Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Mandrake_linux
(Mandrakesoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 135 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2004-07-07 | CVE-2004-0402 | Buffer overflow in xpcd-svga in xpcd before 2.08, and possibly other versions, may allow local users to execute arbitrary code. | Mandrake_linux, Xpcd | N/A | ||
| 2004-05-04 | CVE-2004-0386 | Buffer overflow in the HTTP parser for MPlayer 1.0pre3 and earlier, 0.90, and 0.91 allows remote attackers to execute arbitrary code via a long Location header. | Linux, Mandrake_linux, Mplayer | N/A | ||
| 2004-01-05 | CVE-2003-1020 | The format_send_to_gui function in formats.c for irssi before 0.8.9 allows remote IRC users to cause a denial of service (crash). | Irssi, Mandrake_linux | N/A | ||
| 2003-08-27 | CVE-2003-0462 | A race condition in the way env_start and env_end pointers are initialized in the execve system call and used in fs/proc/base.c on Linux 2.4 allows local users to cause a denial of service (crash). | Linux_kernel, Mandrake_linux, Mandrake_linux_corporate_server, Mandrake_multi_network_firewall | N/A | ||
| 2003-07-24 | CVE-2003-0434 | Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink. | Acrobat, Mandrake_linux, Mandrake_linux_corporate_server, Enterprise_linux, Linux, Linux_advanced_workstation, Xpdf | N/A | ||
| 2002-12-31 | CVE-2002-2185 | The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network. | Debian_linux, Mandrake_linux, Windows_98, Windows_98se, Windows_xp, Enterprise_linux, Enterprise_linux_desktop, Linux, Linux_advanced_workstation, Irix, Suse_linux | N/A | ||
| 2002-12-31 | CVE-2002-2001 | jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. | Jmcce, Mandrake_linux | N/A | ||
| 2002-12-31 | CVE-2002-1814 | Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments. | Bonobo, Mandrake_linux, Linux, Slackware_linux | N/A | ||
| 2002-10-28 | CVE-2002-0836 | dvips converter for Postscript files in the tetex package calls the system() function insecurely, which allows remote attackers to execute arbitrary commands via certain print jobs, possibly involving fonts. | Secure_os, Mandrake_linux, Linux | N/A | ||
| 2002-08-12 | CVE-2002-0638 | setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow local users to gain privileges via a complex race condition that uses an open file descriptor in utility programs such as chfn and chsh. | Secure_os, Mandrake_linux, Mandrake_linux_corporate_server, Mandrake_single_network_firewall, Linux | N/A |