Buffer overflow

Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to execute arbitrary code via unspecified vectors involving mount requests and symlinks...

CVE-2006-0043

Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to execute arbitrary code via unspecified vectors involving mount requests and symlinks...

CVE-2005-3671

The Internet Key Exchange version 1 IKEv1 implementation in Openswan 2 openswan-2 before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.041.5.4-1.23, allow remote attackers to cause a denial of service via 1 a crafted packet using 3DES with an invalid key length, or 2 unspecified inputs when...

SUSE-SA:2005:059: RealPlayer

The remote host is missing the patch for the advisory SUSE-SA:2005:059 RealPlayer. The following security issue in RealPlayer was fixed: - A format string bug in the RealPix .rp file format parser CVE-2005-2710. This bug allowed remote attackers to execute arbitrary code by supplying a specially...

SUSE-SA:2005:050: kernel

The remote host is missing the patch for the advisory SUSE-SA:2005:050 kernel. The Linux kernel was updated to fix the following security issues: - CVE-2005-2457: A problem in decompression of files on 'zisofs' filesystem was fixed. - CVE-2005-2458: A potential buffer overflow in the zlib...

SUSE-SA:2005:044: kernel

The remote host is missing the patch for the advisory SUSE-SA:2005:044 kernel. The Linux kernel is the core component of the Linux system. This update fixes various security as well as non-security problems discovered since the last round of kernel updates. Not all kernels are affected by all the...

SUSE Security Announcement: zlib denial of service attack (SUSE-SA:2005:039)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUSE Security Announcement Package: zlib Announcement ID: SUSE-SA:2005:039 Date: Wed, 06 Jul 2005 14:00:00 +0000 Affected Products: 9.1, 9.2, 9.3 SUSE Linux Enterprise Server 9 Novell Linux Desktop 9 Open Enterprise Server Vulnerability Type: remote...

CVE-2004-2004

The Live CD in SUSE LINUX 9.1 Personal edition is configured without a password for root, which allows remote attackers to gain privileges via SSH...

[Full-disclosure] SUSE Security Announcement: cvs (SUSE-SA:2005:024)

-----BEGIN PGP SIGNED MESSAGE----- SUSE Security Announcement Package: cvs Announcement-ID: SUSE-SA:2005:024 Date: Monday, Apr 18st 2005 13:30 MEST Affected products: 8.2, 9.0, 9.1, 9.2, 9.3 SUSE CORE 9 for x86 SuSE Linux Enterprise Server 8, 9 UnitedLinux 1.0 School-Server 1 Open-Enterprise-Serv...

SUSE-SA:2005:022: kdelibs3

The remote host is missing the patch for the advisory SUSE-SA:2005:022 kdelibs3. Several vulnerabilities have been identified and fixed in the KDE desktop environment. - A buffer overflow via specially crafted PCX pictures was fixed. This could lead to a remote attacker being able to execute code...

SUSE Security Announcement: Live CD 9.1 (SuSE-SA:2004:011)

-----BEGIN PGP SIGNED MESSAGE----- SuSE Security Announcement Package: Live CD 9.1 Announcement-ID: SuSE-SA:2004:011 Date: Thursday, May 6th 2004 22:30 MEST Affected products: SUSE LINUX 9.1 Personal Edition Live CD Vulnerability Type: remote root access Severity 1-10: 8 SuSE default package: yes...