opensuse
3,272 tracked vulnerabilities.
CVE-2019-11006
CRITICAL
GraphicsMagick < 1.3.31 - Heap-Based Buffer Over-Read in ReadMIFFImage
Apr 08, 2019
CVSS 9.1
EPSS 0.01
CVE-2019-11005
CRITICAL
GraphicsMagick < 1.3.31 - Stack-based Buffer Overflow in SVGStartElement
Apr 08, 2019
CVSS 9.8
EPSS 0.02
CVE-2019-10740
MEDIUM
Opensuse Leap < 1.3.10 - Cleartext Transmission
Apr 07, 2019
CVSS 4.3
EPSS 0.00
CVE-2019-10906
HIGH
Pallets Jinja <2.10.1 - RCE
Apr 07, 2019
CVSS 8.6
EPSS 0.03
CVE-2019-3886
MEDIUM
libvirt >=4.8.0 <5.3.0 - Missing Authorization for Guest Agent APIs
Apr 04, 2019
CVSS 5.4
EPSS 0.00
CVE-2019-3836
MEDIUM
gnutls 3.6.3-3.6.6 - Denial of Service via Post-Handshake Message Handling
Apr 01, 2019
CVSS 5.9
EPSS 0.00
CVE-2019-5739
HIGH
Node.js < 6.16.0 - Denial of Service via Keep-Alive Timeout
Mar 28, 2019
CVSS 7.5
EPSS 0.00
CVE-2019-5737
HIGH
Node.js 6.x < 6.17.0, 8.x < 8.15.1, 10.x < 10.15.2, 11.x < 11.10.1 - Denial of Service via Slow HTTP Headers
Mar 28, 2019
CVSS 7.5
EPSS 0.26
CVE-2019-7524
HIGH
Dovecot <2.2.36.3, 2.3.x <2.3.5.1 - Buffer Overflow
Mar 28, 2019
CVSS 8.8
EPSS 0.00
CVE-2019-0160
CRITICAL
EDK II - Unauthenticated Buffer Overflow via Network Access
Mar 27, 2019
CVSS 9.8
EPSS 0.00
CVE-2019-5419
HIGH
Action View (Rails) <5.2.2.1-5.0.7.2 - DoS
Mar 27, 2019
CVSS 7.5
EPSS 0.12
CVE-2019-5418
HIGH
KEVNUCLEI
Ruby On Rails File Content Disclosure (
Mar 27, 2019
CVSS 7.5
EPSS 0.94
CVE-2019-3840
MEDIUM
libvirt < 5.0.0 - Denial of Service via QEMU Agent Interface Information
Mar 27, 2019
CVSS 5.8
EPSS 0.01
CVE-2019-3814
HIGH
Dovecot 1.1.0-2.2.36 - Improper Certificate Validation
Mar 27, 2019
CVSS 7.7
EPSS 0.02
CVE-2019-3861
MEDIUM
libssh2 < 1.8.1 - Out-of-bounds Read via SSH Packet Padding Length
Mar 25, 2019
CVSS 5.0
EPSS 0.02
CVE-2019-3860
MEDIUM
libssh2 < 1.8.1 - Out-of-bounds Read in SFTP Packet Parser
Mar 25, 2019
CVSS 5.0
EPSS 0.01
CVE-2019-3857
HIGH
libssh2 < 1.8.1 - Remote Code Execution via SSH_MSG_CHANNEL_REQUEST Packet Parsing
Mar 25, 2019
CVSS 8.8
EPSS 0.05
CVE-2019-3856
HIGH
libssh2 < 1.8.1 - Remote Code Execution via Keyboard Prompt Request Parsing
Mar 25, 2019
CVSS 8.8
EPSS 0.04
CVE-2019-3838
MEDIUM
Ghostscript <9.27 - File System Access
Mar 25, 2019
CVSS 5.5
EPSS 0.01
CVE-2019-3835
MEDIUM
Ghostscript < 9.27 - Privileged API Misuse via Superexec Operator
Mar 25, 2019
CVSS 5.5
EPSS 0.02
CVE-2019-3863
HIGH
libssh2 < 1.8.1 - Integer Overflow via Keyboard Interactive Response
Mar 25, 2019
CVSS 7.5
EPSS 0.09
CVE-2019-9948
CRITICAL
Python 2.x < 2.7.17 - Path Traversal via local_file URI Scheme
Mar 23, 2019
CVSS 9.1
EPSS 0.01
CVE-2019-9924
HIGH
Bash < 4.4 - Missing Authorization via BASH_CMDS Manipulation
Mar 22, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-9923
HIGH
GNU Tar < 1.32 - Denial of Service via Malformed Extended Header Parsing
Mar 22, 2019
CVSS 7.5
EPSS 0.00
CVE-2019-3858
MEDIUM
libssh2 < 1.8.1 - Out-of-bounds Read via SFTP Packet
Mar 21, 2019
CVSS 5.0
EPSS 0.02
Products
leap 1,898
opensuse 1,454
backports_sle 326
backports 97
evergreen 43
open_build_service 22
factory 10
libsolv 10
supportutils 6
libzypp 5
tumbleweed 4
Tumbleweed 3
openldap2 3
zypper 3
cryptctl 2
cscreen 2
libeconf 2
munge 2
osc 2
pcp 2
rmt-server 2
suse_linux_enterprise_server 2
texlive-filesystem 2
wicked 2
autoyast2 1
canna 1
cyrus-sasl 1
factory_watchman 1
hylafax\+ 1
inn 1
Quick Filters