← Back

Opensuse

opensuse

3,271 CVEs • 50 products

Products (50)

Click to collapse
Toggle
Leap
leap
1,898 CVEs
Opensuse
opensuse
1,454 CVEs
Backports Sle
backports_sle
326 CVEs
Backports
backports
97 CVEs
Evergreen
evergreen
43 CVEs
Open Build Service
open_build_service
22 CVEs
Libsolv
libsolv
13 CVEs
Factory
factory
10 CVEs
Supportutils
supportutils
6 CVEs
Libzypp
libzypp
5 CVEs
Tumbleweed
tumbleweed
4 CVEs
Zypper
zypper
3 CVEs
Openldap2
openldap2
3 CVEs
Osc
osc
2 CVEs
Suse Linux Enterprise Server
suse_linux_enterprise_server
2 CVEs
Cryptctl
cryptctl
2 CVEs
Munge
munge
2 CVEs
Wicked
wicked
2 CVEs
Pcp
pcp
2 CVEs
Texlive Filesystem
texlive-filesystem
2 CVEs
Rmt Server
rmt-server
2 CVEs
Cscreen
cscreen
2 CVEs
Libeconf
libeconf
2 CVEs
Openstack Cloud
openstack_cloud
1 CVE
Libstorage
libstorage
1 CVE
Libstorage Ng
libstorage-ng
1 CVE
Obs Service Source Validator
obs-service-source_validator
1 CVE
Open Buildservice
open_buildservice
1 CVE
Sysconfig
sysconfig
1 CVE
Tar Scm
tar_scm
1 CVE
Package Hub
package_hub
1 CVE
Yast2 Multipath
yast2-multipath
1 CVE
Yast2 Samba Provision
yast2-samba-provision
1 CVE
Yast2 Printer
yast2-printer
1 CVE
Munin
munin
1 CVE
Suse Package Hub
suse_package_hub
1 CVE
Autoyast2
autoyast2
1 CVE
Hylafax+
hylafax+
1 CVE
Tumbleweed Kopano Spamd
tumbleweed_kopano-spamd
1 CVE
Cyrus Sasl
cyrus-sasl
1 CVE
Python Postorius
python-postorius
1 CVE
Inn
inn
1 CVE
Factory Watchman
factory_watchman
1 CVE
Canna
canna
1 CVE
Leap Micro
leap_micro
1 CVE
Travel Support Program
travel_support_program
1 CVE
Libzypp Plugin Appdata
libzypp-plugin-appdata
1 CVE
Paste
paste
1 CVE
Welcome
welcome
1 CVE
Mirrorcache
mirrorcache
1 CVE

CVEs (3,271)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-15980
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
Insufficient policy enforcement in Intents in Google Chrome on Android prior to 86.0.4240.75 allowed a local attacker to bypass navigation restrictions via crafted Intents.
CVE-2020-15979
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15978
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Insufficient data validation in navigation in Google Chrome on Android prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page.
CVE-2020-15977
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
6.5 MEDIUM· v3
4.3 MEDIUM· v2
Insufficient data validation in dialogs in Google Chrome on OS X prior to 86.0.4240.75 allowed a remote attacker to obtain potentially sensitive information from disk via a crafted HTML page.
CVE-2020-15976
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Use after free in WebXR in Google Chrome on Android prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15975
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Integer overflow in SwiftShader in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15974
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Integer overflow in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to bypass site isolation via a crafted HTML page.
CVE-2020-15973
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
6.5 MEDIUM· v3
4.3 MEDIUM· v2
Insufficient policy enforcement in extensions in Google Chrome prior to 86.0.4240.75 allowed an attacker who convinced a user to install a malicious extension to bypass same origin policy via a crafted Chrome Extension.
CVE-2020-15972
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Use after free in audio in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15971
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Use after free in printing in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
CVE-2020-15970
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Use after free in NFC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
CVE-2020-15969
5Apple
DebianFedoraproject+2 more
10Backports Sle
ChromeDebian Linux+7 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Use after free in WebRTC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15968
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Use after free in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-15967
4Debian
FedoraprojectGoogle+1 more
4Backports Sle
ChromeDebian Linux+1 more
Nov 21, 2024
Nov 3, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Use after free in payments in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
CVE-2020-14323
4Debian
FedoraprojectOpensuse+1 more
4Debian Linux
FedoraLeap+1 more
Nov 21, 2024
Oct 29, 2020
N/A· v4
5.5 MEDIUM· v3
2.1 LOW· v2
A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing denial of service.
CVE-2020-27673
4Debian
LinuxOpensuse+1 more
4Debian Linux
LeapLinux Kernel+1 more
Nov 21, 2024
Oct 22, 2020
N/A· v4
5.5 MEDIUM· v3
4.9 MEDIUM· v2
An issue was discovered in the Linux kernel through 5.9.1, as used with Xen through 4.14.x. Guest OS users can cause a denial of service (host OS hang) via a high rate of events to dom0, aka CID-e99502f76271.
CVE-2020-27672
4Debian
FedoraprojectOpensuse+1 more
4Debian Linux
FedoraLeap+1 more
Nov 21, 2024
Oct 22, 2020
N/A· v4
7.0 HIGH· v3
6.9 MEDIUM· v2
An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a host OS denial of service, achieve data corruption, or possibly gain privileges by exploiting a race condition that leads to a use-afte...Show more
An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a host OS denial of service, achieve data corruption, or possibly gain privileges by exploiting a race condition that leads to a use-after-free involving 2MiB and 1GiB superpages.Show less
CVE-2020-27671
4Debian
FedoraprojectOpensuse+1 more
4Debian Linux
FedoraLeap+1 more
Nov 21, 2024
Oct 22, 2020
N/A· v4
7.8 HIGH· v3
6.9 MEDIUM· v2
An issue was discovered in Xen through 4.14.x allowing x86 HVM and PVH guest OS users to cause a denial of service (data corruption), cause a data leak, or possibly gain privileges because coalescing of per-page IOMMU TL...Show more
An issue was discovered in Xen through 4.14.x allowing x86 HVM and PVH guest OS users to cause a denial of service (data corruption), cause a data leak, or possibly gain privileges because coalescing of per-page IOMMU TLB flushes is mishandled.Show less
CVE-2020-27670
4Debian
FedoraprojectOpensuse+1 more
4Debian Linux
FedoraLeap+1 more
Nov 21, 2024
Oct 22, 2020
N/A· v4
7.8 HIGH· v3
6.9 MEDIUM· v2
An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a denial of service (data corruption), cause a data leak, or possibly gain privileges because an AMD IOMMU page-table entry can be half-u...Show more
An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a denial of service (data corruption), cause a data leak, or possibly gain privileges because an AMD IOMMU page-table entry can be half-updated.Show less
CVE-2020-15683
3Debian
MozillaOpensuse
5Debian Linux
FirefoxFirefox Esr+2 more
Nov 21, 2024
Oct 22, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Mozilla developers and community members reported memory safety bugs present in Firefox 81 and Firefox ESR 78.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of thes...Show more
Mozilla developers and community members reported memory safety bugs present in Firefox 81 and Firefox ESR 78.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 78.4, Firefox < 82, and Thunderbird < 78.4.Show less