Leap

leap

Vendor: Opensuse • 1,898 CVEs

CVEs (1,898)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-12861 3Canonical OpensuseSane Project 3Leap Sane BackendsUbuntu Linux Nov 21, 2024 Jun 24, 2020 N/A· v4 8.8 HIGH· v3 7.9 HIGH· v2 A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-080.
CVE-2020-4033 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraFreerdp+2 more Nov 21, 2024 Jun 22, 2020 N/A· v4 6.5 MEDIUM· v3 6.4 MEDIUM· v2 In FreeRDP before version 2.1.2, there is an out of bounds read in RLEDECOMPRESS. All FreeRDP based clients with sessions with color depth < 32 are affected. This is fixed in version 2.1.2.
CVE-2020-4032 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraFreerdp+2 more Nov 21, 2024 Jun 22, 2020 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 In FreeRDP before version 2.1.2, there is an integer casting vulnerability in update_recv_secondary_order. All clients with +glyph-cache /relax-order-checks are affected. This is fixed in version 2.1.2.
CVE-2020-4031 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraFreerdp+2 more Nov 21, 2024 Jun 22, 2020 N/A· v4 7.5 HIGH· v3 4.3 MEDIUM· v2 In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2.
CVE-2020-4030 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraFreerdp+2 more Nov 21, 2024 Jun 22, 2020 N/A· v4 6.5 MEDIUM· v3 6.4 MEDIUM· v2 In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse. Logging might bypass string length checks due to an integer overflow. This is fixed in version 2.1.2.
CVE-2020-11099 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraFreerdp+2 more Nov 21, 2024 Jun 22, 2020 N/A· v4 6.5 MEDIUM· v3 6.4 MEDIUM· v2 In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet. A manipulated license packet can lead to out of bound reads to an internal buffer. This is fixed in version 2...Show more In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet. A manipulated license packet can lead to out of bound reads to an internal buffer. This is fixed in version 2.1.2.Show less
CVE-2020-11098 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraFreerdp+2 more Nov 21, 2024 Jun 22, 2020 N/A· v4 6.5 MEDIUM· v3 5.8 MEDIUM· v2 In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put. This affects all FreeRDP clients with `+glyph-cache` option enabled This is fixed in version 2.1.2.
CVE-2020-11097 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraFreerdp+2 more Nov 21, 2024 Jun 22, 2020 N/A· v4 5.4 MEDIUM· v3 5.5 MEDIUM· v2 In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1...Show more In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1.2.Show less
CVE-2020-11096 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraFreerdp+2 more Nov 21, 2024 Jun 22, 2020 N/A· v4 6.5 MEDIUM· v3 6.4 MEDIUM· v2 In FreeRDP before version 2.1.2, there is a global OOB read in update_read_cache_bitmap_v3_order. As a workaround, one can disable bitmap cache with -bitmap-cache (default). This is fixed in version 2.1.2.
CVE-2020-11095 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraFreerdp+2 more Nov 21, 2024 Jun 22, 2020 N/A· v4 5.4 MEDIUM· v3 5.5 MEDIUM· v2 In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1...Show more In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1.2.Show less
CVE-2020-14983 2Chocolate Doom Opensuse 4Backports Chocolate DoomCrispy Doom+1 more Nov 21, 2024 Jun 22, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players value, leading to a buffer overflow. A malicious user can overwrite the server's stack.
CVE-2020-8933 2Google Opensuse 2Guest Oslogin Leap Nov 21, 2024 Jun 22, 2020 9.3 CRITICAL· v4 7.8 HIGH· v3 6.9 MEDIUM· v2 A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using the membership to...Show more A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using the membership to the "lxd" group, an attacker can attach host devices and filesystems. Within an lxc container, it is possible to attach the host OS filesystem and modify /etc/sudoers to then gain administrative privileges. All images created after 2020-May-07 (20200507) are fixed, and if you cannot update, we recommend you edit /etc/group/security.conf and remove the "lxd" user from the OS Login entry.Show less
CVE-2020-8907 2Google Opensuse 2Guest Oslogin Leap Nov 21, 2024 Jun 22, 2020 9.3 CRITICAL· v4 7.8 HIGH· v3 6.9 MEDIUM· v2 A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership t...Show more A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "docker" group, an attacker with this role is able to run docker and mount the host OS. Within docker, it is possible to modify the host OS filesystem and modify /etc/groups to gain administrative privileges. All images created after 2020-May-07 (20200507) are fixed, and if you cannot update, we recommend you edit /etc/group/security.conf and remove the "docker" user from the OS Login entry.Show less
CVE-2020-8903 2Google Opensuse 2Guest Oslogin Leap Nov 21, 2024 Jun 22, 2020 7.3 HIGH· v4 7.8 HIGH· v3 6.9 MEDIUM· v2 A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership t...Show more A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "adm" group, users with this role are able to read the DHCP XID from the systemd journal. Using the DHCP XID, it is then possible to set the IP address and hostname of the instance to any value, which is then stored in /etc/hosts. An attacker can then point metadata.google.internal to an arbitrary IP address and impersonate the GCE metadata server which make it is possible to instruct the OS Login PAM module to grant administrative privileges. All images created after 2020-May-07 (20200507) are fixed, and if you cannot update, we recommend you edit /etc/group/security.conf and remove the "adm" user from the OS Login entry.Show less
CVE-2020-14954 6Canonical DebianFedoraproject+3 more 6Debian Linux FedoraLeap+3 more Nov 21, 2024 Jun 21, 2020 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data (e.g., from a man-in-the-mi...Show more Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data (e.g., from a man-in-the-middle attacker) and evaluates it in a TLS context, aka "response injection."Show less
CVE-2020-8165 3Debian OpensuseRubyonrails 3Debian Linux LeapRails May 9, 2025 Jun 19, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A deserialization of untrusted data vulnernerability exists in rails < 5.2.4.3, rails < 6.0.3.1 that can allow an attacker to unmarshal user-provided objects in MemCacheStore and RedisCacheStore potentially resulting in...Show more A deserialization of untrusted data vulnernerability exists in rails < 5.2.4.3, rails < 6.0.3.1 that can allow an attacker to unmarshal user-provided objects in MemCacheStore and RedisCacheStore potentially resulting in an RCE.Show less
CVE-2020-8164 3Debian OpensuseRubyonrails 4Backports Sle Debian LinuxLeap+1 more Nov 21, 2024 Jun 19, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A deserialization of untrusted data vulnerability exists in rails < 5.2.4.3, rails < 6.0.3.1 which can allow an attacker to supply information can be inadvertently leaked fromStrong Parameters.
CVE-2017-9104 3Fedoraproject GnuOpensuse 3Adns FedoraLeap Nov 21, 2024 Jun 18, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in adns before 1.5.2. It hangs, eating CPU, if a compression pointer loop is encountered.
CVE-2017-9103 3Fedoraproject GnuOpensuse 3Adns FedoraLeap Nov 21, 2024 Jun 18, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in adns before 1.5.2. pap_mailbox822 does not properly check st from adns__findlabel_next. Without this, an uninitialised stack value can be used as the first label length. Depending on the circum...Show more An issue was discovered in adns before 1.5.2. pap_mailbox822 does not properly check st from adns__findlabel_next. Without this, an uninitialised stack value can be used as the first label length. Depending on the circumstances, an attacker might be able to trick adns into crashing the calling program, leaking aspects of the contents of some of its memory, causing it to allocate lots of memory, or perhaps overrunning a buffer. This is only possible with applications which make non-raw queries for SOA or RP records.Show less
CVE-2020-14422 4Fedoraproject OpensuseOracle+1 more 4Enterprise Manager Ops Center FedoraLeap+1 more Nov 21, 2024 Jun 18, 2020 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to cause a denial of service if an application is affected by t...Show more Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to cause a denial of service if an application is affected by the performance of a dictionary containing IPv4Interface or IPv6Interface objects, and this attacker can cause many dictionary entries to be created. This is fixed in: v3.5.10, v3.5.10rc1; v3.6.12; v3.7.9; v3.8.4, v3.8.4rc1, v3.8.5, v3.8.6, v3.8.6rc1; v3.9.0, v3.9.0b4, v3.9.0b5, v3.9.0rc1, v3.9.0rc2.Show less

Previous 1...151617...95 Next