An attacker can bypass access restrictions to data via HelloRetryRequest Lower Protocol Negotiation of Mozilla NSS, in order to obtain sensitive information...
1590001, CERTFR-2020-AVI-019, CVE-2019-17023, DLA-2061-1, DLA-2071-1, DSA-4600-1, DSA-4603-1, FEDORA-2020-01411d96d5, FEDORA-2020-72912bb14c, FEDORA-2020-9254bf8b94, FEDORA-2020-d18d24c943, FEDORA-2020-d4b0f42d01, MFSA-2020-01, MFSA-2020-02, MFSA-2020-04, openSUSE-SU-2020:0060-1, RHSA-2020:0085-01, RHSA-2020:0086-01, RHSA-2020:0111-01, RHSA-2020:0120-01, RHSA-2020:0123-01, RHSA-2020:0127-01, SSA:2020-006-01, SSA:2020-010-01, SSA:2020-024-01, SUSE-SU-2020:0068-1, SUSE-SU-2020:0078-1, SUSE-SU-2020:14268-1, USN-4234-1, USN-4241-1, VIGILANCE-VUL-31378
SLiRP: buffer overflow via tcp_emu
An attacker, inside a guest system, can trigger a buffer overflow via tcp_emu() of SLiRP, in order to trigger a denial of service, and possibly to run code on the host system...
CVE-2020-7039, DLA-2076-1, DLA-2090-1, DSA-4616-1, RHSA-2020:0348-01, RHSA-2020:0775-01, RHSA-2020:0889-01, USN-4283-1, VIGILANCE-VUL-31350
Pillow: buffer overflow via PCX P Mode
An attacker can trigger a buffer overflow via PCX P Mode of Pillow, in order to trigger a denial of service, and possibly to run code...
CVE-2020-5312, DLA-2057-1, DSA-4631-1, FEDORA-2020-5cdbb19cca, FEDORA-2020-df444e464e, RHSA-2020:0566-01, RHSA-2020:0578-01, RHSA-2020:0580-01, RHSA-2020:0898-01, USN-4272-1, VIGILANCE-VUL-31261
SQLite: five vulnerabilities
An attacker can use several vulnerabilities of SQLite...
CVE-2019-13734, CVE-2019-13750, CVE-2019-13751, CVE-2019-13752, CVE-2019-13753, DSA-4606-1, FEDORA-2019-1a10c04281, openSUSE-SU-2019:2692-1, openSUSE-SU-2019:2694-1, RHSA-2019:4238-01, RHSA-2020:0227-01, RHSA-2020:0229-01, RHSA-2020:0273-01, USN-4298-1, VIGILANCE-VUL-31234
TigerVNC: multiple vulnerabilities
An attacker can use several vulnerabilities of TigerVNC...
CVE-2019-15690, CVE-2019-15691, CVE-2019-15692, CVE-2019-15693, CVE-2019-15694, CVE-2019-15695, DLA-2146-1, openSUSE-SU-2020:0087-1, RHSA-2020:0913-01, RHSA-2020:0920-01, RHSA-2020:0921-01, SSA:2019-354-02, SUSE-SU-2020:0112-1, SUSE-SU-2020:0113-1, SUSE-SU-2020:0159-1, SUSE-SU-2020:0266-1, VIGILANCE-VUL-31231
libyang: buffer overflow via make_canonical
An attacker can trigger a buffer overflow via make_canonical() of libyang, in order to trigger a denial of service, and possibly to run code...
CVE-2019-19333, CVE-2019-19334, RHSA-2019:4360-01, VIGILANCE-VUL-31230
RHEL 8 kpatch-patch: denial of service via Machine Check Error On Page Size Change
An attacker can trigger a fatal error via Machine Check Error On Page Size Change of RHEL 8 kpatch-patch, in order to trigger a denial of service...
CVE-2019-19339, RHSA-2019:4245-01, VIGILANCE-VUL-31167
Our database contains other pages. You can request a free trial to read them.

Display information about CentOS: