Filters
Usbview Project UsbviewUSBView 2.1 before 2.2 allows some local users (e.g., ones logged in via SSH) to execute arbitrary c…
7.8
First published (updated )
Burp Project BurpThe Gentoo app-backup/burp package before 2.1.32 has incorrect group ownership of the /etc/burp dire…
7.1
First published (updated )
Burp Project BurpThe Gentoo app-backup/burp package before 2.1.32 sets the ownership of the PID file directory to the…
7.1
First published (updated )
Jabberd2 Jabberd2The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of /var/run/jabber to the jabber…
5.5
First published (updated )
Jabberd2 Jabberd2The Gentoo net-im/jabberd2 package through 2.6.1 installs jabberd, jabberd2-c2s, jabberd2-router, ja…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Mariadb MariadbThe installation scripts in the Gentoo dev-db/mysql, dev-db/mariadb, dev-db/percona-server, dev-db/m…
7.8
First published (updated )
Elasticsearch LogstashThe init script in the Gentoo app-admin/logstash-bin package before 5.5.3 and 5.6.x before 5.6.1 has…
7.8
First published (updated )
MediaWiki MediaWikiMediaWiki before 1.19.6 and 1.20.x before 1.20.5 does not allow extensions to prevent password chang…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Open Source Development Team Sthttpdthttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/th…
2.1
First published (updated )
Gentoo LogrotateThe default configuration of logrotate on Gentoo Linux uses root privileges to process files in dire…
6.3
First published (updated )
Zoneminder ZoneminderZoneMinder 1.23.3 on Gentoo Linux uses 0644 permissions for /etc/zm.conf, which allows local users t…
2.1
First published (updated )
Firebird FirebirdThe default configuration of Firebird before 2.0.3.12981.0-r6 on Gentoo Linux sets the ISC_PASSWORD …
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Gentoo LinuxThe docert function in ssl-cert.eclass, when used by src_compile or src_install on Gentoo Linux, sto…
1.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Rpath Rpath Linuxexpn in the am-utils and net-fs packages for Gentoo, rPath Linux, and other distributions, allows lo…
7.2
First published (updated )
Clam Anti-virus ClamavUnspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private.h in ClamAV bef…
10
First published (updated )
Nvidia Video DriverNVIDIA drivers (nvidia-drivers) before 1.0.7185, 1.0.9639, and 100.14.11, as used in Gentoo Linux an…
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Gentoo NvclockThe set_default_speeds function in backend/backend.c in NVidia NVClock before 0.8b2 allows local use…
6.6
First published (updated )
Double Precision Incorporated Courier-imapEval injection vulnerability in (1) courier-imapd.indirect and (2) courier-pop3d.indirect in Courier…
10
First published (updated )
Paul Vixie Vixie CronVixie Cron before 4.1-r10 on Gentoo Linux is installed with insecure permissions, which allows local…
2.1
First published (updated )
Gentoo LinuxThe Linux Security Auditing Tool (LSAT) allows local users to overwrite arbitrary files via a symlin…
4.3
First published (updated )
Ftpd Ftpdftpd, as used by Gentoo and Debian Linux, sets the gid to the effective uid instead of the effective…
8.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Gentoo LinuxThe gencert.sh script, when installing OpenLDAP before 2.1.30-r10, 2.2.x before 2.2.28-r7, and 2.3.x…
4.6
First published (updated )
Gentoo Media-libs JpegThe JPEG library in media-libs/jpeg before 6b-r7 on Gentoo Linux is built without the -maxmem featur…
First published (updated )
Gentoo App-crypt PinentryThe ebuild for pinentry before 0.7.2-r2 on Gentoo Linux sets setgid bits for pinentry programs, whic…
6.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Debian Debian LinuxXpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and oth…
10
First published (updated )
Debian Debian LinuxXpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and oth…
First published (updated )
Lbl TcpdumpThe bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the dec…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ImageMagick ImageMagickBuffer Overflow
First published (updated )
Redhat Enterprise LinuxThe DBI library (libdbi-perl) for Perl allows local users to overwrite arbitrary files via a symlink…
2.1
First published (updated )
KDE KDEKommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which…
7.5
First published (updated )
Igor Khasilev Oops Proxy ServerFormat string vulnerability in the my_xlog function in lib.c for Oops! Proxy Server 1.5.23 and earli…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Midnight Commander Midnight CommanderMultiple format string vulnerabilities in Midnight Commander (mc) 4.5.55 and earlier allow remote at…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.