VYPR

CVSup

by SUSE S.A.

CVEs (2)

  • CVE-2005-0373Oct 7, 2004
    risk 0.00cvss epss 0.04

    Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyrus-SASL but not in any official releases, allows remote attackers to execute arbitrary code.

  • CVE-2004-2133Jan 29, 2004
    risk 0.00cvss epss 0.01

    Certain third-party packages for CVSup 16.1h, such as SuSE Linux, contain untrusted paths in the ELF RPATH fields of certain executables, which could allow local users to execute arbitrary code by causing cvsup to link against malicious libraries that are created in…