Filters
Canonical Ubuntu LinuxThe expat XML parser in the apr_xml_* interface in xml/apr_xml.c in Apache APR-util before 1.3.7, as…
7.5
First published (updated )
Fedoraproject Fedorasrc/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used with unspecified third-party PKCS…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu Linuxudev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allo…
7.2
First published (updated )
Avaya Intuity Audix LxThe Device Mapper multipathing driver (aka multipath-tools or device-mapper-multipath) 0.4.8, as use…
7.8
First published (updated )
Redhat Cluster ProjectRed Hat Cluster Project 2.x allows local users to modify or overwrite arbitrary files via symlink at…
6.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GNU GnuTLSThe _gnutls_x509_verify_certificate function in lib/x509/verify.c in libgnutls in GnuTLS before 2.6.…
5.9
First published (updated )
Dovecot DovecotThe ACL plugin in Dovecot before 1.1.4 treats negative access rights as if they are positive access …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Xmlsoft Libxml2libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribut…
6.5
First published (updated )
Gnome LibpeasUntrusted search path vulnerability in the Python module in gedit allows local users to execute arbi…
6.9
First published (updated )
Condor Project CondorCondor before 7.0.4 does not properly handle wildcards in the ALLOW_WRITE, DENY_WRITE, HOSTALLOW_WRI…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalSession fixation vulnerability in Drupal 5.x before 5.9 and 6.x before 6.3, when contributed modules…
5.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu LinuxThe ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module in the Apach…
First published (updated )
Jcoppens CbrpagerCode Injection, OS Command Injection
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPThe GENERATE_SEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, when running on 64-bit systems…
9.8
First published (updated )
PHP PHPThe init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly consider…
10
First published (updated )