Vulnerability & Exploit Database

Displaying entries 1 - 10 of 12 in total

Results for: CVE-2015-1282 Back to search

SUSE: CVE-2015-9019: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: April 05, 2017

In libxslt 1.1.29 and earlier, the EXSLT math.random function was not initialized with a random seed during startup, which could cause usage of this function to produce predictable outputs.

SUSE: CVE-2015-7995: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: November 17, 2015

The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not check if the parent node is an element, which allows attackers to cause a denial of service via a crafted XML file, related to a "type confusion" issue.

SUSE: CVE-2015-1282: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: July 22, 2015

Multiple use-after-free vulnerabilities in fpdfsdk/src/javascript/Document.cpp in PDFium, as used in Google Chrome before 44.0.2403.89, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to the (1) Document::delay and (2) Document::DoFieldDelay functions.

RHSA-2015:1499: chromium-browser security update Vulnerability

  • Severity: 8
  • Published: July 22, 2015

Chromium is an open-source web browser, powered by WebKit (Blink).Several flaws were found in the processing of malformed web content. A webpage containing malicious content could cause Chromium to crash or,potentially, execute arbitrary code with the privileges of the user runningChromium. (CVE-2015-1271, CVE-2015-1270, CVE-2015-1272, C...

Google Chrome Vulnerability: CVE-2015-1282 Vulnerability

  • Severity: 7
  • Published: July 22, 2015

Multiple use-after-free vulnerabilities in fpdfsdk/src/javascript/Document.cpp in PDFium, as used in Google Chrome before 44.0.2403.89, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to the (1) Document::delay and (2) Document::DoFieldDelay functions.

Gentoo Linux: CVE-2015-1282: Chromium: Multiple vulnerabilities Vulnerability

  • Severity: 7
  • Published: July 22, 2015

Multiple use-after-free vulnerabilities in fpdfsdk/src/javascript/Document.cpp in PDFium, as used in Google Chrome before 44.0.2403.89, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to the (1) Document::delay and (2) Document::DoFieldDelay functions.

DSA-3315-1 chromium-browser -- security update Vulnerability

  • Severity: 8
  • Published: July 22, 2015

Multiple unspecified vulnerabilities in Google Chrome before 44.0.2403.89 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

SUSE: CVE-2014-5355: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: February 20, 2015

MIT Kerberos 5 (aka krb5) through 1.13.1 incorrectly expects that a krb5_read_message data field is represented as a string ending with a '\0' character, which allows remote attackers to (1) cause a denial of service (NULL pointer dereference) via a zero-byte version string or (2) cause a denial of service (out-of-bounds read) by omittin...

SUSE: CVE-2014-5354: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: December 16, 2014

plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.1, when the KDC uses LDAP, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by creating a database entry for a keyless principal, as demonstrated by a kadmin "add_principal -n...