The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Solaris

Dnsmasq: memory leak via DHCP Response Creation
An attacker can create a memory leak via DHCP Response Creation of Dnsmasq, in order to trigger a denial of service...
CVE-2019-14834, JSA11174, JSA11176, openSUSE-SU-2019:2669-1, RHSA-2020:1715-01, RHSA-2020:3878-01, SUSE-SU-2019:3188-1, SUSE-SU-2019:3189-1, SUSE-SU-2020:0419-1, VIGILANCE-VUL-31070
Wireshark: denial of service via CMS
An attacker can send malicious CMS packets to Wireshark, in order to trigger a denial of service...
CERTFR-2019-AVI-608, cpuapr2020, CVE-2019-19553, DLA-2547-1, openSUSE-SU-2020:0362-1, SUSE-SU-2020:0693-1, VIGILANCE-VUL-31067, wnpa-sec-2019-22
Oniguruma: four vulnerabilities
An attacker can use several vulnerabilities of Oniguruma...
CVE-2019-19012, CVE-2019-19203, CVE-2019-19204, CVE-2019-19246, DLA-2020-1, DLA 2431-1, DLA-2431-2, FEDORA-2019-73197ff9a0, FEDORA-2019-d942abd0d4, RHSA-2020:3662-01, RHSA-2020:5275-01, USN-4460-1, VIGILANCE-VUL-31057
Python Pillow: denial of service via Image Files
An attacker can trigger a fatal error via Image Files of Python Pillow, in order to trigger a denial of service...
CVE-2019-16865, DSA-4631-1, FEDORA-2019-19a161d540, FEDORA-2019-e7c83bdf19, JSA11174, JSA11176, RHSA-2020:0566-01, RHSA-2020:0578-01, RHSA-2020:0580-01, USN-4272-1, VIGILANCE-VUL-31027
mod_auth_mellon: open redirect via Login ReturnTo
An attacker can deceive the user via Login ReturnTo of mod_auth_mellon, in order to redirect him to a malicious site...
bulletinapr2020, CVE-2019-13038, FEDORA-2019-1444823e77, FEDORA-2019-e8d74ece30, RHSA-2020:1003-01, RHSA-2020:1660-01, USN-4291-1, VIGILANCE-VUL-31013
ProFTPD: NULL pointer dereference via sk_X509_REVOKED_value tls_verify_crl
An attacker can force a NULL pointer to be dereferenced via sk_X509_REVOKED_value() tls_verify_crl() of ProFTPD, in order to trigger a denial of service...
861, cpuapr2020, CVE-2019-19269, DLA-2018-1, FEDORA-2019-65a983b8b6, FEDORA-2019-bfacf1e958, openSUSE-SU-2020:0031-1, VIGILANCE-VUL-31010
ProFTPD: privilege escalation via CRL Entry Revoked Certificates tls_verify_crl
An attacker can bypass restrictions via CRL Entry Revoked Certificates tls_verify_crl() of ProFTPD, in order to escalate his privileges...
859, CVE-2019-19270, FEDORA-2019-65a983b8b6, FEDORA-2019-bfacf1e958, openSUSE-SU-2020:0031-1, VIGILANCE-VUL-31008
SQLite: denial of service via Sub-Select DISTINCT Window
An attacker can trigger a fatal error via Sub-Select DISTINCT Window of SQLite, in order to trigger a denial of service...
cpuapr2020, CVE-2019-19244, SSB-439005, USN-4205-1, VIGILANCE-VUL-30980
GnuPG: information disclosure via Chosen-Prefix SHA-1 Collisions
An attacker can bypass access restrictions to data via Chosen-Prefix SHA-1 Collisions (VIGILANCE-VUL-31290) of GnuPG, in order to obtain sensitive information...
CVE-2019-14855, USN-4516-1, VIGILANCE-VUL-30973
Mozilla NSS: buffer overflow via NSC_EncryptUpdate
An attacker can trigger a buffer overflow via NSC_EncryptUpdate() of Mozilla NSS, in order to trigger a denial of service, and possibly to run code...
CVE-2019-11745, DLA-2008-1, DLA-2388-1, DSA-4579-1, FEDORA-2019-3f6ab3b846, FEDORA-2019-8fbc65ef9e, JSA11110, JSA11174, JSA11176, MFSA-2019-36, MFSA-2019-37, MFSA-2019-38, openSUSE-SU-2020:0002-1, openSUSE-SU-2020:0003-1, openSUSE-SU-2020:0008-1, RHSA-2019:4114-01, RHSA-2019:4152-01, RHSA-2019:4190-01, RHSA-2020:0243-01, RHSA-2020:0466-01, RHSA-2020:1267-01, RHSA-2020:1345-01, RHSA-2020:1461-01, SSA:2019-337-01, SSA-379803, SUSE-SU-2019:14260-1, SUSE-SU-2019:3337-1, SUSE-SU-2019:3339-1, SUSE-SU-2019:3347-1, SUSE-SU-2019:3395-1, SUSE-SU-2020:14418-1, USN-4203-1, USN-4203-2, USN-4216-1, USN-4241-1, VIGILANCE-VUL-30971
Our database contains other pages. You can request a free trial to read them.

Display information about Solaris: