Vulnerabilities (CVE)

Vendor filter

Suse Subscribe

Product filter

Suse Linux Enterprise Software Development Kit Subscribe

Filter

22 total CVE
CVE Vendors Products Updated CVSS
CVE-2013-4854 10 Slackware, Freebsd, Redhat and 7 more 13 Hp-ux, Dnsco Bind, Enterprise Linux and 10 more 2019-04-22 7.8
The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service...
CVE-2013-0170 6 Novell, Suse, Fedoraproject and 3 more 8 Libvirt, Ubuntu Linux, Enterprise Linux and 5 more 2019-04-22 9.3
Use-after-free vulnerability in the virNetMessageFree function in rpc/virnetserverclient.c in libvirt 1.0.x before 1.0.2, 0.10.2 before 0.10.2.3, 0.9.11 before 0.9.11.9, and 0.9.6 before 0.9.6.4 allows remote attackers to cause a denial of...
CVE-2016-5244 4 Suse, Linux, Fedoraproject and 1 more 11 Linux Kernel, Linux Enterprise Desktop, Linux Enterprise Workstation Extension and 8 more 2019-04-22 5.0
The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remote attackers to obtain sensitive information from kernel stack memory by reading an RDS message.
CVE-2015-0505 2 Suse, Oracle 5 Suse Linux Enterprise Desktop, Solaris, Suse Linux Enterprise Software Development Kit and 2 more 2019-02-01 3.5
Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via vectors related to DDL.
CVE-2013-4419 3 Suse, Novell, Libguestfs 3 Libguestfs, Suse Linux Enterprise Software Development Kit, Suse Linux Enterprise Server 2018-12-13 6.8
The guestfish command in libguestfs 1.20.12, 1.22.7, and earlier, when using the --remote or --listen option, does not properly check the ownership of /tmp/.guestfish-$UID/ when creating a temporary socket file in this directory, which allows...
CVE-2015-3340 6 Suse, Debian, Xen and 3 more 11 Linux Enterprise Software Development Kit, Linux Enterprise Desktop, Debian Linux and 8 more 2018-10-30 2.9
Xen 4.2.x through 4.5.x does not initialize certain fields, which allows certain remote service domains to obtain sensitive information from memory via a (1) XEN_DOMCTL_gettscinfo or (2) XEN_SYSCTL_getdomaininfolist request.
CVE-2014-9844 5 Suse, Imagemagick, Canonical and 2 more 11 Suse Linux Enterprise Software Development Kit, Ubuntu Linux, Studio Onsite and 8 more 2018-10-30 4.3
The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.
CVE-2014-9853 6 Novell, Suse, Imagemagick and 3 more 12 Suse Linux Enterprise Software Development Kit, Ubuntu Linux, Linux Enterprise Software Development Kit and 9 more 2018-10-30 4.3
Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.
CVE-2014-9845 5 Suse, Imagemagick, Canonical and 2 more 12 Suse Linux Enterprise Software Development Kit, Ubuntu Linux, Studio Onsite and 9 more 2018-10-30 4.3
The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file.
CVE-2014-9846 5 Suse, Imagemagick, Canonical and 2 more 12 Suse Linux Enterprise Software Development Kit, Ubuntu Linux, Studio Onsite and 9 more 2018-10-30 7.5
Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.
CVE-2014-1483 6 Suse, Mozilla, Oracle and 3 more 9 Ubuntu Linux, Linux Enterprise Desktop, Seamonkey and 6 more 2018-10-30 4.3
Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allow remote attackers to bypass the Same Origin Policy and obtain sensitive information by using an IFRAME element in conjunction with certain timing measurements involving the...
CVE-2016-5118 7 Oracle, Canonical, Suse and 4 more 16 Linux Enterprise Software Development Kit, Ubuntu Linux, Graphicsmagick and 13 more 2018-10-30 10.0
The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | (pipe) character at the start of a filename.
CVE-2014-1490 5 Suse, Mozilla, Fedoraproject and 2 more 11 Firefox Esr, Fedora, Suse Linux Enterprise Desktop and 8 more 2018-10-30 5.0
Race condition in libssl in Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, SeaMonkey before 2.24, and other products, allows remote attackers...
CVE-2014-4260 4 Suse, Mysql, Debian and 1 more 7 Debian Linux, Mysql, Suse Linux Enterprise Desktop and 4 more 2018-10-09 5.5
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier, and 5.6.17 and earlier, allows remote authenticated users to affect integrity and availability via vectors related to SRCHAR.
CVE-2015-8845 3 Suse, Linux, Novell 8 Linux Kernel, Suse Linux Enterprise Real Time Extension, Suse Linux Enterprise Workstation Extension and 5 more 2018-01-05 4.9
The tm_reclaim_thread function in arch/powerpc/kernel/process.c in the Linux kernel before 4.4.1 on powerpc platforms does not ensure that TM suspend mode exists before proceeding with a tm_reclaim call, which allows local users to cause a denial...
CVE-2013-3812 6 Oracle, Canonical, Suse and 3 more 9 Ubuntu Linux, Debian Linux, Mysql and 6 more 2017-08-29 3.5
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Replication.
CVE-2013-3793 6 Oracle, Canonical, Suse and 3 more 9 Ubuntu Linux, Debian Linux, Mysql and 6 more 2017-08-29 4.0
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Data Manipulation Language.
CVE-2013-1864 3 Opalvoip, Suse, Ekiga 4 Ekiga, Suse Linux Enterprise Software Development Kit, Portable Tool Library and 1 more 2017-08-29 4.3
The Portable Tool Library (aka PTLib) before 2.10.10, as used in Ekiga before 4.0.1, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted...
CVE-2016-3951 4 Suse, Linux, Novell and 1 more 10 Ubuntu Linux, Suse Linux Enterprise Live Patching, Suse Linux Enterprise Software Development Kit and 7 more 2017-08-13 4.9
Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (system crash) or possibly have unspecified other impact by inserting a USB device with an...
CVE-2015-0500 2 Suse, Oracle 5 Communications Policy Management, Suse Linux Enterprise Desktop, Suse Linux Enterprise Software Development Kit and 2 more 2017-01-03 4.0
Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors.