Suse

Linux Enterprise High Availability Extension

28 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2026-31431

Warnung Medienbericht Exploit
  • EPSS 2.57%
  • Veröffentlicht 22.04.2026 08:15:10
  • Zuletzt bearbeitet 12.05.2026 16:15:00

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-pl...

10

CVE-2017-18017

  • EPSS 34.31%
  • Veröffentlicht 03.01.2018 06:29:00
  • Zuletzt bearbeitet 03.01.2025 12:15:25

The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other im...

5

CVE-2015-3281

  • EPSS 0.09%
  • Veröffentlicht 06.07.2015 15:59:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The buffer_slow_realign function in HAProxy 1.5.x before 1.5.14 and 1.6-dev does not properly realign a buffer that is used for pending outgoing data, which allows remote attackers to obtain sensitive information (uninitialized memory contents of pre...

2.3

CVE-2014-4027

  • EPSS 0.09%
  • Veröffentlicht 23.06.2014 11:21:18
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The rd_build_device_space function in drivers/target/target_core_rd.c in the Linux kernel before 3.14 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from ramdisk_mcp memory by leveragin...

2.1

CVE-2014-1739

  • EPSS 0.1%
  • Veröffentlicht 23.06.2014 11:21:17
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The media_device_enum_entities function in drivers/media/media-device.c in the Linux kernel before 3.14.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory by leveraging /dev/med...

7.8

CVE-2014-3153

Warnung Exploit
  • EPSS 68.89%
  • Veröffentlicht 07.06.2014 14:55:27
  • Zuletzt bearbeitet 21.04.2026 17:47:00

The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEX_REQUEUE command that facilitates unsafe wai...

5

CVE-2014-3469

  • EPSS 8.67%
  • Veröffentlicht 05.06.2014 20:55:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The (1) asn1_read_value_type and (2) asn1_read_value functions in GNU Libtasn1 before 3.6 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via a NULL value in an ivalue argument.

7.5

CVE-2014-3468

  • EPSS 10.74%
  • Veröffentlicht 05.06.2014 20:55:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The asn1_get_bit_der function in GNU Libtasn1 before 3.6 does not properly report an error when a negative bit length is identified, which allows context-dependent attackers to cause out-of-bounds access via crafted ASN.1 data.

5

CVE-2014-3467

  • EPSS 6.83%
  • Veröffentlicht 05.06.2014 20:55:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple unspecified vulnerabilities in the DER decoder in GNU Libtasn1 before 3.6, as used in GnuTLS, allow remote attackers to cause a denial of service (out-of-bounds read) via crafted ASN.1 data.

2.1

CVE-2014-1738

  • EPSS 0.02%
  • Veröffentlicht 11.05.2014 21:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The raw_cmd_copyout function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly restrict access to certain pointers during processing of an FDRAWCMD ioctl call, which allows local users to obtain sensitive information from...