The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Unix - platform ~ not comprehensive

runc: code execution via FS Descriptors Container Escape
An attacker can use a vulnerability via FS Descriptors Container Escape of runc, in order to run code...
CVE-2019-5736, FEDORA-2019-2baa1f7b19, FEDORA-2019-352d4b9cd8, FEDORA-2019-3f19f13ecd, FEDORA-2019-4dc1e39b34, FEDORA-2019-6174b47003, FEDORA-2019-829524f28f, FEDORA-2019-963ea958f9, FEDORA-2019-a5f616808e, FEDORA-2019-bc70b381ad, FEDORA-2019-c1dac1b3b8, FEDORA-2019-df2e68aa6b, FEDORA-2019-f455ef79b8, openSUSE-SU-2019:0170-1, openSUSE-SU-2019:0201-1, openSUSE-SU-2019:0208-1, openSUSE-SU-2019:0252-1, openSUSE-SU-2019:0295-1, openSUSE-SU-2019:1079-1, openSUSE-SU-2019:1227-1, openSUSE-SU-2019:1230-1, openSUSE-SU-2019:1275-1, openSUSE-SU-2019:1444-1, openSUSE-SU-2019:1481-1, openSUSE-SU-2019:1499-1, openSUSE-SU-2019:1506-1, openSUSE-SU-2019:2021-1, openSUSE-SU-2019:2245-1, openSUSE-SU-2019:2286-1, RHSA-2019:0303-01, RHSA-2019:0304-01, SSA:2019-043-01, SUSE-SU-2019:0362-1, SUSE-SU-2019:0495-1, SUSE-SU-2019:0573-1, SUSE-SU-2019:1234-1, SUSE-SU-2019:1234-2, SUSE-SU-2019:1264-1, SUSE-SU-2019:2117-1, SUSE-SU-2019:2119-1, Synology-SA-19:06, USN-4048-1, VIGILANCE-VUL-28477
Kubernetes Dashboard: privilege escalation via Service Account
An attacker can bypass restrictions via Service Account of Kubernetes Dashboard, in order to escalate his privileges...
CVE-2018-18264, VIGILANCE-VUL-28174
OpenJPEG: denial of service via pi_next_pcrl
An attacker can trigger a fatal error via pi_next_pcrl() of OpenJPEG, in order to trigger a denial of service...
bulletinjul2019, CVE-2018-14423, DLA-1614-1, DSA-4405-1, SSA:2019-095-01, USN-4109-1, VIGILANCE-VUL-28081
OpenJPEG: infinite loop via opj_t1_encode_cblks
An attacker can trigger an infinite loop via opj_t1_encode_cblks() of OpenJPEG, in order to trigger a denial of service...
bulletinjul2019, bulletinoct2019, CVE-2018-6616, DLA-1614-1, DSA-4405-1, FEDORA-2018-200c84e08a, FEDORA-2018-87c15da28c, SSA:2019-095-01, USN-4109-1, VIGILANCE-VUL-28080
F5 BIG-IP APM Client: privilege escalation via Linux/macOS
An attacker can bypass restrictions via Linux/macOS of F5 BIG-IP APM Client, in order to escalate his privileges...
CVE-2018-15332, K12130880, VIGILANCE-VUL-27970
OpenJPEG: NULL pointer dereference via imagetopnm
An attacker can force a NULL pointer to be dereferenced via imagetopnm() of OpenJPEG, in order to trigger a denial of service...
CVE-2018-18088, DLA-1579-1, DSA-4405-1, FEDORA-2018-200c84e08a, FEDORA-2018-87c15da28c, SSA:2019-095-01, USN-4109-1, VIGILANCE-VUL-27829
SSD drives: information disclosure via Self Encrypting Password Weaknesses
An attacker can decrypt data of some SSD drives (Crucial, Micron and Samsung were tested), by using either a Master Password or a weakness in the password management...
ADV180028, CVE-2018-12037, CVE-2018-12038, VIGILANCE-VUL-27724, VU#395981
Intel processors: information disclosure via SMT/Hyper-Threading PortSmash
An attacker can bypass access restrictions to data via SMT/Hyper-Threading PortSmash on an Intel processor, in order to obtain sensitive information...
530514, bulletinjan2019, CERTFR-2019-AVI-242, cpuapr2019, cpuapr2020, cpujan2019, cpujan2020, cpujul2019, CVE-2018-5407, DSA-2018-030, DSA-2019-197, DSA-2020-030, DSA-4348-1, DSA-4355-1, ibm10794537, K49711130, openSUSE-SU-2018:4050-1, openSUSE-SU-2018:4104-1, openSUSE-SU-2019:0088-1, openSUSE-SU-2019:0234-1, RHSA-2019:2125-01, SUSE-SU-2018:3964-1, SUSE-SU-2018:3989-1, SUSE-SU-2018:4001-1, SUSE-SU-2018:4068-1, SUSE-SU-2018:4274-1, SUSE-SU-2019:0117-1, SUSE-SU-2019:0395-1, SUSE-SU-2019:1553-1, USN-3840-1, VIGILANCE-VUL-27667
Apache Tomcat JK mod_jk: information disclosure via Reverse Proxy
An attacker can bypass access restrictions to data via Reverse Proxy of Apache Tomcat JK mod_jk, in order to obtain sensitive information...
bulletinjan2019, CVE-2018-11759, DLA-1609-1, DSA-4357-1, openSUSE-SU-2018:4032-1, SUSE-SU-2018:3963-1, SUSE-SU-2018:3963-2, SUSE-SU-2018:3969-1, SUSE-SU-2018:3970-1, VIGILANCE-VUL-27665
OpenJPEG: integer overflow via opj_j2k_setup_encoder
An attacker can generate an integer overflow via opj_j2k_setup_encoder() of OpenJPEG, in order to trigger a denial of service, and possibly to run code...
bulletinjul2019, CVE-2018-5785, DSA-4405-1, FEDORA-2018-64d64bd05e, FEDORA-2018-a71b957c50, SSA:2019-095-01, USN-4109-1, VIGILANCE-VUL-27496
Our database contains other pages. You can request a free trial to read them.