GNU Bash through 4.3 processes trailing strings after function definitions in the values of env…

The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle …

When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and…

A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient ad…

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function def…

The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not …

It was discovered, that redis, a persistent key-value database, due to a packaging issue, is pr…

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlog…

A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a rac…

In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain config…

smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, al…

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2…

Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integ…

OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout fo…

Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote attackers to execute ar…

The (1) EPHEMERAL, (2) HTTPS, (3) MVG, (4) MSL, (5) TEXT, (6) SHOW, (7) WIN, and (8) PLT coders…

Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x bef…

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and J…

An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-mast…

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java …

runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to …

Off-by-one error in the ldap scheme handling in the Rewrite module (mod_rewrite) in Apache 1.3 …

University of Washington IMAP Toolkit 2007f on UNIX, as used in imap_open() in PHP and other pr…

The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (…

A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec app…

Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in …

When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.…

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Rever…

Systems with microprocessors utilizing speculative execution and branch prediction may allow un…

Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an …

http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apac…

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of …

An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege…

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and J…

Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploit…

A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4…

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This al…

Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other produ…

Apache HTTP server 2.4.32 to 2.4.44 mod_proxy_uwsgi info disclosure and possible RCE

Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x befo…