Suse

Suse Linux

206 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-12085

Exploit
  • EPSS 9.67%
  • Published 14.01.2025 18:15:25
  • Last modified 12.08.2025 21:15:27

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of un...

7.5

CVE-2024-12087

Media report Exploit
  • EPSS 0.92%
  • Published 14.01.2025 18:15:25
  • Last modified 12.08.2025 21:15:27

A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option for many client options and can be enabled by the server even if not explicitly enabled by the client. When using...

8.2

CVE-2017-3224

  • EPSS 0.03%
  • Published 24.07.2018 15:29:00
  • Last modified 21.11.2024 03:25:04

Open Shortest Path First (OSPF) protocol implementations may improperly determine Link State Advertisement (LSA) recency for LSAs with MaxSequenceNumber. According to RFC 2328 section 13.1, for two instances of the same LSA, recency is determined by ...

7.5

CVE-2010-0230

  • EPSS 0.22%
  • Published 22.01.2010 21:30:00
  • Last modified 11.04.2025 00:51:21

SUSE Linux Enterprise 10 SP3 (SLE10-SP3) and openSUSE 11.2 configures postfix to listen on all network interfaces, which might allow remote attackers to bypass intended access restrictions.

7.5

CVE-2009-1648

  • EPSS 0.46%
  • Published 05.07.2009 16:30:00
  • Last modified 09.04.2025 00:30:58

The YaST2 LDAP module in yast2-ldap-server on SUSE Linux Enterprise Server 11 (aka SLE11) does not enable the firewall in certain circumstances involving reboots during online updates, which makes it easier for remote attackers to access network serv...

7.2

CVE-2008-3949

  • EPSS 0.07%
  • Published 22.09.2008 18:52:13
  • Last modified 09.04.2025 00:30:58

emacs/lisp/progmodes/python.el in Emacs 22.1 and 22.2 imports Python script from the current working directory during editing of a Python file, which allows local users to execute arbitrary code via a Trojan horse Python file.

7.2

CVE-2007-6167

  • EPSS 0.06%
  • Published 29.11.2007 01:46:00
  • Last modified 09.04.2025 00:30:58

Untrusted search path vulnerability in yast2-core in SUSE Linux might allow local users to execute arbitrary code by creating a malicious yast2 module in the current working directory.

7.8

CVE-2007-5471

  • EPSS 0.82%
  • Published 16.10.2007 00:17:00
  • Last modified 09.04.2025 00:30:58

libgssapi before 0.6-13.7, as used by the ISC BIND named daemon in SUSE Linux Enterprise Server 10 SP 1, terminates upon an initialization error, which allows remote attackers to cause a denial of service (daemon exit) via a GSS-TSIG request. NOTE: ...

6.8

CVE-2007-5195

  • EPSS 0.49%
  • Published 14.10.2007 18:17:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linux Enterprise Desktop 10 allows remote attackers to obtain credentials via a man-in-the-middle attack, a different vulner...

7.5

CVE-2007-5196

  • EPSS 0.52%
  • Published 14.10.2007 18:17:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linux Enterprise Desktop 10 allows remote attackers to obtain credentials via a man-in-the-middle attack, a different vulner...