Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Leap
(Opensuse_project)| Repositories |
• https://github.com/ImageMagick/ImageMagick
• https://github.com/tats/w3m • https://github.com/torvalds/linux • https://github.com/mdadams/jasper • https://github.com/viewvc/viewvc |
| #Vulnerabilities | 35 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-03-23 | CVE-2016-9556 | The IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3-8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted image file. | Debian_linux, Imagemagick, Leap | 5.5 | ||
| 2017-03-24 | CVE-2016-7797 | Pacemaker before 1.1.15, when using pacemaker remote, might allow remote attackers to cause a denial of service (node disconnection) via an unauthenticated connection. | Pacemaker, Leap, Leap, Enterprise_linux_high_availability, Enterprise_linux_resilient_storage, Linux_enterprise_high_availability, Linux_enterprise_software_development_kit | 7.5 | ||
| 2017-01-20 | CVE-2016-5317 | Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service attack (crash) via a crafted TIFF file. | Libtiff, Opensuse, Leap | 6.5 | ||
| 2017-01-20 | CVE-2016-5316 | Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool. | Libtiff, Opensuse, Leap | 6.5 | ||
| 2017-03-02 | CVE-2016-10069 | coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a mat file with an invalid number of frames. | Imagemagick, Leap | 5.5 | ||
| 2017-03-02 | CVE-2016-10068 | The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted XML file. | Imagemagick, Leap, Leap | 5.5 | ||
| 2017-03-23 | CVE-2016-10048 | Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote attackers to load arbitrary modules via unspecified vectors. | Imagemagick, Leap | 7.5 | ||
| 2017-03-27 | CVE-2015-8010 | Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi. | Icinga, Leap, Leap | 6.1 | ||
| 2015-11-09 | CVE-2015-5218 | Buffer overflow in text-utils/colcrt.c in colcrt in util-linux before 2.27 allows local users to cause a denial of service (crash) via a crafted file, related to the page global variable. | Util\-Linux, Opensuse, Leap | N/A | ||
| 2017-09-27 | CVE-2015-3138 | print-wb.c in tcpdump before 4.7.4 allows remote attackers to cause a denial of service (segmentation fault and process crash). | Leap, Leap, Tcpdump | 7.5 |