rubygems/cgiCGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affe…
Ruby-lang DateDate.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service…
Suse Arpwatcharpwatch: Local privilege escalation from runtime user to root
Python-hyperkitty Project Python-hyperkittypython-HyperKitty: hyperkitty-permissions.sh used during %post allows local privilege escalation from hyperkitty user to root
Opensuse Inninn: %post calls user owned file allowing local privilege escalation to root
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Opensuse Python-postoriuspython-postorius: postorius-permissions.sh used during %post allows local privilege escalation from postorius user to root
Google ChromeGoogle Chromium V8 Type Confusion Vulnerability
openSUSE LeapAn issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a denial of servi…
openSUSE LeapAn issue was discovered in Xen through 4.14.x allowing x86 HVM and PVH guest OS users to cause a den…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PowerDNS RecursorAn issue has been found in PowerDNS Recursor before 4.1.18, 4.2.x before 4.2.5, and 4.3.x before 4.3…
Google ChromeInsufficient policy enforcement in ANGLE
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/wiresharkIn Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector coul…
ubuntu/wiresharkIn Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash. Th…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Tigervnc TigervncIn rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS c…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
openSUSE LeapSylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit …
openSUSE LeapSylabs Singularity 3.2.0 through 3.6.2 has Insecure Permissions on temporary directories used in fak…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Dpdk Data Plane Development KitComplete lack of validation of attacker-controlled parameters leads to a buffer over read. The resul…
Dpdk Data Plane Development KitA flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. Virtio ring descriptors, an…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/atftpAn exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject Fedoraurl::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger unc…
IBM Cloud Pak for Security (CP4S)Null Pointer Dereference
Google ChromeInsufficient data validation in installer
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.