The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Sun Solaris

Ruby: code execution via FTP Pipe File
An attacker can use a vulnerability via FTP Pipe File of Ruby, in order to run code...
bulletinjan2019, CVE-2017-17405, DLA-1221-1, DLA-1222-1, DLA-1421-1, DSA-4259-1, HT208937, HT209193, RHSA-2018:0378-01, RHSA-2018:0583-01, RHSA-2018:0584-01, RHSA-2018:0585-01, RHSA-2019:2806-01, SSA:2017-353-01, SUSE-SU-2020:1570-1, USN-3515-1, VIGILANCE-VUL-24840
GIMP: buffer overflow via PSP
An attacker can generate a buffer overflow via PSP of GIMP, in order to trigger a denial of service, and possibly to run code...
790849, bulletinapr2018, CVE-2017-17789, DLA-1220-1, DSA-4077-1, FEDORA-2018-67b75f73fa, FEDORA-2018-ccef1ced42, openSUSE-SU-2020:1420-1, SUSE-SU-2020:2603-1, SUSE-SU-2020:2604-1, USN-3539-1, VIGILANCE-VUL-24828
GIMP: out-of-bounds memory reading via GBR
An attacker can force a read at an invalid address via GBR of GIMP, in order to trigger a denial of service, or to obtain sensitive information...
790784, bulletinapr2018, CVE-2017-17784, DLA-1220-1, DSA-4077-1, FEDORA-2018-67b75f73fa, FEDORA-2018-ccef1ced42, USN-3539-1, VIGILANCE-VUL-24827
Mercurial: code execution via Malformed Repository
An attacker can use a vulnerability via Malformed Repository of Mercurial, in order to run code...
bulletinjan2019, CVE-2017-17458, DLA-1224-1, DLA-1414-1, DLA-1414-2, DLA-2293-1, openSUSE-SU-2017:3355-1, VIGILANCE-VUL-24788
Bouncy Castle: information disclosure via ROBOT Attack
An attacker can bypass access restrictions to data via ROBOT Attack (VIGILANCE-VUL-24749) of Bouncy Castle, in order to obtain sensitive information...
bulletinjan2019, CVE-2017-13098, DSA-4072-1, FEDORA-2018-ceced55c5e, FEDORA-2018-da9fe79871, JSA11023, openSUSE-SU-2018:1689-1, openSUSE-SU-2018:2131-1, openSUSE-SU-2020:0607-1, VIGILANCE-VUL-24750
libsndfile: out-of-bounds memory reading via d2ulaw_array
An attacker can force a read at an invalid address via d2ulaw_array() of libsndfile, in order to trigger a denial of service, or to obtain sensitive information...
344, bulletinoct2018, CVE-2017-14246, CVE-2017-17457-REJECT, DLA-1618-1, openSUSE-SU-2018:2209-1, openSUSE-SU-2018:2214-1, SUSE-SU-2018:2065-1, SUSE-SU-2018:2074-1, SUSE-SU-2019:14008-1, USN-4013-1, VIGILANCE-VUL-24702
libsndfile: out-of-bounds memory reading via d2alaw_array
An attacker can force a read at an invalid address via d2alaw_array() of libsndfile, in order to trigger a denial of service, or to obtain sensitive information...
344, bulletinoct2018, CVE-2017-14245, CVE-2017-17456-REJECT, DLA-1618-1, openSUSE-SU-2018:2209-1, openSUSE-SU-2018:2214-1, SUSE-SU-2018:2065-1, SUSE-SU-2018:2074-1, SUSE-SU-2019:14008-1, USN-4013-1, VIGILANCE-VUL-24701
Erlang/OTP: Man-in-the-Middle via ROBOT Attack
An attacker can act as a Man-in-the-Middle via a ROBOT Attack (VIGILANCE-VUL-24749) on Erlang/OTP, in order to read or write data in the session...
bulletinjan2019, CVE-2017-1000385, DLA-1207-1, DSA-4057-1, FEDORA-2017-93b6236635, FEDORA-2017-9e6df1e099, openSUSE-SU-2017:3255-1, openSUSE-SU-2017:3257-1, USN-3571-1, VIGILANCE-VUL-24699
OpenSSL: information disclosure via rsaz_1024_mul_avx2
An attacker can bypass access restrictions to data via rsaz_1024_mul_avx2() of OpenSSL, in order to obtain sensitive information...
2014324, bulletinapr2018, bulletinjan2018, CERTFR-2017-AVI-452, CERTFR-2018-AVI-155, cpuapr2018, cpuapr2019, cpujan2018, cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2017-3738, DSA-2020-062, DSA-4065-1, DSA-4157-1, FEDORA-2017-e6be32cb7a, FreeBSD-SA-17:12.openssl, ibm10716907, ibm10717405, ibm10717409, ibm10719113, JSA10851, openSUSE-SU-2017:3345-1, openSUSE-SU-2018:0029-1, openSUSE-SU-2018:0315-1, RHSA-2018:0998-01, SA159, SSA:2017-342-01, SUSE-SU-2019:14246-1, swg21647054, USN-3512-1, VIGILANCE-VUL-24698
OpenSSL: information disclosure via SSL_read/SSL_write After Error
An attacker can bypass access restrictions to data via SSL_read/SSL_write After Error of OpenSSL, in order to obtain sensitive information...
2014324, bulletinapr2018, bulletinjan2018, CERTFR-2017-AVI-452, CERTFR-2018-AVI-376, cpuapr2018, cpujan2018, cpujul2018, cpujul2019, CVE-2017-3737, DSA-2020-062, DSA-4065-1, FreeBSD-SA-17:12.openssl, ibm10715641, ibm10716907, ibm10717405, ibm10717409, ibm10719113, ibm10738249, JSA10851, JSA10873, openSUSE-SU-2017:3345-1, openSUSE-SU-2018:0223-1, openSUSE-SU-2018:1057-1, RHSA-2018:0998-01, SA159, SSA-179516, SSA:2017-342-01, swg21647054, USN-3512-1, VIGILANCE-VUL-24697
Our database contains other pages. You can request a free trial to read them.

Display information about Sun Solaris: