Suse

Linux Enterprise Software Development Kit

296 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2015-1931

  • EPSS 0.05%
  • Published 29.09.2022 03:15:11
  • Last modified 21.11.2024 02:26:25

IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR1 FP10, 7 R1 before SR3 FP10, 7 before SR9 FP10, 6 R1 before SR8 FP7, 6 before SR16 FP7, and 5.0 before SR16 FP13 stores plaintext information in memory dumps, which allows l...

7.8

CVE-2022-27239

  • EPSS 0.12%
  • Published 27.04.2022 14:15:09
  • Last modified 21.11.2024 06:55:28

In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.

9.3

CVE-2020-8025

Exploit
  • EPSS 0.1%
  • Published 07.08.2020 10:15:11
  • Last modified 21.11.2024 05:38:14

A Incorrect Execution-Assigned Permissions vulnerability in the permissions package of SUSE Linux Enterprise Server 12-SP4, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1, openSUSE Tumbleweed sets th...

7.8

CVE-2014-1947

  • EPSS 6.95%
  • Published 17.02.2020 21:15:12
  • Last modified 21.11.2024 02:05:19

Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick 6.5.4 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of layers in a PSD image, i...

6.5

CVE-2015-5239

  • EPSS 5.06%
  • Published 23.01.2020 20:15:11
  • Last modified 21.11.2024 02:32:37

Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.

5.3

CVE-2019-11038

Exploit
  • EPSS 8.29%
  • Published 19.06.2019 00:15:12
  • Last modified 21.11.2024 04:20:25

When using the gdImageCreateFromXbm() function in the GD Graphics Library (aka LibGD) 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6, it is possible to supply data that will cause t...

7.5

CVE-2017-16232

  • EPSS 1.74%
  • Published 21.03.2019 15:59:56
  • Last modified 21.11.2024 03:16:05

LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow attackers to cause a denial of service (memory consumption), as demonstrated by tif_open.c, tif_lzw.c, and tif_aux.c. NOTE: Third parties were unable to reproduce the issue

5.3

CVE-2017-14804

  • EPSS 0.43%
  • Published 01.03.2018 20:29:00
  • Last modified 21.11.2024 03:13:32

The build package before 20171128 did not check directory names during extraction of build results that allowed untrusted builds to write outside of the target system,allowing escape out of buildroots.

10

CVE-2017-18017

  • EPSS 27.65%
  • Published 03.01.2018 06:29:00
  • Last modified 03.01.2025 12:15:25

The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other im...

7.5

CVE-2015-5300

  • EPSS 34.23%
  • Published 21.07.2017 14:29:00
  • Last modified 20.04.2025 01:37:25

The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to an arbitrary time when started with the -g option,...