Opensuse
opensuse
3,271 CVEs • 50 products
Products (50)
Click to collapseToggle
Products (50)
Click to collapse
CVEs (3,271)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
4Canonical FedoraprojectGnome+1 more4Fedora GvfsLeap+1 moreJun 17, 2026 May 29, 2019 N/A· v4 7.3 HIGH· v3 4.9 MEDIUM· v2 An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. daemon/gvfsbackendadmin.c mishandles file ownership because setfsuid is not used. |
7Debian F5Fedoraproject+4 more11Debian Linux Enterprise Manager Ops CenterFedora+8 moreJun 17, 2026 May 28, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 through 7.64.1. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Incorrect command line processing in Chrome in Google Chrome prior to 73.0.3683.75 allowed a local attacker to perform domain spoofing via a crafted domain name. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Insufficient policy enforcement in Content Security Policy in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to bypass content security policy via a crafted HTML page. |
2Google Opensuse3Backports Sle ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Incorrect handling of download origins in Navigation in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Incorrect eliding of URLs in Omnibox in Google Chrome on iOS prior to 73.0.3683.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Insufficient policy enforcement in Blink in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to bypass content security policy via a crafted HTML page. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Incorrect inheritance of a new document's policy in Content Security Policy in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to bypass content security policy via a crafted HTML page. |
6Canonical DebianGoogle+3 more7Backports ChromeDebian Linux+4 moreJun 17, 2026 May 23, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Lack of correct bounds checking in Skia in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. |
2Google Opensuse3Backports Sle ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 7.5 HIGH· v3 5.1 MEDIUM· v2 Data race in extensions guest view in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Integer overflow in PDFium in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially perform out of bounds memory access via a crafted PDF file. |
2Google Opensuse3Backports Sle ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Incorrect handling of cancelled requests in Navigation in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Insufficient policy enforcement in extensions in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to initiate the extensions installation user interface via a crafted HTML page. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Integer overflow in PDFium in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially perform out of bounds memory access via a crafted PDF file. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Inappropriate optimization in V8 in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An integer overflow leading to an incorrect capacity of a buffer in JavaScript in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 An integer overflow that leads to a use-after-free in WebMIDI in Google Chrome on Windows prior to 73.0.3683.75 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted H...Show more |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 An integer overflow that leads to a use-after-free in Blink Storage in Google Chrome on Linux prior to 73.0.3683.75 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a craft...Show more |
2Google Opensuse3Backports ChromeLeapJun 17, 2026 May 23, 2019 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 Use-after-garbage-collection in Blink in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
5Canonical DebianFedoraproject+2 more7Backports Sle Debian LinuxFedora+4 moreJun 17, 2026 May 20, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a SEGV in the SDL function SDL_free_REAL at stdlib/SDL_malloc.c. |