Versions
redhat/polkitRed Hat Polkit Out-of-Bounds Read and Write Vulnerability
Redhat Enterprise Linux Server AusThere's a flaw on grub2 menu rendering code setparam_prefix() in the menu rendering code performs a …
Redhat Enterprise Linux Server AusThe option parser in grub2 allows an attacker to write past the end of a heap-allocated buffer by ca…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Enterprise Linux Server AusThe grub2's cutmem command does not honor secure boot locking. This allows an privileged attacker to…
Redhat Enterprise Linux Server Ausgrub_parser_split_cmdline expands variable names present in the supplied command line in to their co…
Redhat Enterprise Linux Server AusA flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors a…
Redhat Enterprise Linux Server AusGRUB2 enables the use of the command acpi even when secure boot is signaled by the firmware. An atta…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
KDE KDEThe CSS parser (khtml/css/cssparser.cpp) in Konqueror in KDE 4.7.3 allows remote attackers to cause …
Redhat Enterprise Linux Server EusBSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted emai…
VMware ESXiVMware ESXi and Horizon DaaS OpenSLP Heap-Based Buffer Overflow Vulnerability
Redhat Enterprise LinuxIn ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged…
Fedoraproject FedoraA flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject 389 Directory ServerIt was found that the fix for CVE-2018-14648 in 389-ds-base, versions 1.4.0.x before 1.4.0.17, was i…
Icedtea-web Project Icedtea-webPath Traversal, Code Injection
redhat/kernelWindows Kernel Information Disclosure Vulnerability
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/libapache2-mod-auth-mellonA vulnerability was found in mod_auth_mellon before v0.14.2. If Apache is configured as a reverse pr…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraIt was found that the superexec operator was available in the internal dictionary in ghostscript bef…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraThe .forceput (or .forcedef depending on the ghostscript version) is still accessible via DefineReso…
Flatpak FlatpakFlatpak before 1.0.7, and 1.1.x and 1.2.x before 1.2.3, exposes /proc in the apply_extra script sand…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Enterprise Linux EusIt was found that bus_process_object() in bus-objects.c allocates a buffer on the stack large enough…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Openshift Container PlatformA memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise Linux…
Canonical Ubuntu LinuxIn Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system op…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.