CVEs (1,454)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
4Debian GoogleOpensuse+1 more7Chrome Debian LinuxEnterprise Linux Desktop Supplementary+4 moreMay 6, 2026 Jul 23, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 content/browser/web_contents/web_contents_impl.cc in Google Chrome before 44.0.2403.89 does not ensure that a PDF document's modal dialog is closed upon navigation to an interstitial page, which allows remote attackers t...Show more |
4Debian GoogleOpensuse+1 more7Chrome Debian LinuxEnterprise Linux Desktop Supplementary+4 moreMay 6, 2026 Jul 23, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 Use-after-free vulnerability in the accessibility implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging lack of c...Show more |
4Debian GoogleOpensuse+1 more7Chrome Debian LinuxEnterprise Linux Desktop Supplementary+4 moreMay 6, 2026 Jul 23, 2015 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Use-after-free vulnerability in content/browser/indexed_db/indexed_db_backing_store.cc in the IndexedDB implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly...Show more |
Cross-site scripting (XSS) vulnerability in org/chromium/chrome/browser/UrlUtilities.java in Google Chrome before 44.0.2403.89 on Android allows remote attackers to inject arbitrary web script or HTML via a crafted inten...Show more |
4Debian GoogleOpensuse+1 more6Chrome Debian LinuxEnterprise Linux Desktop Supplementary+3 moreMay 6, 2026 Jul 23, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 44.0.2403.89 does not ensure that the auto-open list omits all dangerous file types, which makes it easier for remote attackers to execute arbitrary code by providing a crafted file and leveraging a...Show more |
4Debian GoogleOpensuse+1 more7Chrome Debian LinuxEnterprise Linux Desktop Supplementary+4 moreMay 6, 2026 Jul 23, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Heap-based buffer overflow in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service or possibly have unspecified other impact via inv...Show more |
4Debian GoogleOpensuse+1 more7Chrome Debian LinuxEnterprise Linux Desktop Supplementary+4 moreMay 6, 2026 Jul 23, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 Use-after-free vulnerability in the GPU process implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging the continu...Show more |
4Debian GoogleOpensuse+1 more7Chrome Debian LinuxEnterprise Linux Desktop Supplementary+4 moreMay 6, 2026 Jul 23, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 PDFium, as used in Google Chrome before 44.0.2403.89, does not properly handle certain out-of-memory conditions, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have un...Show more |
5Debian GoogleOpensuse+2 more8Chrome Debian LinuxEnterprise Linux Desktop Supplementary+5 moreMay 6, 2026 Jul 23, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The ucnv_io_getConverterName function in common/ucnv_io.cpp in International Components for Unicode (ICU), as used in Google Chrome before 44.0.2403.89, mishandles converter names with initial x- substrings, which allows...Show more |
6Canonical DebianMariadb+3 more11Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+8 moreMay 6, 2026 Jul 16, 2015 N/A· v4 N/A· v3 3.5 LOW· v2 Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier and 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer. |
6Canonical DebianMariadb+3 more12Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+9 moreMay 6, 2026 Jul 16, 2015 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to Server : I_S. |
6Canonical DebianMariadb+3 more12Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+9 moreMay 6, 2026 Jul 16, 2015 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to DML. |
6Canonical DebianMariadb+3 more12Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+9 moreMay 6, 2026 Jul 16, 2015 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer. |
6Canonical DebianOpensuse+3 more21Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+18 moreApr 21, 2026 Jul 16, 2015 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries...Show more |
4Adobe OpensuseRedhat+1 more11Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+8 moreApr 21, 2026 Jul 8, 2015 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 o...Show more |
6Canonical DebianHaproxy+3 more12Debian Linux Enterprise Linux DesktopEnterprise Linux Server+9 moreMay 6, 2026 Jul 6, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The buffer_slow_realign function in HAProxy 1.5.x before 1.5.14 and 1.6-dev does not properly realign a buffer that is used for pending outgoing data, which allows remote attackers to obtain sensitive information (uninit...Show more |
3Fedoraproject OpensuseWvware3Fedora LibwmfOpensuseMay 6, 2026 Jul 1, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a W...Show more |
2Opensuse X.org3Opensuse X ServerXorg ServerMay 6, 2026 Jul 1, 2015 N/A· v4 N/A· v3 3.6 LOW· v2 The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving...Show more |
2Cryptopp Opensuse2Crypto++ Library OpensuseMay 6, 2026 Jul 1, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote attackers to obtain...Show more |
3Fedoraproject OpensuseWvware3Fedora LibwmfOpensuseMay 6, 2026 Jul 1, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image. |