The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Unix - platform ~ not comprehensive

Enigmail: creation of fake status messages
An attacker can create fake status messages in GnuPG, in order to deceive the victime...
CVE-2018-12019, FEDORA-2018-a4bb79ea75, FEDORA-2018-fd67c19256, openSUSE-SU-2018:1706-1, openSUSE-SU-2018:1708-1, SUSE-SU-2018:2243-1, VIGILANCE-VUL-26424
GnuPG: creation of fake status messages
An attacker can create fake status messages in GnuPG, in order to deceive the victime...
bulletinjul2018, CVE-2018-12020, DSA-2020-030, DSA-4222-1, DSA-4223-1, FEDORA-2018-4ef71d3525, FEDORA-2018-69780fc4d7, FEDORA-2018-a4e13742b4, JSA10917, openSUSE-SU-2018:1706-1, openSUSE-SU-2018:1708-1, openSUSE-SU-2018:1722-1, openSUSE-SU-2018:1724-1, RHSA-2018:2180-01, RHSA-2018:2181-01, SSA:2018-159-01, SSA:2018-170-01, SUSE-SU-2018:1696-1, SUSE-SU-2018:1698-1, SUSE-SU-2018:2243-1, T4012, USN-3675-1, USN-3675-2, USN-3675-3, USN-3964-1, VIGILANCE-VUL-26364
Python urllib3: information disclosure via CRLF Injection
An attacker can bypass access restrictions to data via CRLF Injection of Python urllib3, in order to obtain sensitive information...
1553, bulletinjul2019, CVE-2019-11236, DLA-1828-1, FEDORA-2019-20bc611b61, FEDORA-2019-fbda9f1e49, openSUSE-SU-2019:2131-1, openSUSE-SU-2019:2133-1, RHSA-2019:2272-01, RHSA-2019:3335-01, RHSA-2019:3590-01, RHSA-2020:0850-01, RHSA-2020:0851-01, RHSA-2020:1605-01, RHSA-2020:1916-01, RHSA-2020:2068-01, RHSA-2020:2081-01, SUSE-SU-2019:2331-1, SUSE-SU-2019:2332-1, SUSE-SU-2019:2370-1, USN-3990-1, USN-3990-2, VIGILANCE-VUL-29042
Wget: buffer overflow via IRI
An attacker can trigger a buffer overflow of Wget, in order to trigger a denial of service, and possibly to run code...
bulletinjul2019, CVE-2019-5953, DLA-1760-1, DSA-2019-093, DSA-4425-1, FEDORA-2019-7a0497cbc2, FEDORA-2019-9f891cd83a, openSUSE-SU-2019:1236-1, openSUSE-SU-2019:1281-1, RHSA-2019:1228-01, RHSA-2019:2979-01, RHSA-2019:3168-01, SSA:2019-092-02, SSA:2019-095-02, SUSE-SU-2019:0956-1, USN-3943-1, USN-3943-2, VIGILANCE-VUL-28929
GnuTLS: use after free via X.509 Certificate Verification
An attacker can force the usage of a freed memory area via X.509 Certificate Verification of GnuTLS, in order to trigger a denial of service, and possibly to run code...
1772, CVE-2019-3829, FEDORA-2019-46df367eed, GNUTLS-SA-2019-03-27, openSUSE-SU-2019:1353-1, RHSA-2019:3600-01, SSA:2019-086-01, SUSE-SU-2019:1121-1, SUSE-SU-2019:1351-1, USN-3999-1, VIGILANCE-VUL-28882
GnuTLS: out-of-bounds memory reading via TLS1.3 Asynchronous Message
An attacker can force a read at an invalid address via TLS1.3 Asynchronous Message of GnuTLS, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2019-3836, FEDORA-2019-46df367eed, GNUTLS-SA-2019-03-27, openSUSE-SU-2019:1353-1, RHSA-2019:3600-01, SSA:2019-086-01, SUSE-SU-2019:1121-1, SUSE-SU-2019:1351-1, USN-3999-1, VIGILANCE-VUL-28881
libssh2: multiple vulnerabilities
An attacker can use several vulnerabilities of libssh2...
bulletinjul2019, CERTFR-2019-AVI-573, cpujan2020, CVE-2019-3855, CVE-2019-3856, CVE-2019-3857, CVE-2019-3858, CVE-2019-3859, CVE-2019-3860, CVE-2019-3861, CVE-2019-3862, CVE-2019-3863, DLA-1730-1, DLA-1730-2, DLA-1730-3, DLA-1730-4, DSA-2019-093, DSA-2019-131, DSA-2019-133, DSA-4431-1, FEDORA-2019-3348cb4934, FEDORA-2019-f31c14682f, FG-IR-19-099, JSA11023, openSUSE-SU-2019:1075-1, openSUSE-SU-2019:1109-1, openSUSE-SU-2019:1290-1, openSUSE-SU-2019:1291-1, openSUSE-SU-2019:1640-1, RHSA-2019:0679-01, RHSA-2019:1175-01, RHSA-2019:1652-01, RHSA-2019:1791-01, RHSA-2019:1884-01, RHSA-2019:1943-01, RHSA-2019:2136-01, RHSA-2019:2399-01, SSA:2019-077-01, SUSE-SU-2019:0655-1, SUSE-SU-2019:1059-1, SUSE-SU-2019:1060-1, SUSE-SU-2019:13982-1, SUSE-SU-2019:13997-1, SUSE-SU-2019:14031-1, SUSE-SU-2019:14032-1, SUSE-SU-2019:14098-1, SUSE-SU-2019:14099-1, SUSE-SU-2019:1606-1, SUSE-SU-2019:1606-2, VIGILANCE-VUL-28768
XMLTooling: denial of service via Malformed XML Declaration
An attacker can trigger a fatal error via Malformed XML Declaration of XMLTooling, in order to trigger a denial of service...
CVE-2019-9628, DLA-1710-1, DSA-4407-1, openSUSE-SU-2019:1235-1, openSUSE-SU-2019:1276-1, SUSE-SU-2019:0928-1, SUSE-SU-2019:0929-1, USN-3921-1, VIGILANCE-VUL-28709
runc: code execution via FS Descriptors Container Escape
An attacker can use a vulnerability via FS Descriptors Container Escape of runc, in order to run code...
CVE-2019-5736, FEDORA-2019-2baa1f7b19, FEDORA-2019-352d4b9cd8, FEDORA-2019-3f19f13ecd, FEDORA-2019-4dc1e39b34, FEDORA-2019-6174b47003, FEDORA-2019-829524f28f, FEDORA-2019-963ea958f9, FEDORA-2019-a5f616808e, FEDORA-2019-bc70b381ad, FEDORA-2019-c1dac1b3b8, FEDORA-2019-df2e68aa6b, FEDORA-2019-f455ef79b8, openSUSE-SU-2019:0170-1, openSUSE-SU-2019:0201-1, openSUSE-SU-2019:0208-1, openSUSE-SU-2019:0252-1, openSUSE-SU-2019:0295-1, openSUSE-SU-2019:1079-1, openSUSE-SU-2019:1227-1, openSUSE-SU-2019:1230-1, openSUSE-SU-2019:1275-1, openSUSE-SU-2019:1444-1, openSUSE-SU-2019:1481-1, openSUSE-SU-2019:1499-1, openSUSE-SU-2019:1506-1, openSUSE-SU-2019:2021-1, openSUSE-SU-2019:2245-1, openSUSE-SU-2019:2286-1, RHSA-2019:0303-01, RHSA-2019:0304-01, SSA:2019-043-01, SUSE-SU-2019:0362-1, SUSE-SU-2019:0495-1, SUSE-SU-2019:0573-1, SUSE-SU-2019:1234-1, SUSE-SU-2019:1234-2, SUSE-SU-2019:1264-1, SUSE-SU-2019:2117-1, SUSE-SU-2019:2119-1, Synology-SA-19:06, USN-4048-1, VIGILANCE-VUL-28477
Kubernetes Dashboard: privilege escalation via Service Account
An attacker can bypass restrictions via Service Account of Kubernetes Dashboard, in order to escalate his privileges...
CVE-2018-18264, VIGILANCE-VUL-28174
Our database contains other pages. You can request a free trial to read them.