Computer vulnerabilities of openSUSE

libsrtp: buffer overflow via crypto_policy_set_from_profile_for_rtp
An attacker can trigger a buffer overflow via crypto_policy_set_from_profile_for_rtp() of libsrtp, in order to trigger a denial of service, and possibly to run code...
CVE-2013-2139, DSA-2840-1, FEDORA-2013-24114, FEDORA-2013-24153, FEDORA-2013-24155, MDVSA-2014:219, openSUSE-SU-2013:1258-1, openSUSE-SU-2014:1250-1, RHSA-2020:3873-01, VIGILANCE-VUL-33458

OpenVPN: out-of-bounds memory reading via resolve_remote
An attacker can force a read at an invalid address via resolve_remote() of OpenVPN, in order to trigger a denial of service, or to obtain sensitive information...
959714, FEDORA-2016-51195e6b92, FEDORA-2016-e91ca003d4, openSUSE-SU-2016:0710-1, SUSE-SU-2020:14468-1, SUSE-SU-2020:2359-1, VIGILANCE-VUL-33189

lighttpd: use after free via FAMMonitorDirectory
An attacker can force the usage of a freed memory area via FAMMonitorDirectory of lighttpd, in order to trigger a denial of service, and possibly to run code...
CVE-2013-4560, DSA-2795-1, DSA-2795-2, FEDORA-2014-2495, FEDORA-2014-2506, MDVSA-2013:277, openSUSE-SU-2014:0072-1, VIGILANCE-VUL-31822

lighttpd: privilege escalation via setuid/setgid/setgroups Unchecked Return Values
An attacker can bypass restrictions via setuid/setgid/setgroups Unchecked Return Values of lighttpd, in order to escalate his privileges...
CVE-2013-4559, DSA-2795-1, DSA-2795-2, FEDORA-2014-2495, FEDORA-2014-2506, MDVSA-2013:277, openSUSE-SU-2014:0072-1, SB10310, VIGILANCE-VUL-31821

Cacti: code execution via Data Input Method
An attacker can use a vulnerability via Data Input Method of Cacti, in order to run code...
CVE-2009-4112, DSA-1954-1, openSUSE-SU-2020:0272-1, openSUSE-SU-2020:0284-1, openSUSE-SU-2020:0558-1, openSUSE-SU-2020:0565-1, SUSE-SR:2009:020, VIGILANCE-VUL-31715

libjpeg-turbo: denial of service via Exif Marker
An attacker can generate a fatal error via Exif Marker of libjpeg-turbo, in order to trigger a denial of service...
CVE-2014-9092, FEDORA-2014-17543, FEDORA-2014-17561, FEDORA-2015-2580, FEDORA-2015-2615, MDVSA-2015:014, MDVSA-2015:152, openSUSE-SU-2014:1637-1, USN-3706-1, USN-3706-2, VIGILANCE-VUL-26665

libmodplug: buffer overflow via abc_MIDI_drum/gchord
An attacker can generate a buffer overflow via abc_MIDI_drum/gchord() of libmodplug, in order to trigger a denial of service, and possibly to run code...
CVE-2013-4234, DSA-2751-1, FEDORA-2014-3791, FEDORA-2014-3795, MDVSA-2013:232, openSUSE-SU-2013:1635-1, openSUSE-SU-2013:1637-1, SUSE-SU-2018:1441-1, VIGILANCE-VUL-26243

rrdtool: vulnerability
A vulnerability of rrdtool was announced...
CVE-2013-2131, FEDORA-2013-10309, openSUSE-SU-2014:1646-1, openSUSE-SU-2018:0474-1, VIGILANCE-VUL-25327

Open Build Service: write access via cpio
An attacker can bypass access restrictions via cpio of Open Build Service, in order to alter data...
CVE-2010-4226, openSUSE-SU-2011:0174-1, openSUSE-SU-2017:3259-1, SUSE-SR:2011:005, SUSE-SU-2017:3253-1, VIGILANCE-VUL-24709

Snack Sound Toolkit: buffer overflow via GetWavHeader
An attacker can generate a buffer overflow via GetWavHeader of Snack Sound Toolkit, in order to trigger a denial of service, and possibly to run code...
CVE-2012-6303, FEDORA-2013-0098, FEDORA-2013-0110, MDVSA-2013:126, openSUSE-SU-2015:0382-1, openSUSE-SU-2017:3016-1, VIGILANCE-VUL-24451

Our database contains other pages. You can request a free trial to read them.

Display information about openSUSE:

https://www.opensuse.org/