Vulnerabilities (CVE)

Vendor filter

Turbolinux Subscribe

Filter

40 total CVE
CVE Vendors Products Updated CVSS
CVE-2003-0367 5 Turbolinux, Openpkg, Mandrakesoft and 2 more 9 Mandrake Multi Network Firewall, Turbolinux Advanced Server, Mandrake Linux Corporate Server and 6 more 2019-05-23 2.1
znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on temporary files.
CVE-1999-0949 3 Turbolinux, Sun, Sgi 4 Turbolinux, Irix, Solaris and 1 more 2018-10-30 7.2
Buffer overflow in canuum program for Canna input system allows local users to gain root privileges.
CVE-2000-0844 13 Turbolinux, Conectiva, Slackware and 10 more 16 Aix, Solaris, Openlinux Eserver and 13 more 2018-10-30 10.0
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
CVE-1999-0948 3 Turbolinux, Sun, Sgi 4 Turbolinux, Irix, Solaris and 1 more 2018-10-30 7.2
Buffer overflow in uum program for Canna input system allows local users to gain root privileges.
CVE-2003-0694 11 Turbolinux, Apple, Freebsd and 8 more 18 Hp-ux, Aix, Solaris and 15 more 2018-10-30 10.0
The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
CVE-2005-3626 18 Turbolinux, Xpdf, Easy Software Products and 15 more 33 Linux, Fedora Core, Mandrake Linux Corporate Server and 30 more 2018-10-19 5.0
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.
CVE-2005-3625 18 Turbolinux, Xpdf, Easy Software Products and 15 more 33 Linux, Fedora Core, Mandrake Linux Corporate Server and 30 more 2018-10-19 10.0
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode...
CVE-2005-3624 18 Turbolinux, Xpdf, Easy Software Products and 15 more 33 Linux, Fedora Core, Mandrake Linux Corporate Server and 30 more 2018-10-19 5.0
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to...
CVE-2007-1352 8 Turbolinux, Ubuntu, X.org and 5 more 12 Mandrake Multi Network Firewall, Linux Advanced Workstation, Enterprise Linux Desktop and 9 more 2018-10-16 3.8
Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow.
CVE-2003-0681 8 Turbolinux, Apple, Sendmail and 5 more 14 Hp-ux, Aix, Linux and 11 more 2018-05-03 7.5
A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.
CVE-2005-0988 7 Turbolinux, Ubuntu, Redhat and 4 more 13 Linux Advanced Workstation, Linux, Turbolinux Home and 10 more 2017-10-11 3.7
Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by...
CVE-2004-1073 5 Turbolinux, Suse, Trustix and 2 more 8 Linux Kernel, Linux Advanced Workstation, Enterprise Linux Desktop and 5 more 2017-10-11 2.1
The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter (PT_INTERP) functionality.
CVE-2004-1072 5 Turbolinux, Suse, Trustix and 2 more 8 Linux Kernel, Linux Advanced Workstation, Enterprise Linux Desktop and 5 more 2017-10-11 7.2
The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name string that is not NULL terminated, which could cause strings longer than PATH_MAX to be used, leading to buffer...
CVE-2004-1071 5 Turbolinux, Suse, Trustix and 2 more 8 Linux Kernel, Linux Advanced Workstation, Enterprise Linux Desktop and 5 more 2017-10-11 7.2
The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly handle a failed call to the mmap function, which causes an incorrect mapped image and may allow local users to execute arbitrary code.
CVE-2004-1070 5 Turbolinux, Suse, Trustix and 2 more 8 Linux Kernel, Linux Advanced Workstation, Enterprise Linux Desktop and 5 more 2017-10-11 7.2
The load_elf_binary function in the binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly check return values from calls to the kernel_read function, which may allow local users to modify...
CVE-2004-0827 9 Turbolinux, Enlightenment, Imagemagick and 6 more 14 Imlib2, Linux Advanced Workstation, Java Desktop System and 11 more 2017-10-11 7.5
Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or...
CVE-2004-0817 9 Turbolinux, Enlightenment, Imagemagick and 6 more 16 Imlib2, Linux Advanced Workstation, Java Desktop System and 13 more 2017-10-11 7.5
Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file.
CVE-2004-0809 8 Turbolinux, Conectiva, Redhat and 5 more 12 Hp-ux, Linux, Turbolinux Home and 9 more 2017-10-11 5.0
The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.
CVE-2001-0169 4 Turbolinux, Mandrakesoft, Trustix and 1 more 5 Turbolinux, Linux, Mandrake Linux and 2 more 2017-10-10 2.1
When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library...
CVE-1999-1288 4 Turbolinux, Caldera, Samba and 1 more 4 Turbolinux, Linux, Samba and 1 more 2017-10-10 4.6
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.