Product:

Backports

(Opensuse)
Repositories https://github.com/rdesktop/rdesktop
#Vulnerabilities 96
Date Id Summary Products Score Patch Annotated
2019-12-03 CVE-2019-5163 An exploitable denial-of-service vulnerability exists in the UDPRelay functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream Cipher and a local_address, arbitrary UDP packets can cause a FATAL error code path and exit. An attacker can send arbitrary UDP packets to trigger this vulnerability. Backports, Leap, Shadowsocks\-Libev 7.5
2019-09-23 CVE-2019-16709 ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrated by XCreateImage. Ubuntu_linux, Imagemagick, Backports, Leap 6.5
2019-12-27 CVE-2019-20053 An invalid memory address dereference was discovered in the canUnpack function in p_mach.cpp in UPX 3.95 via a crafted Mach-O file. Backports, Leap, Upx 5.5
2020-01-08 CVE-2020-6610 GNU LibreDWG 0.9.3.2564 has an attempted excessive memory allocation in read_sections_map in decode_r2007.c. Libredwg, Backports, Leap 6.5
2020-01-21 CVE-2020-5202 apt-cacher-ng through 3.3 allows local users to obtain sensitive information by hijacking the hardcoded TCP port. The /usr/lib/apt-cacher-ng/acngtool program attempts to connect to apt-cacher-ng via TCP on localhost port 3142, even if the explicit SocketPath=/var/run/apt-cacher-ng/socket command-line option is passed. The cron job /etc/cron.daily/apt-cacher-ng (which is active by default) attempts this periodically. Because 3142 is an unprivileged port, any local user can try to bind to this... Apt\-Cacher\-Ng, Debian_linux, Backports, Leap 5.5
2020-02-04 CVE-2019-15624 Improper Input Validation in Nextcloud Server 15.0.7 allows group admins to create users with IDs of system folders. Nextcloud_server, Backports, Suse_linux_enterprise_server 4.9
2020-02-13 CVE-2020-0561 Improper initialization in the Intel(R) SGX SDK before v2.6.100.1 may allow an authenticated user to potentially enable escalation of privilege via local access. Software_guard_extensions_sdk, Backports, Leap 7.8
2020-03-23 CVE-2020-10592 Tor before 0.3.5.10, 0.4.x before 0.4.1.9, and 0.4.2.x before 0.4.2.7 allows remote attackers to cause a Denial of Service (CPU consumption), aka TROVE-2020-002. Backports, Leap, Tor 7.5
2020-03-24 CVE-2020-10938 GraphicsMagick before 1.3.35 has an integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c. Debian_linux, Graphicsmagick, Backports, Leap 9.8
2019-07-30 CVE-2019-5459 An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read. Backports, Backports_sle, Leap, Vlc_media_player 7.1