Novell Suse_linux_enterprise_desktop
80 CVEs affecting Novell Suse_linux_enterprise_desktop. Latest disclosed: 2017-09-08. Critical: 1, High: 14.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-9961 | Critical | 9.8 | 2017-06-06 | game-music-emu before 0.6.1 mishandles unspecified integer values. |
CVE-2016-2834 | High | 8.8 | 2016-06-13 | Mozilla Network Security Services (NSS) before 3.23, as used in Mozilla Firefox before 47.0, allows remote attackers to cause a denial of service (memory corru… |
CVE-2016-2818 | High | 8.8 | 2016-06-13 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to cause a de… |
CVE-2016-2815 | High | 8.8 | 2016-06-13 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 47.0 allow remote attackers to cause a denial of service (memory corruptio… |
CVE-2016-3134 | High | 8.4 | 2016-04-27 | The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denia… |
CVE-2016-5759 | High | 7.8 | 2017-09-08 | The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as root. |
CVE-2017-1000366 | High | 7.8 | 2017-06-19 | glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causing them to alias, potentially resulting… |
CVE-2016-4997 | High | 7.8 | 2016-07-03 | The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users… |
CVE-2016-1583 | High | 7.8 | 2016-06-27 | The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of serv… |
CVE-2016-4805 | High | 7.8 | 2016-05-23 | Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service (memory corrupti… |
CVE-2016-3672 | High | 7.8 | 2016-04-27 | The arch_pick_mmap_layout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it… |
CVE-2015-8921 | High | 7.5 | 2016-09-20 | The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a craft… |
CVE-2015-8919 | High | 7.5 | 2016-09-20 | The lha_read_file_extended_header function in archive_read_support_format_lha.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service… |
CVE-2015-8918 | High | 7.5 | 2016-09-20 | The archive_string_append function in archive_string.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted ca… |
CVE-2014-3687 | High | 7.5 | 2014-11-10 | The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to caus… |
CVE-2015-8816 | Medium | 6.8 | 2016-04-27 | The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows ph… |
CVE-2015-8923 | Medium | 6.5 | 2016-09-20 | The process_extra function in libarchive before 3.2.0 uses the size field and a signed number in an offset, which allows remote attackers to cause a denial of… |
CVE-2016-4482 | Medium | 6.2 | 2016-05-23 | The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local user… |
CVE-2016-2847 | Medium | 6.2 | 2016-04-27 | fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consu… |
CVE-2016-9960 | Medium | 5.5 | 2017-06-06 | game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and process crash). |