Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Suse_linux
(Suse)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 207 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2004-12-31 | CVE-2004-1895 | YaST Online Update (YOU) in SuSE 8.2 and 9.0 allows local users to overwrite arbitrary files via a symlink attack on you-$USER/cookies. | Suse_linux | N/A | ||
| 2004-12-31 | CVE-2004-1476 | Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers to execute arbitrary code via a VideoCD with an unterminated disk label. | Suse_linux, Xine, Xine\-Lib | N/A | ||
| 2005-04-14 | CVE-2004-1237 | Unknown vulnerability in the system call filtering code in the audit subsystem for Red Hat Enterprise Linux 3 allows local users to cause a denial of service (system crash) via unknown vectors. | Linux_kernel, Enterprise_linux, Enterprise_linux_desktop, Suse_linux | N/A | ||
| 2005-04-14 | CVE-2004-1235 | Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor. | Converged_communications_server, Intuity_audix, Mn100, Modular_messaging_message_storage_server, Network_routing, S8300, S8500, S8700, S8710, Linux, Linux_kernel, Mandrake_linux, Mandrake_linux_corporate_server, Mandrake_multi_network_firewall, Enterprise_linux, Enterprise_linux_desktop, Fedora_core, Linux, Suse_linux, Ubuntu_linux | N/A | ||
| 2005-01-10 | CVE-2004-1191 | Race condition in SuSE Linux 8.1 through 9.2, when run on SMP systems that have more than 4GB of memory, could allow local users to read unauthorized memory from "foreign memory pages." | Suse_linux | N/A | ||
| 2005-01-10 | CVE-2004-1190 | SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices. | Suse_linux | N/A | ||
| 2005-01-21 | CVE-2004-1184 | The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters. | Enscript, Fedora_core, Propack, Suse_linux | N/A | ||
| 2005-04-14 | CVE-2004-1176 | Buffer underflow in extfs.c in Midnight Commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code. | Debian_linux, Linux, Midnight_commander, Enterprise_linux, Linux_advanced_workstation, Suse_linux, Turbolinux_server, Turbolinux_workstation | N/A | ||
| 2005-04-14 | CVE-2004-1175 | fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters. | Debian_linux, Linux, Midnight_commander, Enterprise_linux, Linux_advanced_workstation, Suse_linux, Turbolinux_server, Turbolinux_workstation | N/A | ||
| 2005-04-14 | CVE-2004-1174 | direntry.c in Midnight Commander (mc) 4.5.55 and earlier allows attackers to cause a denial of service by "manipulating non-existing file handles." | Debian_linux, Linux, Midnight_commander, Enterprise_linux, Linux_advanced_workstation, Suse_linux, Turbolinux_server, Turbolinux_workstation | N/A |