SUSE CVE-2008-3067

sudo in SUSE openSUSE 10.3 does not clear the stdin buffer when password entry times out, which might allow local users to obtain a password by reading stdin from the parent process after a sudo child process exits...

Expat 2.0.1 - UTF-8 Character XML Parsing Remote Denial of Service

Bugtraq ID: 36097 Class: Input Validation Error Published: Jan 17 2009 12:00AM Updated: Nov 12 2009 08:06PM Credit: Peter Valchev Vulnerable: SuSE openSUSE 11.0 SuSE openSUSE 10.3 SuSE Linux 9 SuSE Linux 11 SuSE Linux 10.0 RedHat Fedora 11 RedHat Fedora 10 RedHat Enterprise Linux WS 4 RedHat...

LibTIFF 'LZWDecodeCompat()' Remote Buffer Underflow Vulnerability

No description provided by source. Bugtraq ID: 35451 Class: Boundary Condition Error Published: Jun 21 2009 12:00AM Updated: Nov 12 2009 06:46PM Credit: wololo Vulnerable: Ubuntu Ubuntu Linux 9.04 sparc Ubuntu Ubuntu Linux 9.04 powerpc Ubuntu Ubuntu Linux 9.04 lpia Ubuntu Ubuntu Linux 9.04 i386...

SUSE Linux 'scsi_discovery tool'不安全临时文件建立漏洞

Bugraq ID: 36887 CVE ID：CVE-2009-1297 SUSE Linux是一款基于linux内核的发行版本。 SUSE Linux 'scsidiscovery tool'工具不安全建立临时文件，本地攻击者可以利用漏洞执行符号链接攻击覆盖任意攻击者指定的文件，造成拒绝服务攻击。 S.u.S.E. SLE SDK 10 SP2 S.u.S.E. SLE 11 S.u.S.E. openSUSE 11.1 S.u.S.E. openSUSE 11.0 S.u.S.E. openSUSE 10.3 用户可联系供应商获得最新版本：...

CVE-2009-1297

iscsidiscovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise SLE 10 SP2 and 11, and other operating systems, allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file that has a predictable name...

CVE-2009-1297

iscsidiscovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise SLE 10 SP2 and 11, and other operating systems, allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file that has a predictable name...

openSUSE 10 Security Update : optipng (optipng-6290)

OptiPNG contained a bug in the GIF handling code that allowed to use already freed ressources. CVE-2009-0749 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

SuSE Security Advisory SUSE-SA:2009:030 (kernel)

The remote host is missing updates announced in advisory SUSE-SA:2009:030. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

SuSE Security Advisory SUSE-SA:2009:030 (kernel)

The remote host is missing updates announced in advisory SUSE-SA:2009:030. OpenVAS Vulnerability Test $Id: susesa2009030.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:030 kernel Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

openSUSE 10 Security Update : kernel (kernel-6274)

This kernel update for openSUSE 10.3 fixes some bugs and several security problems. The following security issues are fixed: A local denial of service problem in the splice2 system call. CVE-2009-0834: The auditsyscallentry function in the Linux kernel on the x8664 platform did not properly handl...

openSUSE 10 Security Update : wireshark (wireshark-6271)

Version upgrade to Wireshark 1.0.7 to fix various vulnerabilities: CVE-2009-1269: crash while loading a Tektronix .rf5 file CVE-2009-1268: crash in Check Point High-Availability Protocol CPHAP dissector CVE-2009-1267: LDAP dissector could crash on Windows CVE-2009-1210: PROFINET format string bug...

openSUSE 10 Security Update : ganglia-monitor-core (ganglia-monitor-core-6259)

A stack-based buffer overflow in ganglia's buffer processpath function has been fixed. CVE-2009-0241 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

CVE-2008-2025

CVE-2008-2025 is an XSS vulnerability in Apache Struts (prior to 1.2.9-162.31.1 on SUSE SLE 11, prior to 1.2.9-108.2 on SUSE openSUSE 10.3, prior to 1.2.9-198.2 on SUSE openSUSE 11.0, and before 1.2.9-162.163.2 on SUSE openSUSE 11.1) caused by insufficient quoting of parameters. Remote attackers ...

openSUSE 10 Security Update : acroread (acroread-6120)

Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. CVE-2009-0658, CVE-2009-0927, CVE-2009-0193, CVE-2009-0928, CVE-2009-1061, CVE-2009-1062...

openSUSE 10 Security Update : NetworkManager-kde (NetworkManager-kde-6031)

The knetworkmanager configuration was too permissive and allowed any user to read secrets CVE-2009-0365. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update NetworkManager-kde-6031. The text...

Buffer overflow

Buffer overflow in SUSE blinux aka sbl in SUSE openSUSE 10.3 through 11.0 has unknown impact and attack vectors related to "incoming data and authentication-strings."...

SuSE Update for cups SUSE-SA:2007:058

Check for the Version of cups OpenVAS Vulnerability Test $Id: gbsuse2007058.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for cups SUSE-SA:2007:058 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...

SuSE Update for pcre SUSE-SA:2007:062

Check for the Version of pcre OpenVAS Vulnerability Test $Id: gbsuse2007062.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for pcre SUSE-SA:2007:062 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...

SuSE Update for OpenOffice_org SUSE-SA:2007:067

Check for the Version of OpenOfficeorg OpenVAS Vulnerability Test $Id: gbsuse2007067.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for OpenOfficeorg SUSE-SA:2007:067 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is...

SuSE Update for kernel SUSE-SA:2007:063

Check for the Version of kernel OpenVAS Vulnerability Test $Id: gbsuse2007063.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for kernel SUSE-SA:2007:063 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software;...