CVEs (1,898)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
4Canonical DebianLinux+1 more4Debian Linux LeapLinux Kernel+1 moreNov 21, 2024 Jul 3, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.14. A denial of service (out-of-bounds memory access and BUG) can occur upon encountering an abnormal bitmap size when mounting a crafted f2fs imag...Show more |
3Canonical File ProjectOpensuse3File LeapUbuntu LinuxNov 21, 2024 Jun 11, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The do_core_note function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted ELF file. |
3Canonical LiblouisOpensuse3Leap LiblouisUbuntu LinuxNov 21, 2024 Jun 9, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Liblouis 3.6.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440. |
3Canonical LiblouisOpensuse3Leap LiblouisUbuntu LinuxNov 21, 2024 Jun 4, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Liblouis 3.5.0 has a stack-based Buffer Overflow in the function compileHyphenation in compileTranslationTable.c. |
3Canonical LiblouisOpensuse3Leap LiblouisUbuntu LinuxNov 21, 2024 Jun 4, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Liblouis 3.5.0 has a stack-based Buffer Overflow in the function includeFile in compileTranslationTable.c. |
3Canonical LiblouisOpensuse3Leap LiblouisUbuntu LinuxNov 21, 2024 Jun 4, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440. |
3Canonical LiblouisOpensuse3Leap LiblouisUbuntu LinuxNov 21, 2024 May 31, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Liblouis 3.5.0 has a Segmentation fault in lou_logPrint in logging.c. |
3Canonical LiblouisOpensuse3Leap LiblouisUbuntu LinuxNov 21, 2024 May 25, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c. |
4Canonical DebianOpensuse+1 more4Debian Linux LeapProcps Ng+1 moreDec 17, 2025 May 23, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 procps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. This vulnerability is mitigated by FORTIFY, as it involves strncat() to a stack-allocated string. When pgrep is compiled with FORTIFY (as...Show more |
6Canonical DebianOpensuse+3 more9Debian Linux Enterprise LinuxEnterprise Linux Desktop+6 moreNov 21, 2024 May 23, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escalation for a local attacker who can create entries in procfs b...Show more |
7Canonical DebianIjg+4 more13Debian Linux Enterprise Linux DesktopEnterprise Linux Server+10 moreNov 21, 2024 May 16, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file. |
2Opensuse Postgresql2Leap PostgresqlNov 21, 2024 May 10, 2018 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, a...Show more |
3Debian KdeOpensuse3Debian Linux LeapPlasmaNov 21, 2024 May 8, 2018 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 kwallet-pam in KDE KWallet before 5.12.6 allows local users to obtain ownership of arbitrary files via a symlink attack. |
3Gnome OpensuseRedhat6Ansible Tower Enterprise Linux DesktopEnterprise Linux Server+3 moreNov 21, 2024 May 4, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 There is a heap-based buffer over-read in the function ft_font_face_hash of gxps-fonts.c in libgxps through 0.3.0. A crafted input will lead to a remote denial of service attack. |
3Debian OpensuseRedhat6Debian Linux Enterprise Linux ServerGluster Storage+3 moreNov 21, 2024 Apr 18, 2018 N/A· v4 8.1 HIGH· v3 6.8 MEDIUM· v2 A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious...Show more |
4Canonical OpensuseQemu+1 more9Enterprise Linux Desktop Enterprise Linux ServerEnterprise Linux Server Aus+6 moreNov 21, 2024 Mar 12, 2018 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Quick Emulator (aka QEMU), when built with the Cirrus CLGD 54xx VGA Emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds access and QEMU process crash) by leveraging incorr...Show more |
4Debian LibtiffOpensuse+1 more5Debian Linux Enterprise LinuxLeap+2 moreNov 21, 2024 Mar 12, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Buffer overflow in the PixarLogDecode function in tif_pixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a craft...Show more |
xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when decoding PNG comment fields, leading to crashes or potentially code execution, because it uses an incorrect length value. |
The packaging of NextCloud in openSUSE used /srv/www/htdocs in an unsafe manner, which could have allowed scripts running as wwwrun user to escalate privileges to root during nextcloud package upgrade. |
2Opensuse Suse2Leap Linux Enterprise Software Development KitNov 21, 2024 Mar 1, 2018 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 The build package before 20171128 did not check directory names during extraction of build results that allowed untrusted builds to write outside of the target system,allowing escape out of buildroots. |