Search Hints

  • Try searching for a product or vendor.
  • Only vulnerabilities that match all search terms will be returned.
  • Enclose search terms in double quotes for an exact search.
  • For CVE searches, only enter the CVE-YYYY-XXXX code.

Displaying vulnerability details 41 - 50 of 64342 in total

SUSE Linux Security Vulnerability: CVE-2015-3152 Vulnerability

  • Severity: 4
  • Published: July 19, 2015

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

SUSE Linux Security Vulnerability: CVE-2015-2181 Vulnerability

  • Severity: 4
  • Published: July 19, 2015

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

SUSE Linux Security Vulnerability: CVE-2015-4652 Vulnerability

  • Severity: 4
  • Published: July 19, 2015

epan/dissectors/packet-gsm_a_dtap.c in the GSM DTAP dissector in Wireshark 1.12.x before 1.12.6 does not properly validate digit characters, which allows remote attackers to cause a denial of service (application crash) via a crafted packet, related to the de_emerg_num_list and de_bcd_num functions.

SUSE Linux Security Vulnerability: CVE-2015-3225 Vulnerability

  • Severity: 4
  • Published: July 19, 2015

lib/rack/utils.rb in Rack before 1.5.4 and 1.6.x before 1.6.2, as used with Ruby on Rails 3.x and 4.x and other products, allows remote attackers to cause a denial of service (SystemStackError) via a request with a large parameter depth.

SUSE Linux Security Vulnerability: CVE-2015-4651 Vulnerability

  • Severity: 5
  • Published: July 19, 2015

The dissect_wccp2r1_address_table_info function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.12.x before 1.12.6 does not properly determine whether enough memory is available for storing IP address strings, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

SUSE Linux Security Vulnerability: CVE-2015-1840 Vulnerability

  • Severity: 4
  • Published: July 19, 2015

jquery_ujs.js in jquery-rails before 3.1.3 and 4.x before 4.0.4 and rails.js in jquery-ujs before 1.0.4, as used with Ruby on Rails 3.x and 4.x, allow remote attackers to bypass the Same Origin Policy, and trigger transmission of a CSRF token to a different-domain web server, via a leading space character in a URL within an attribute val...

Apache HTTPD: ap_some_auth_required API unusable (CVE-2015-3185) Vulnerability

  • Severity: 4
  • Published: July 19, 2015

A design error in the "ap_some_auth_required" function renders the API unusuable in httpd 2.4.x. In particular the API is documented to answering if the request required authentication but only answers if there are Require lines in the applicable configuration. Since 2.4.x Require lines are used for authorization as well and can appear...

ELSA-2015-1455 Important: Oracle Linux thunderbird security update Vulnerability

  • Severity: 4
  • Published: July 19, 2015

Oracle Linux Security Advisory ELSA-2015-1455 http://linux.oracle.com/errata/ELSA-2015-1455.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: thunderbird-31.8.0-1.0.1.el7_1.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates/thunderbird-31.8.0-1.0.1.el7_1.src.rpm ...

SUSE Linux Security Vulnerability: CVE-2015-2180 Vulnerability

  • Severity: 4
  • Published: July 19, 2015

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.