Linux
by SUSE S.A.
CVEs (212)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-0109 | 0.03 | — | 0.01 | Mar 12, 2001 | rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlink attack on the rctmp temporary file. | |||
| CVE-2000-1095 | 0.03 | — | 0.01 | Jan 9, 2001 | modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters. | |||
| CVE-2000-1134 | 0.03 | — | 0.01 | Jan 9, 2001 | Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack. | |||
| CVE-2000-0438 | 0.03 | — | 0.01 | May 22, 2000 | Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter. | |||
| CVE-2000-0293 | 0.03 | — | 0.01 | May 2, 2000 | aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory. | |||
| CVE-2000-0340 | 0.03 | — | 0.01 | Apr 29, 2000 | Buffer overflow in Gnomelib in SuSE Linux 6.3 allows local users to execute arbitrary commands via the DISPLAY environmental variable. | |||
| CVE-2000-0229 | 0.03 | — | 0.01 | Mar 22, 2000 | gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root. | |||
| CVE-2000-0231 | 0.03 | — | 0.01 | Mar 16, 2000 | Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges. | |||
| CVE-2000-0218 | 0.03 | — | 0.01 | Feb 3, 2000 | Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname. | |||
| CVE-2000-0362 | 0.03 | — | 0.01 | Oct 22, 1999 | Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges. | |||
| CVE-1999-0906 | 0.03 | — | 0.01 | Sep 23, 1999 | Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable. | |||
| CVE-1999-0768 | 0.03 | — | 0.02 | Aug 25, 1999 | Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable. | |||
| CVE-1999-0746 | 0.03 | — | 0.06 | Aug 16, 1999 | A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a denial of service. | |||
| CVE-1999-0804 | 0.03 | — | 0.06 | Jun 1, 1999 | Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths. | |||
| CVE-1999-0433 | 0.03 | — | 0.01 | Mar 21, 1999 | XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. | |||
| CVE-1999-0409 | 0.03 | — | 0.01 | Mar 4, 1999 | Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access. | |||
| CVE-1999-0405 | 0.03 | — | 0.01 | Feb 18, 1999 | A buffer overflow in lsof allows local users to obtain root privilege. | |||
| CVE-1999-0363 | 0.03 | — | 0.01 | Feb 2, 1999 | SuSE 5.2 PLP lpc program has a buffer overflow that leads to root compromise. | |||
| CVE-2005-0488 | 0.01 | — | 0.17 | Jun 14, 2005 | Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command. | |||
| CVE-2004-0947 | 0.01 | — | 0.07 | Feb 9, 2005 | Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long filenames. |
- CVE-2001-0109Mar 12, 2001risk 0.03cvss —epss 0.01
rctab in SuSE 7.0 and earlier allows local users to create or overwrite arbitrary files via a symlink attack on the rctmp temporary file.
- CVE-2000-1095Jan 9, 2001risk 0.03cvss —epss 0.01
modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.
- CVE-2000-1134Jan 9, 2001risk 0.03cvss —epss 0.01
Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.
- CVE-2000-0438May 22, 2000risk 0.03cvss —epss 0.01
Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.
- CVE-2000-0293May 2, 2000risk 0.03cvss —epss 0.01
aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spaces, which are then incorrectly interpreted by aaa_base when it deletes expired files from the /tmp directory.
- CVE-2000-0340Apr 29, 2000risk 0.03cvss —epss 0.01
Buffer overflow in Gnomelib in SuSE Linux 6.3 allows local users to execute arbitrary commands via the DISPLAY environmental variable.
- CVE-2000-0229Mar 22, 2000risk 0.03cvss —epss 0.01
gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root.
- CVE-2000-0231Mar 16, 2000risk 0.03cvss —epss 0.01
Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges.
- CVE-2000-0218Feb 3, 2000risk 0.03cvss —epss 0.01
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
- CVE-2000-0362Oct 22, 1999risk 0.03cvss —epss 0.01
Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges.
- CVE-1999-0906Sep 23, 1999risk 0.03cvss —epss 0.01
Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable.
- CVE-1999-0768Aug 25, 1999risk 0.03cvss —epss 0.02
Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable.
- CVE-1999-0746Aug 16, 1999risk 0.03cvss —epss 0.06
A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a denial of service.
- CVE-1999-0804Jun 1, 1999risk 0.03cvss —epss 0.06
Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.
- CVE-1999-0433Mar 21, 1999risk 0.03cvss —epss 0.01
XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
- CVE-1999-0409Mar 4, 1999risk 0.03cvss —epss 0.01
Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access.
- CVE-1999-0405Feb 18, 1999risk 0.03cvss —epss 0.01
A buffer overflow in lsof allows local users to obtain root privilege.
- CVE-1999-0363Feb 2, 1999risk 0.03cvss —epss 0.01
SuSE 5.2 PLP lpc program has a buffer overflow that leads to root compromise.
- CVE-2005-0488Jun 14, 2005risk 0.01cvss —epss 0.17
Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.
- CVE-2004-0947Feb 9, 2005risk 0.01cvss —epss 0.07
Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long filenames.
Page 3 of 11