The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Slackware

libexif12: denial of service
An attacker can trigger a fatal error of libexif12, in order to trigger a denial of service...
CVE-2020-12767, DLA-2214-1, SSA:2020-140-02, USN-4358-1, VIGILANCE-VUL-32272
Linux kernel: out-of-bounds memory reading via wait_til_ready
An attacker can force a read at an invalid address via wait_til_ready() of the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information...
CERTFR-2020-AVI-241, CERTFR-2020-AVI-242, CERTFR-2020-AVI-252, CERTFR-2020-AVI-256, CERTFR-2020-AVI-260, CERTFR-2020-AVI-281, CERTFR-2020-AVI-318, CVE-2020-9383, openSUSE-SU-2020:0388-1, RHSA-2020:2104-01, SSA:2020-086-01, SUSE-SU-2020:0836-1, SUSE-SU-2020:1084-1, SUSE-SU-2020:1085-1, SUSE-SU-2020:1087-1, SUSE-SU-2020:1118-1, SUSE-SU-2020:1119-1, SUSE-SU-2020:1123-1, SUSE-SU-2020:1141-1, SUSE-SU-2020:1142-1, SUSE-SU-2020:1255-1, SUSE-SU-2020:14354-1, USN-4342-1, USN-4344-1, USN-4345-1, USN-4346-1, VIGILANCE-VUL-31888
Linux kernel: memory corruption via ashmem
An attacker can trigger a memory corruption via ashmem of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
CVE-2020-0009, SSA:2020-086-01, VIGILANCE-VUL-31887
usrsctp: out-of-bounds memory reading via sctp_load_addresses_from_init
An attacker can force a read at an invalid address via sctp_load_addresses_from_init() of usrsctp, in order to trigger a denial of service, or to obtain sensitive information...
ADV200002, bulletinapr2020, CVE-2019-20503, DLA-2140-1, DLA-2150-1, DSA-4639-1, DSA-4642-1, DSA-4645-1, FEDORA-2020-18f712ef2d, FEDORA-2020-39e0b8bd14, FEDORA-2020-b00f3fbb69, HT201222, HT211168, MFSA-2020-08, MFSA2020-08, MFSA-2020-09, MFSA2020-09, MFSA-2020-10, MFSA2020-10, openSUSE-SU-2020:0340-1, openSUSE-SU-2020:0365-1, openSUSE-SU-2020:0366-1, openSUSE-SU-2020:0389-1, RHSA-2020:0815-01, RHSA-2020:0816-01, RHSA-2020:0819-01, RHSA-2020:0820-01, RHSA-2020:0905-01, RHSA-2020:0914-01, RHSA-2020:0918-01, RHSA-2020:0919-01, RHSA-2020:1270-01, SSA:2020-070-01, SSA:2020-073-01, SUSE-SU-2020:0686-1, SUSE-SU-2020:0717-1, SUSE-SU-2020:0721-1, SUSE-SU-2020:14312-1, USN-4299-1, USN-4328-1, USN-4335-1, VIGILANCE-VUL-31834
tcpdump: out-of-bounds memory reading via EXTRACT_32BITS
An attacker can force a read at an invalid address via EXTRACT_32BITS() of tcpdump, in order to trigger a denial of service, or to obtain sensitive information...
bulletinapr2020, CVE-2018-14466, CVE-2018-19325-REJECT, DLA-1955-1, DLA-1967-1, DSA-2019-168, DSA-2019-169, DSA-4547-1, FEDORA-2019-6db0d5b9d9, FEDORA-2019-85d92df70f, FEDORA-2019-b92ce3144a, FEDORA-2019-d06bc63433, FEDORA-2019-eaa681d33e, HT210788, K04367730, K44551633, K56551263, K86252029, openSUSE-SU-2019:2343-1, openSUSE-SU-2019:2344-1, openSUSE-SU-2019:2345-1, openSUSE-SU-2019:2348-1, SSA:2019-274-01, SUSE-SU-2019:14191-1, SUSE-SU-2019:2669-1, SUSE-SU-2019:2674-1, USN-4221-1, USN-4221-2, USN-4252-1, USN-4252-2, VIGILANCE-VUL-31803
gd: information disclosure via gdImageCreateFromXbm
An attacker can bypass access restrictions to data via gdImageCreateFromXbm() of gd, in order to obtain sensitive information...
CVE-2019-11038, openSUSE-SU-2020:0332-1, SSA:2020-083-01, SUSE-SU-2020:0623-1, USN-4316-1, USN-4316-2, VIGILANCE-VUL-31749
Linux kernel: privilege escalation via KVM Nested VMX
An attacker, inside a guest system, can bypass restrictions via KVM Nested VMX of the Linux kernel, in order to escalate his privileges on the host system...
CERTFR-2020-AVI-124, CERTFR-2020-AVI-154, CERTFR-2020-AVI-241, CERTFR-2020-AVI-256, CERTFR-2020-AVI-281, CERTFR-2020-AVI-295, CERTFR-2020-AVI-318, CVE-2020-2732, DSA-4667-1, FEDORA-2020-227a4c0530, FEDORA-2020-fe00e12580, openSUSE-SU-2020:0336-1, RHSA-2020:2102-01, RHSA-2020:2171-01, SSA:2020-086-01, SUSE-SU-2020:0558-1, SUSE-SU-2020:0559-1, SUSE-SU-2020:0560-1, SUSE-SU-2020:0649-1, SUSE-SU-2020:0667-1, SUSE-SU-2020:0688-1, SUSE-SU-2020:1087-1, SUSE-SU-2020:1142-1, SUSE-SU-2020:1255-1, USN-4300-1, USN-4301-1, USN-4302-1, USN-4303-1, USN-4303-2, VIGILANCE-VUL-31677
ProFTPD: information disclosure via Ftpasswd File Permissions
An attacker can bypass access restrictions to data via Ftpasswd File Permissions of ProFTPD, in order to obtain sensitive information...
898, SSA:2020-051-01, VIGILANCE-VUL-31629
libgd: NULL pointer dereference via gdImageClone
An attacker can force a NULL pointer to be dereferenced via gdImageClone() of libgd, in order to trigger a denial of service...
CVE-2018-14553, DLA-2106-1, openSUSE-SU-2020:0332-1, SSA:2020-083-01, SUSE-SU-2020:0594-1, SUSE-SU-2020:0623-1, USN-4316-1, USN-4316-2, VIGILANCE-VUL-31617
libarchive: denial of service via RAR5
An attacker can trigger a fatal error via RAR5 of libarchive, in order to trigger a denial of service...
SSA:2020-043-01, VIGILANCE-VUL-31595
Our database contains other pages. You can request a free trial to read them.

Display information about Slackware: