The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Solaris

Poppler: NULL pointer dereference via SplashClip-clipAALine
An attacker can force a NULL pointer to be dereferenced via SplashClip::clipAALine() of Poppler, in order to trigger a denial of service...
bulletinapr2019, CVE-2019-10873, FEDORA-2019-cb2bff6d48, USN-4042-1, VIGILANCE-VUL-29564
ImageMagick: out-of-bounds memory reading via WritePNMImage
An attacker can force a read at an invalid address via WritePNMImage() of ImageMagick, in order to trigger a denial of service, or to obtain sensitive information...
bulletinjul2019, CVE-2019-11598, DLA-1785-1, DLA-2366-1, DSA-4712-1, openSUSE-SU-2019:1603-1, openSUSE-SU-2019:1683-1, RHSA-2020:1180-01, SUSE-SU-2019:1523-1, SUSE-SU-2019:1712-1, USN-4034-1, VIGILANCE-VUL-29555
ImageMagick: denial of service via ReadXWDImage
An attacker can trigger a fatal error via ReadXWDImage() of ImageMagick, in order to trigger a denial of service...
bulletinjul2019, CVE-2019-11472, DLA-2333-1, DSA-4712-1, FEDORA-2019-da4c20882c, openSUSE-SU-2019:1603-1, openSUSE-SU-2019:1683-1, RHSA-2020:1180-01, SUSE-SU-2019:1523-1, SUSE-SU-2019:1712-1, USN-4034-1, VIGILANCE-VUL-29554
ImageMagick: denial of service via ReadCINImage
An attacker can trigger a fatal error via ReadCINImage() of ImageMagick, in order to trigger a denial of service...
bulletinjul2019, CVE-2019-11470, DLA-1968-1, DLA-2333-1, DSA-4712-1, FEDORA-2019-da4c20882c, openSUSE-SU-2019:1603-1, openSUSE-SU-2019:1683-1, RHSA-2020:1180-01, SUSE-SU-2019:1523-1, SUSE-SU-2019:1712-1, USN-4034-1, VIGILANCE-VUL-29553
Mozilla Thunderbird: four vulnerabilities via iCal
An attacker can use several vulnerabilities via iCal of Mozilla Thunderbird...
bulletinjul2019, CERTFR-2019-AVI-273, CVE-2019-11703, CVE-2019-11704, CVE-2019-11705, CVE-2019-11706, DLA-1820-1, DSA-4464-1, MFSA-2019-17, openSUSE-SU-2019:1577-1, openSUSE-SU-2019:1583-1, openSUSE-SU-2019:1606-1, openSUSE-SU-2019:1664-1, RHSA-2019:1623-01, RHSA-2019:1624-01, RHSA-2019:1626-01, SSA:2019-164-01, SUSE-SU-2019:1495-1, SUSE-SU-2019:1683-1, USN-4028-1, VIGILANCE-VUL-29530, X41-2019-001, X41-2019-002, X41-2019-003, X41-2019-004
DBus: privilege escalation via DBUS_COOKIE_SHA1
An attacker can bypass restrictions via DBUS_COOKIE_SHA1 of DBus, in order to escalate his privileges...
CVE-2019-12749, DLA-1818-1, DSA-4462-1, FEDORA-2019-d5ded5326b, JSA10993, openSUSE-SU-2019:1604-1, openSUSE-SU-2019:1671-1, openSUSE-SU-2019:1750-1, RHSA-2019:1726-01, RHSA-2019:2868-01, RHSA-2019:2870-01, RHSA-2019:3707-01, RHSA-2020:4032-01, SUSE-SU-2019:14111-1, SUSE-SU-2019:1521-1, SUSE-SU-2019:1591-1, SUSE-SU-2019:1595-1, SUSE-SU-2019:1597-1, SUSE-SU-2019:2820-1, SUSE-SU-2019:2820-2, SUSE-SU-2020:1672-1, USN-4015-1, USN-4015-2, VIGILANCE-VUL-29515
Vim: code execution via Source Commande Modeline
An attacker can use a vulnerability via Source Commande Modeline of Vim, in order to run code...
bulletinjul2019, CERTFR-2019-AVI-267, CVE-2019-12735, DLA-1871-1, DSA-4467-1, DSA-4467-2, DSA-4487-1, FEDORA-2019-d79f89346c, FEDORA-2019-dcd49378b8, JSA10993, K93144355, openSUSE-SU-2019:1551-1, openSUSE-SU-2019:1561-1, openSUSE-SU-2019:1562-1, openSUSE-SU-2019:1759-1, openSUSE-SU-2019:1997-1, RHBUG-1718308, RHSA-2019:1619-01, RHSA-2019:1774-01, RHSA-2019:1793-01, SUSE-SU-2019:14078-1, SUSE-SU-2019:1456-1, SUSE-SU-2019:1457-1, USN-4016-1, USN-4016-2, VIGILANCE-VUL-29493
GLib: file reading via file_copy_fallback
A local attacker can read a file via file_copy_fallback() of GLib, in order to obtain sensitive information...
bulletinjul2019, CVE-2019-12450, DLA-1826-1, FEDORA-2019-c18d2bd1bd, openSUSE-SU-2019:1650-1, RHSA-2019:3530-01, RHSA-2020:3978-01, SUSE-SU-2019:14102-1, SUSE-SU-2019:1594-1, SUSE-SU-2019:1596-1, SUSE-SU-2019:1722-1, USN-4014-1, USN-4014-2, VIGILANCE-VUL-29488
Poppler: out-of-bounds memory reading via JPXStream-init
An attacker can force a read at an invalid address via JPXStream::init() of Poppler, in order to trigger a denial of service, or to obtain sensitive information...
bulletinoct2019, CVE-2019-12293, DLA-1815-1, DLA-2287-1, FEDORA-2019-0ea42f074e, FEDORA-2019-cb2bff6d48, RHSA-2019:2713-01, RHSA-2020:1074-01, USN-4042-1, VIGILANCE-VUL-29482
Django: Cross Site Scripting via AdminURLFieldWidget
An attacker can trigger a Cross Site Scripting via AdminURLFieldWidget of Django, in order to run JavaScript code in the context of the web site...
bulletinoct2019, CVE-2019-12308, DLA-1814-1, DLA-1842-1, DSA-4476-1, FEDORA-2019-57a4324120, openSUSE-SU-2019:1839-1, openSUSE-SU-2019:1872-1, USN-4043-1, VIGILANCE-VUL-29469
Our database contains other pages. You can request a free trial to read them.

Display information about Solaris: