CVE-2025-1181

all versions

A vulnerability classified as critical was found in GNU Binutils 2.43. This vulnerability affects the function _bfd_elf_gc_mark_rs

5.0MEDIUM

CVE-2025-1178

all versions

A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. Affected by this vulnerability is the functio

5.6MEDIUM

CVE-2025-0167

all versions

When asked to use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the firs

3.4LOW

CVE-2024-11053

all versions

When asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the fir

3.4LOW

CVE-2024-8096

all versions

When curl is told to use the Certificate Status Request TLS extension, often referred to as OCSP stapling, to verify that the serv

6.5MEDIUM

CVE-2024-6119

all versions

Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to rea

7.5HIGH

CVE-2024-39689

all versions

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the id

7.5HIGH

CVE-2024-6387

all versions

A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to

8.1HIGH

CVE-2024-21990

>= 9.12.1 and <= 9.14.1

ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x contain hard-coded credentials that could all

5.4MEDIUM

CVE-2024-21989

>= 9.12.1 and <= 9.14.1

ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x are susceptible to a vulnerability which when

8.1HIGH

CVE-2024-2961

all versions

The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes whe

7.3HIGH

CVE-2024-2398

all versions

When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses

8.6HIGH

CVE-2024-2379

all versions

libcurl skips the certificate verification for a QUIC connection under certain conditions, when built to use wolfSSL. If told to u

6.3MEDIUM

CVE-2024-2004

all versions

When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would remai

3.5LOW

CVE-2024-26641

all versions

In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()

5.5MEDIUM

CVE-2024-26633

all versions

In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tl

5.5MEDIUM

CVE-2024-26462

all versions

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.

5.5MEDIUM

CVE-2024-26461

all versions

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.

7.5HIGH

CVE-2024-26458

all versions

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.

5.3MEDIUM

CVE-2023-4911

all versions

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment varia

7.8HIGH

CVE-2023-20900

all versions

A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security

7.1HIGH

CVE-2022-48065

all versions

GNU Binutils before 2.40 was discovered to contain a memory leak vulnerability var the function find_abstract_instance in dwarf2.c

5.5MEDIUM

CVE-2022-48064

all versions

GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_

5.5MEDIUM

CVE-2023-37920

all versions

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the id

7.5HIGH

CVE-2023-38403

all versions

iperf3 before 3.14 allows peers to cause an integer overflow and heap corruption via a crafted length field.

7.5HIGH

CVE-2023-2975

all versions

Issue summary: The AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries which are u

5.3MEDIUM

CVE-2023-27043

all versions

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion

5.3MEDIUM

CVE-2023-24329

all versions

An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL

7.5HIGH

CVE-2023-0361

all versions

A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. This side-channel can be suffici

7.4HIGH

CVE-2023-25136

all versions

OpenSSH server (sshd) 9.1 introduced a double-free vulnerability during options.kex_algorithms handling. This is fixed in OpenSSH

6.5MEDIUM

CVE-2022-4292

all versions

Use After Free in GitHub repository vim/vim prior to 9.0.0882.

7.8HIGH

CVE-2022-40303

all versions

An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option

7.5HIGH

CVE-2022-45061

all versions

An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs

7.5HIGH

CVE-2020-35527

all versions

In SQLite 3.31.1, there is an out of bounds access problem through ALTER TABLE for views that have a nested FROM clause.

9.8CRITICAL

CVE-2022-1355

all versions

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TI

6.1MEDIUM

CVE-2022-1354

all versions

A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker t

5.5MEDIUM

CVE-2022-39046

all versions

An issue was discovered in the GNU C Library (glibc) 2.36. When the syslog function is passed a crafted input string larger than 1

7.5HIGH

CVE-2022-2953

all versions

LibTIFF 4.4.0 has an out-of-bounds read in extractImageSection in tools/tiffcrop.c:6905, allowing attackers to cause a denial-of-s

5.5MEDIUM

CVE-2021-4214

all versions

A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a sp

5.5MEDIUM

CVE-2021-4189

all versions

A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is h

5.3MEDIUM

CVE-2021-3999

all versions

A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of

7.8HIGH

CVE-2021-3998

all versions

A flaw was found in glibc. The realpath() function can mistakenly return an unexpected value, potentially leading to information l

7.5HIGH

CVE-2022-31676

all versions

VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability. A malicious actor with local non-adm

7.8HIGH

CVE-2021-3975

all versions

A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using mu

6.5MEDIUM

CVE-2022-37434

all versions

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra fie

9.8CRITICAL

CVE-2022-35737

all versions

SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string arg

7.5HIGH

CVE-2022-34526

all versions

A stack overflow was discovered in the _TIFFVGetField function of Tiffsplit v4.4.0. This vulnerability allows attackers to cause a

6.5MEDIUM

CVE-2021-3696

all versions

A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in

4.5MEDIUM

CVE-2021-3695

all versions

A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to

4.5MEDIUM

CVE-2022-34903

all versions

GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and othe

6.5MEDIUM

CVE-2022-2068

all versions

In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script d

7.3HIGH

CVE-2022-29244

all versions

npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace or with a workspace flag (

7.5HIGH

CVE-2022-1664

all versions

Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a

9.8CRITICAL

CVE-2022-1587

all versions

An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit

9.1CRITICAL

CVE-2022-1586

all versions

An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2

9.1CRITICAL

CVE-2022-1623

all versions

LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:624, allowing attackers to cause a denial-of-ser

5.5MEDIUM

CVE-2022-1622

all versions

LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing attackers to cause a denial-of-ser

5.5MEDIUM

CVE-2022-29824

all versions

In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf) and tree.c (xmlBuffer) don't check for integer ove

6.5MEDIUM

CVE-2022-25844

all versions

The package angular after 1.7.0 are vulnerable to Regular Expression Denial of Service (ReDoS) by providing a custom locale rule t

5.3MEDIUM

CVE-2015-20107

all versions

In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mai

7.6HIGH

CVE-2022-1210

all versions

A vulnerability classified as problematic was found in LibTIFF 4.3.0. Affected by this vulnerability is the TIFF File Handler of t

4.3MEDIUM

CVE-2022-0897

all versions

A flaw was found in the libvirt nwfilter driver. The virNWFilterObjListNumOfNWFilters method failed to acquire the driver-nwfilter

4.3MEDIUM

CVE-2021-4147

all versions

A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself and cause libvirtd on the host to

6.5MEDIUM

CVE-2018-25032

all versions

zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

7.5HIGH

CVE-2022-0924

all versions

Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For use

5.5MEDIUM

CVE-2022-0909

all versions

Divide By Zero error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users

5.5MEDIUM

CVE-2022-0908

all versions

Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions u

7.7HIGH

CVE-2022-0907

all versions

Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via

5.5MEDIUM

CVE-2022-26488

all versions

In Python before 3.10.3 on Windows, local users can gain privileges because the search path is inadequately secured. The installer

7.0HIGH

CVE-2021-3733

all versions

There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (s

6.5MEDIUM

CVE-2021-3737

all versions

A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who

7.5HIGH

CVE-2021-3667

all versions

An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the storagePoolLookupByTa

6.5MEDIUM

CVE-2021-3631

all versions

A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited

6.3MEDIUM

CVE-2022-23308

all versions

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.

7.5HIGH

CVE-2022-24407

all versions

In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement

8.8HIGH

CVE-2022-0563

all versions

A flaw was found in the util-linux chfn and chsh utilities when compiled with Readline support. The Readline library uses an "INPU

5.5MEDIUM

CVE-2021-45346

all versions

A Memory Leak vulnerability exists in SQLite Project SQLite3 3.35.1 and 3.37.0 via maliciously crafted SQL Queries (made via editi

4.3MEDIUM

CVE-2022-0562

all versions

Null source pointer passed as an argument to memcpy() function within TIFFReadDirectory() in tif_dirread.c in libtiff versions fro

5.5MEDIUM

CVE-2022-0561

all versions

Null source pointer passed as an argument to memcpy() function within TIFFFetchStripThing() in tif_dirread.c in libtiff versions f

5.5MEDIUM

CVE-2022-0391

all versions

A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator (URL) st

7.5HIGH

CVE-2022-22844

all versions

LibTIFF 4.3.0 has an out-of-bounds read in _TIFFmemcpy in tif_unix.c in certain situations involving a custom tag and 0x0200 as th

5.5MEDIUM

CVE-2021-45078

all versions

stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of service (heap-based buffer o

7.8HIGH

CVE-2021-4044

all versions

Internally libssl in OpenSSL calls X509_verify_cert() on the client side to verify a certificate supplied by a server. That functi

7.5HIGH

CVE-2021-3671

all versions

A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server -

6.5MEDIUM

CVE-2021-41617

all versions

sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because

7.0HIGH

CVE-2016-20012

all versions

OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known t

5.3MEDIUM

CVE-2021-3796

all versions

vim is vulnerable to Use After Free

7.3HIGH

CVE-2021-3778

all versions

vim is vulnerable to Heap-based Buffer Overflow

7.8HIGH

CVE-2020-19144

all versions

Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the 'in _TIFFmemcpy' funtion in the component

6.5MEDIUM

CVE-2021-3770

all versions

vim is vulnerable to Heap-based Buffer Overflow

7.8HIGH

CVE-2021-3580

all versions

A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this fla

7.5HIGH

CVE-2021-37600

all versions

An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system re

5.5MEDIUM

CVE-2021-35942

all versions

The wordexp function in the GNU C Library (aka glibc) through 2.33 may crash or read arbitrary memory in parse_param (in posix/wor

9.1CRITICAL

CVE-2021-3541

all versions

A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and lea

6.5MEDIUM

CVE-2021-3530

all versions

A flaw was discovered in GNU libiberty within demangle_path() in rust-demangle.c, as distributed in GNU Binutils version 2.36. A c

7.5HIGH

CVE-2021-3520

all versions

There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer

9.8CRITICAL

CVE-2021-3516

all versions

There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by

7.8HIGH

CVE-2021-23017

all versions

A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS ser

7.7HIGH

CVE-2020-14301

all versions

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based d

6.5MEDIUM

CVE-2021-25217

all versions

In ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16, ISC DHCP 4.4.0 - 4.4.2 (Other branches of ISC DHCP (i.e., releases in the 4.0.x series or lo

7.4HIGH

CVE-2021-3559

all versions

A flaw was found in libvirt in the virConnectListAllNodeDevices API in versions before 7.0.0. It only affects hosts with a PCI dev

6.5MEDIUM

CVE-2020-36332

all versions

A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The hig

7.5HIGH

CVE-2020-36331

all versions

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest thr

9.1CRITICAL

CVE-2020-36330

all versions

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highes

9.1CRITICAL

CVE-2020-36329

all versions

A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highe

9.8CRITICAL

CVE-2020-36328

all versions

A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible due t

9.8CRITICAL

CVE-2021-3426

all versions

There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent us

5.7MEDIUM

CVE-2021-3517

all versions

There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a

8.6HIGH

CVE-2021-3518

all versions

There's a flaw in libxml2 in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by an applic

8.8HIGH

CVE-2021-3537

all versions

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content,

5.9MEDIUM

CVE-2021-31879

all versions

GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-

6.1MEDIUM

CVE-2021-20305

all versions

A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDS

8.1HIGH

CVE-2021-20284

all versions

A flaw was found in GNU Binutils 2.35.1, where there is a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in

5.5MEDIUM

CVE-2021-20197

all versions

There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy,

6.3MEDIUM

CVE-2021-3450

all versions

The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not

7.4HIGH

CVE-2021-3449

all versions

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renego

5.9MEDIUM

CVE-2020-35524

all versions

A heap-based buffer overflow flaw was found in libtiff in the handling of TIFF images in libtiff's TIFF2PDF tool. A specially craf

7.8HIGH

CVE-2020-35523

all versions

An integer overflow flaw was found in libtiff that exists in the tif_getimage.c file. This flaw allows an attacker to inject and e

7.8HIGH

CVE-2020-35522

all versions

In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remot

5.5MEDIUM

CVE-2020-35521

all versions

A flaw was found in libtiff. Due to a memory allocation failure in tif_read.c, a crafted TIFF file can lead to an abort, resulting

5.5MEDIUM

CVE-2021-20233

all versions

A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on

8.2HIGH

CVE-2021-20225

all versions

A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocate

6.7MEDIUM

CVE-2020-27779

all versions

A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged

7.5HIGH

CVE-2020-27749

all versions

A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their c

6.7MEDIUM

CVE-2020-25647

all versions

A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bound

7.6HIGH

CVE-2020-25632

all versions

A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependenc

8.2HIGH

CVE-2020-14372

all versions

A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot i

7.5HIGH

CVE-2020-27618

all versions

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences

5.5MEDIUM

CVE-2021-23336

all versions

The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and bef

5.9MEDIUM

CVE-2021-3326

all versions

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid input sequences in the ISO-

7.5HIGH

CVE-2021-3156

all versions

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalatio

7.8HIGH

CVE-2021-3177

all versions

Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in ce

9.8CRITICAL

CVE-2019-25013

all versions

The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in th

5.9MEDIUM

CVE-2020-35507

all versions

There's a flaw in bfd_pef_parse_function_stubs of bfd/pef.c in binutils in versions prior to 2.34 which could allow an attacker wh

5.5MEDIUM

CVE-2020-35496

all versions

There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a craf

5.5MEDIUM

CVE-2020-35495

all versions

There's a flaw in binutils /bfd/pef.c. An attacker who is able to submit a crafted input file to be processed by the objdump progr

5.5MEDIUM

CVE-2020-35494

all versions

There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutil

6.1MEDIUM

CVE-2020-35493

all versions

A flaw exists in binutils in bfd/pef.c. An attacker who is able to submit a crafted PEF file to be parsed by objdump could cause a

5.5MEDIUM

CVE-2020-35448

all versions

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35.1. A heap-ba

3.3LOW

CVE-2020-16599

all versions

A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Bi

5.5MEDIUM

CVE-2020-16593

all versions

A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Bi

5.5MEDIUM

CVE-2020-16592

all versions

A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as

5.5MEDIUM

CVE-2020-16591

all versions

A Denial of Service vulnerability exists in the Binary File Descriptor (BFD) in GNU Binutils 2.35 due to an invalid read in proces

5.5MEDIUM

CVE-2020-16590

all versions

A double free vulnerability exists in the Binary File Descriptor (BFD) (aka libbrd) in GNU Binutils 2.35 in the process_symbol_tab

5.5MEDIUM

CVE-2020-15999

all versions

Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap cor

9.6CRITICAL

CVE-2020-14145

all versions

The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiati

5.9MEDIUM

CVE-2020-14155

all versions

libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.

5.3MEDIUM

CVE-2020-13871

all versions

SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late

7.5HIGH

CVE-2020-11656

all versions

In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs

9.8CRITICAL

CVE-2020-11655

all versions

SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query bec

7.5HIGH

CVE-2019-20388

all versions

xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

7.5HIGH

CVE-2019-19956

all versions

xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc-oldNs.

7.5HIGH

CVE-2019-19646

all versions

pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns.

9.8CRITICAL

CVE-2019-19603

all versions

SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW, leading to an application crash.

7.5HIGH

CVE-2019-19645

all versions

alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in con

5.5MEDIUM

CVE-2019-19317

all versions

lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attac

9.8CRITICAL

CVE-2019-5509

>= 2.11.2 and <= 2.12.2

ONTAP Select Deploy administration utility versions 2.11.2 through 2.12.2 are susceptible to a code injection vulnerability which

9.8CRITICAL

CVE-2019-17272

all versions

All versions of ONTAP Select Deploy administration utility are susceptible to a vulnerability which when successfully exploited co

7.2HIGH

CVE-2019-17498

all versions

In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT logic in packet.c has an integer overflow in a bounds check, enabli

8.1HIGH

CVE-2019-5505

>= 2.2 and <= 2.12.1

ONTAP Select Deploy administration utility versions 2.2 through 2.12.1 transmit credentials in plaintext.

9.8CRITICAL

CVE-2019-5504

all versions

ONTAP Select Deploy administration utility versions 2.12 & 2.12.1 ship with an HTTP service bound to the network allowing unauthen

9.8CRITICAL

CVE-2019-16168

all versions

In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validati

6.5MEDIUM

CVE-2019-13115

all versions

In libssh2 before 1.9.0, kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c has an integer overflow that could

8.1HIGH

CVE-2019-13118

all versions

In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid char

5.3MEDIUM

CVE-2019-3861

all versions

An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the way SSH packets with a padding length value greater than

5.0MEDIUM

CVE-2019-3860

all versions

An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the way SFTP packets with empty payloads are parsed. A remote

5.0MEDIUM

CVE-2019-3857

all versions

An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way SSH_MSG_CHAN

8.8HIGH

CVE-2019-3856

all versions

An integer overflow flaw, which could lead to an out of bounds write, was discovered in libssh2 before 1.8.1 in the way keyboard p

8.8HIGH

CVE-2019-3863

all versions

A flaw was found in libssh2 before 1.8.1 creating a vulnerability on the SSH client side. A server could send a multiple keyboard

7.5HIGH

CVE-2019-3858

all versions

An out of bounds read flaw was discovered in libssh2 before 1.8.1 when a specially crafted SFTP packet is received from the server

5.0MEDIUM

CVE-2019-3855

all versions

An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way packets are

8.8HIGH

CVE-2019-3862

all versions

An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the way SSH_MSG_CHANNEL_REQUEST packets with an exit status m

7.3HIGH

CVE-2019-3859

all versions

An out of bounds read flaw was discovered in libssh2 before 1.8.1 in the _libssh2_packet_require and _libssh2_packet_requirev func

9.1CRITICAL

CVE-2019-1559

all versions

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to

5.9MEDIUM

CVE-2019-9169

all versions

In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer over-read via

9.8CRITICAL

CVE-2018-20796

all versions

In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion,

7.5HIGH

CVE-2009-5155

all versions

In the GNU C Library (aka glibc or libc6) before 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows attac

7.5HIGH

CVE-2017-5995

all versions

The NetApp ONTAP Select Deploy administration utility 2.0 through 2.2.1 might allow remote attackers to obtain sensitive informati

7.5HIGH

CVE-2016-5195

all versions

Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging in

7.0HIGH