rpm package
suse/wicked&distro=SUSE Linux Enterprise Module for Basesystem 15
pkg:rpm/suse/wicked&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-18903 | — | < 0.6.60-3.24.1 | 0.6.60-3.24.1 | Mar 2, 2020 | A Use After Free vulnerability in wicked of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Leap 15.1, Factory allows remote attackers to cause DoS or potentially code execution. This issue affects: SUSE Linux Enterprise Server 12 wicked versions prior | ||
| CVE-2019-18902 | — | < 0.6.60-3.21.1 | 0.6.60-3.21.1 | Mar 2, 2020 | A Use After Free vulnerability in wicked of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Leap 15.1, Factory allows remote attackers to cause DoS or potentially code execution. This issue affects: SUSE Linux Enterprise Server 12 wicked versions prior | ||
| CVE-2020-7217 | — | < 0.6.60-3.24.1 | 0.6.60-3.24.1 | Feb 10, 2020 | An ni_dhcp4_fsm_process_dhcp4_packet memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets with a different client-id. | ||
| CVE-2020-7216 | — | < 0.6.60-3.21.1 | 0.6.60-3.21.1 | Feb 5, 2020 | An ni_dhcp4_parse_response memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets without a message type option. |
- CVE-2019-18903Mar 2, 2020affected < 0.6.60-3.24.1fixed 0.6.60-3.24.1
A Use After Free vulnerability in wicked of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Leap 15.1, Factory allows remote attackers to cause DoS or potentially code execution. This issue affects: SUSE Linux Enterprise Server 12 wicked versions prior
- CVE-2019-18902Mar 2, 2020affected < 0.6.60-3.21.1fixed 0.6.60-3.21.1
A Use After Free vulnerability in wicked of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Leap 15.1, Factory allows remote attackers to cause DoS or potentially code execution. This issue affects: SUSE Linux Enterprise Server 12 wicked versions prior
- CVE-2020-7217Feb 10, 2020affected < 0.6.60-3.24.1fixed 0.6.60-3.24.1
An ni_dhcp4_fsm_process_dhcp4_packet memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets with a different client-id.
- CVE-2020-7216Feb 5, 2020affected < 0.6.60-3.21.1fixed 0.6.60-3.21.1
An ni_dhcp4_parse_response memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets without a message type option.