Opensuse Project: Security Vulnerabilities
Stack-based buffer overflow in game-music-emu before 0.6.1.
CVSS Score
7.8
EPSS Score
0.003
Published
2017-04-12
game-music-emu before 0.6.1 allows remote attackers to write to arbitrary memory locations.
CVSS Score
7.8
EPSS Score
0.003
Published
2017-04-12
game-music-emu before 0.6.1 allows remote attackers to generate out of bounds 8-bit values.
CVSS Score
7.8
EPSS Score
0.003
Published
2017-04-12
Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi.
CVSS Score
6.1
EPSS Score
0.004
Published
2017-03-27
The ssh_agent_channel_data function in PuTTY before 0.68 allows remote attackers to have unspecified impact via a large length value in an agent protocol message and leveraging the ability to connect to the Unix-domain socket representing the forwarded agent connection, which trigger a buffer overflow.
CVSS Score
9.8
EPSS Score
0.258
Published
2017-03-27
Pacemaker before 1.1.15, when using pacemaker remote, might allow remote attackers to cause a denial of service (node disconnection) via an unauthenticated connection.
CVSS Score
7.5
EPSS Score
0.03
Published
2017-03-24
The IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3-8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted image file.
CVSS Score
5.5
EPSS Score
0.002
Published
2017-03-23
Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote attackers to load arbitrary modules via unspecified vectors.
CVSS Score
7.5
EPSS Score
0.049
Published
2017-03-23
The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.
CVSS Score
9.8
EPSS Score
0.035
Published
2017-03-20
Memory leak in ImageMagick allows remote attackers to cause a denial of service (memory consumption).
CVSS Score
7.5
EPSS Score
0.021
Published
2017-03-20