Known Vulnerabilities for products from Mageia
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Mageia".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2015-2191 | Integer overflow in the dissect_tnef function in epan/dissectors/packet-tnef.c in the TNEF dissector in Wireshark 1.10.x befo... | 5 - MEDIUM | 2015-03-08 | 2023-11-07 |
| CVE-2015-2189 | Off-by-one error in the pcapng_read function in wiretap/pcapng.c in the pcapng file parser in Wireshark 1.10.x before 1.10.13... | 5 - MEDIUM | 2015-03-08 | 2023-11-07 |
| CVE-2015-2188 | epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 does not proper... | 5 - MEDIUM | 2015-03-08 | 2023-11-07 |
| CVE-2015-0236 | libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag wit... | 3.5 - LOW | 2015-01-29 | 2023-02-12 |
| CVE-2014-9637 | GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) ... | 5.5 - MEDIUM | 2017-08-25 | 2017-08-30 |
| CVE-2014-9253 | The default file type whitelist configuration in conf/mime.conf in the Media Manager in DokuWiki before 2014-09-29b allows re... | 4.3 - MEDIUM | 2014-12-17 | 2017-09-08 |
| CVE-2014-9116 | The write_one_header function in mutt 1.5.23 does not properly handle newline characters at the beginning of a header, which ... | 5 - MEDIUM | 2014-12-02 | 2018-10-30 |
| CVE-2014-9087 | Integer underflow in the ksba_oid_to_str function in Libksba before 1.3.2, as used in GnuPG, allows remote attackers to cause... | 7.5 - HIGH | 2014-12-01 | 2023-05-18 |
| CVE-2014-8136 | The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock th... | 2.1 - LOW | 2014-12-19 | 2023-02-13 |
| CVE-2014-8117 | softmagic.c in file before 5.21 does not properly limit recursion, which allows remote attackers to cause a denial of service... | 5 - MEDIUM | 2014-12-17 | 2018-01-05 |
| CVE-2014-8116 | The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash... | 5 - MEDIUM | 2014-12-17 | 2018-01-05 |
| CVE-2014-8104 | OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a den... | 6.8 - MEDIUM | 2014-12-03 | 2020-05-12 |
| CVE-2014-7204 | jscript.c in Exuberant Ctags 5.8 allows remote attackers to cause a denial of service (infinite loop and CPU and disk consump... | 5 - MEDIUM | 2014-10-07 | 2016-08-30 |
| CVE-2014-5461 | Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to ... | 5 - MEDIUM | 2014-09-04 | 2023-05-03 |
| CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it... | 3.4 - LOW | 2014-10-15 | 2023-09-12 |
| CVE-2014-3532 | dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a den... | 2.1 - LOW | 2014-07-19 | 2023-12-27 |
| CVE-2014-3429 | IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attacker... | 6.8 - MEDIUM | 2014-08-07 | 2018-10-30 |
| CVE-2014-2524 | The _rl_tropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary file... | 3.3 - LOW | 2014-08-20 | 2018-10-30 |
| CVE-2014-1829 | Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization hea... | 5 - MEDIUM | 2014-10-15 | 2016-08-30 |
| CVE-2013-4159 | ctdb before 2.3 in OpenSUSE 12.3 and 13.1 does not create temporary files securely, which has unspecified impact related to "... | 7.5 - HIGH | 2014-08-06 | 2023-02-13 |
Known software with vulnerabilities from Mageia
| Type | Vendor | Product | Version |
|---|---|---|---|
| Operating System | Mageia | Mageia | 3.0 |