redhat/grub2GRUB2 contained integer overflows when handling the initrd command, leading to a heap-based buffer overflow.
redhat/grub2GRUB2 contains a race condition leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing.
redhat/grub2GRUB2: avoid loading unsigned kernels when GRUB is booted directly under secureboot without shim
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraInappropriate implementation in V8 in Google Chrome prior to 80.0.3987.149 allowed a remote attackerâĤ
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Opensuse Libzypplibzypp stores cookies world readable
Nodejs Node.jsNode.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be âĤ
redhat/nodejsNode.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Slowloris HTTP Denial of âĤ
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
openSUSE Leapgame-music-emu before 0.6.1 allows remote attackers to generate out of bounds 8-bit values.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
NTP ntpThe ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 doesâĤ
Canonical Ubuntu Linuxcoders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crashâĤ
ImageMagick ImageMagickImageMagick Improper Input Validation Vulnerability
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SUSE Linux Enterprise Software Development KitBuffer Overflow, Integer Overflow
SUSE Linux Enterprise Software Development KitBuffer Overflow
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SUSE Linux Enterprise DesktopBuffer Overflow, Integer Overflow
SUSE Linux Enterprise DesktopThe strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependentâĤ
SUSE Linux Enterprise ServerThe panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system câĤ
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.