Suse

Linux Enterprise Software Development Kit

296 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2016-1285

  • EPSS 67.84%
  • Published 09.03.2016 23:59:02
  • Last modified 12.04.2025 10:46:40

named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 does not properly handle DNAME records when parsing fetch reply messages, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed...

8.1

CVE-2015-7547

  • EPSS 93.42%
  • Published 18.02.2016 21:59:00
  • Last modified 12.04.2025 10:46:40

Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrar...

2.1

CVE-2015-5006

  • EPSS 0.07%
  • Published 07.12.2015 20:59:06
  • Last modified 12.04.2025 10:46:40

IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR2, 7 R1 before SR3 FP20, 7 before SR9 FP20, 6 R1 before SR8 FP15, and 6 before SR16 FP15 allow physically proximate attackers to obtain sensitive information by reading the K...

5

CVE-2015-0272

  • EPSS 1.08%
  • Published 17.11.2015 15:59:00
  • Last modified 12.04.2025 10:46:40

GNOME NetworkManager allows remote attackers to cause a denial of service (IPv6 traffic disruption) via a crafted MTU value in an IPv6 Router Advertisement (RA) message, a different vulnerability than CVE-2015-8215.

4

CVE-2015-2697

  • EPSS 6.39%
  • Published 09.11.2015 03:59:03
  • Last modified 12.04.2025 10:46:40

The build_principal_va function in lib/krb5/krb/bld_princ.c in MIT Kerberos 5 (aka krb5) before 1.14 allows remote authenticated users to cause a denial of service (out-of-bounds read and KDC crash) via an initial '\0' character in a long realm field...

7.1

CVE-2015-2696

  • EPSS 8.28%
  • Published 09.11.2015 03:59:02
  • Last modified 12.04.2025 10:46:40

lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted IAKERB packet that is mis...

5

CVE-2015-2695

  • EPSS 4.77%
  • Published 09.11.2015 03:59:00
  • Last modified 12.04.2025 10:46:40

lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted SPNEGO packet that...

5

CVE-2015-4902

Warning
  • EPSS 9.38%
  • Published 22.10.2015 00:00:03
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60 allows remote attackers to affect integrity via unknown vectors related to Deployment.

4

CVE-2015-4830

  • EPSS 0.3%
  • Published 21.10.2015 21:59:44
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges.

7.2

CVE-2015-5154

  • EPSS 0.2%
  • Published 12.08.2015 14:59:23
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xen 4.5.x and earlier, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecified ATAPI commands.