Alt Linux Security Vulnerabilities and Issues — Alt Linux CVE List

AltlinuxAlt Linux

9 matches found

CVE•added 2005/03/04 5:0 a.m.•130 views

CVE-2005-0605

The CVE-2005-0605 issue concerns LibXPM’s scan.c where a negative bitmap_unit value can cause a buffer overflow, allowing arbitrary code execution. Connected sources confirm LibXPM involvement and link to patches/advisories; for Solaris SPARC, patch 119063-01 (libXpm patch) is cited as remediatio...

7.5CVSS9.6AI score0.04507EPSS

CVE•added 2005/03/26 5:0 a.m.•82 views

CVE-2005-0398

CVE-2005-0398 affects the racoon daemon in ipsec-tools prior to 0.5. A remote attacker can send malformed ISAKMP packets that trigger a crash, causing a denial of service. The issue is documented in multiple advisories (e.g., Fedora, Ubuntu USN-107-1, Gentoo GLSA) and Red Hat/FreeBSD/OpenVAS entr...

5CVSS6.2AI score0.02433EPSS

CVE•added 2005/03/09 5:0 a.m.•72 views

CVE-2005-0699

The CVE-2005-0699 issue affects Ethereal (Wireshark) up to version 0.10.9 and earlier. It arises from multiple buffer overflows in the dissect_a11_radius function of the CDMA A11 dissector (packet-3g-a11.c). This flaw can allow remote attackers to execute arbitrary code by sending crafted RADIUS ...

7.5CVSS7.7AI score0.06453EPSS

CVE•added 2004/12/31 5:0 a.m.•69 views

CVE-2004-1142

CVE-2004-1142 affects Ethereal versions 0.9.0 through 0.10.7, where a remote attacker can trigger a denial of service (CPU consumption) by sending a malformed SMB packet. The OpenVAS/OSS advisories confirm Ethereal-related fixes and security updates across platforms (e.g., SLES9, Gentoo GLSA GLSA...

5CVSS6.2AI score0.02433EPSS

CVE•added 2004/12/31 5:0 a.m.•69 views

CVE-2004-1145

CVE-2004-1145 affects Konqueror/KDE up to version 3.3.1 where the Java sandbox could be bypassed by JavaScript or Java applets, allowing read/write of arbitrary files. The issue resides in the sandbox restrictions for Java in Konqueror and the FTP kioslave handling in KDE, enabling remote code ex...

5CVSS6.8AI score0.0413EPSS

CVE•added 2005/03/04 5:0 a.m.•69 views

CVE-2005-0639

CVE-2005-0639 (and CVE-2005-0638) affect the xli image viewer prior to 1.17. The vulnerabilities arise from buffer management errors in processing certain image properties and possible integer overflows in PPM files, which may allow a remote attacker to execute arbitrary code. Several advisories ...

7.5CVSS7.4AI score0.0282EPSS

CVE•added 2004/12/31 5:0 a.m.•66 views

CVE-2004-1139

CVE-2004-1139 corresponds to an unknown vulnerability in Ethereal’s DICOM dissector that affects version 0.10.4 through 0.10.7 and can be exploited remotely to crash the application, causing a denial of service. The connected advisories reference multiple vendor/security pages (Red Hat, Gentoo GL...

5CVSS6.2AI score0.02433EPSS

CVE•added 2005/03/04 5:0 a.m.•65 views

CVE-2005-0638

CVE-2005-0638 affects xloadimage (and xli) where filenames are not properly quoted when invoking gunzip, allowing shell metacharacter injection and arbitrary command execution when a malformed filename is processed. The issue impacts xloadimage prior to version 4.1-r2 and xli prior to 1.17, acros...

7.5CVSS7.1AI score0.03603EPSS

CVE•added 2005/03/07 5:0 a.m.•64 views

CVE-2005-0667

CVE-2005-0667 is a buffer‑overflow in Sylpheed’s header processing when replying to messages that contain non‑ASCII headers. Affected are Sylpheed before 1.0.3 and other versions before 1.9.5; successful exploitation can allow remote code execution with the user’s privileges. Several connected ad...

5.1CVSS7.6AI score0.03246EPSS