Suse

Linux Enterprise Software Development Kit

296 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.6

CVE-2015-8866

Exploit
  • EPSS 3.05%
  • Published 22.05.2016 01:59:05
  • Last modified 12.04.2025 10:46:40

ext/libxml/libxml.c in PHP before 5.5.22 and 5.6.x before 5.6.6, when PHP-FPM is used, does not isolate each thread from libxml_disable_entity_loader changes in other threads, which allows remote attackers to conduct XML External Entity (XXE) and XML...

5.5

CVE-2016-3718

Warning
  • EPSS 79.25%
  • Published 05.05.2016 18:59:08
  • Last modified 12.04.2025 10:46:40

The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted image.

5.8

CVE-2016-3715

Warning Exploit
  • EPSS 79.8%
  • Published 05.05.2016 18:59:04
  • Last modified 12.04.2025 10:46:40

The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to delete arbitrary files via a crafted image.

4.9

CVE-2016-2782

Exploit
  • EPSS 0.47%
  • Published 27.04.2016 17:59:20
  • Last modified 12.04.2025 10:46:40

The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by insertin...

10

CVE-2016-3427

Warning
  • EPSS 93.75%
  • Published 21.04.2016 11:00:21
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX.

4.1

CVE-2016-0668

  • EPSS 0.36%
  • Published 21.04.2016 10:59:32
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier and MariaDB 10.0.x before 10.0.24 and 10.1.x before 10.1.12 allows local users to affect availability via vectors related to InnoDB.

5.5

CVE-2016-0651

  • EPSS 0.25%
  • Published 21.04.2016 10:59:19
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier allows local users to affect availability via vectors related to Optimizer.

4.7

CVE-2016-0642

  • EPSS 0.45%
  • Published 21.04.2016 10:59:11
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect integrity and availability via vectors related to Federated.

9.8

CVE-2015-8779

  • EPSS 7.63%
  • Published 19.04.2016 21:59:05
  • Last modified 12.04.2025 10:46:40

Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long catalog name.

9.1

CVE-2015-8776

  • EPSS 6.32%
  • Published 19.04.2016 21:59:04
  • Last modified 12.04.2025 10:46:40

The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value.