Linux

linux

Vendor: Conectiva • 63 CVEs

CVEs (63)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2004-0817 9Conectiva EnlightenmentImagemagick+6 more 16Enterprise Linux Enterprise Linux DesktopFedora Core+13 more Apr 16, 2026 Dec 31, 2004 N/A· v4 N/A· v3 7.5 HIGH· v2 Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file.
CVE-2004-0802 9Conectiva EnlightenmentImagemagick+6 more 16Enterprise Linux Enterprise Linux DesktopFedora Core+13 more Apr 16, 2026 Dec 31, 2004 N/A· v4 N/A· v3 5.1 MEDIUM· v2 Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817.
CVE-2004-1337 3Conectiva GnuUbuntu 3Linux Realtime Linux Security ModuleUbuntu Linux Apr 16, 2026 Dec 23, 2004 N/A· v4 N/A· v3 7.2 HIGH· v2 The POSIX Capability Linux Security Module (LSM) for Linux kernel 2.6 does not properly handle the credentials of a process that is launched before the module is loaded, which allows local users to gain privileges.
CVE-2004-1307 10Apple AvayaConectiva+7 more 19Call Management System Server CvlanIcontrol Service Manager+16 more Apr 16, 2026 Dec 21, 2004 N/A· v4 N/A· v3 7.5 HIGH· v2 Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which cau...Show more Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow.Show less
CVE-2004-1145 7Altlinux ConectivaDebian+4 more 9Alt Linux Debian LinuxEnterprise Linux+6 more Apr 16, 2026 Dec 15, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows...Show more Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary files.Show less
CVE-2004-1142 7Altlinux ConectivaDebian+4 more 9Alt Linux Debian LinuxEnterprise Linux+6 more Apr 16, 2026 Dec 15, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed SMB packet.
CVE-2004-1139 7Altlinux ConectivaDebian+4 more 9Alt Linux Debian LinuxEnterprise Linux+6 more Apr 16, 2026 Dec 15, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unknown vulnerability in the DICOM dissector in Ethereal 0.10.4 through 0.10.7 allows remote attackers to cause a denial of service (application crash).
CVE-2004-0626 4Conectiva GentooLinux+1 more 4Linux LinuxLinux Kernel+1 more Apr 16, 2026 Dec 6, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The tcp_find_option function of the netfilter subsystem in Linux kernel 2.6, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a large...Show more The tcp_find_option function of the netfilter subsystem in Linux kernel 2.6, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a large option length that produces a negative integer after a casting operation to the char type.Show less
CVE-2004-0497 7Conectiva GentooLinux+4 more 9Enterprise Linux LinuxLinux+6 more Apr 16, 2026 Dec 6, 2004 N/A· v4 N/A· v3 2.1 LOW· v2 Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4.
CVE-2005-0373 6Apple ConectivaCyrus+3 more 8Fedora Core LinuxMac Os X+5 more Apr 16, 2026 Oct 7, 2004 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyrus-SASL but not in any official releases, allows remote attackers to execute arbitrary cod...Show more Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyrus-SASL but not in any official releases, allows remote attackers to execute arbitrary code.Show less
CVE-2004-0827 9Conectiva EnlightenmentImagemagick+6 more 14Enterprise Linux Enterprise Linux DesktopFedora Core+11 more Apr 16, 2026 Sep 16, 2004 N/A· v4 N/A· v3 7.5 HIGH· v2 Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malf...Show more Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files.Show less
CVE-2004-0801 4Conectiva Linuxprinting.orgSun+1 more 4Foomatic Filters Java Desktop SystemLinux+1 more Apr 16, 2026 Sep 16, 2004 N/A· v4 N/A· v3 7.5 HIGH· v2 Unknown vulnerability in foomatic-rip in Foomatic before 3.0.2 allows local users or remote attackers with access to CUPS to execute arbitrary commands.
CVE-2004-0905 5Conectiva MozillaNetscape+2 more 10Enterprise Linux Enterprise Linux DesktopFedora Core+7 more Apr 16, 2026 Sep 14, 2004 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincing a user to drag and...Show more Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincing a user to drag and drop javascript: links to a frame or page in another domain.Show less
CVE-2004-0807 5Conectiva MandrakesoftSamba+2 more 5Linux Mandrake LinuxSamba+2 more Apr 16, 2026 Sep 13, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via certain malformed requests that cause new processes to be spawned and enter an infinite loop.
CVE-2004-0557 4Conectiva GentooRedhat+1 more 6Enterprise Linux Enterprise Linux DesktopFedora Core+3 more Apr 16, 2026 Aug 6, 2004 N/A· v4 N/A· v3 10.0 HIGH· v2 Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXchange (SoX) 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields.
CVE-2004-0554 6Avaya ConectivaGentoo+3 more 18Converged Communications Server Enterprise LinuxIntuity Audix+15 more Apr 16, 2026 Aug 6, 2004 N/A· v4 N/A· v3 2.1 LOW· v2 Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions,...Show more Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated using a "crash.c" program.Show less
CVE-2004-0535 6Conectiva EngardelinuxGentoo+3 more 17Linux LinuxLinux Kernel+14 more Apr 16, 2026 Aug 6, 2004 N/A· v4 N/A· v3 2.1 LOW· v2 The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported...Show more The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources.Show less
CVE-2004-0495 6Avaya ConectivaGentoo+3 more 18Converged Communications Server Enterprise LinuxIntuity Audix+15 more Apr 16, 2026 Aug 6, 2004 N/A· v4 N/A· v3 7.2 HIGH· v2 Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool.
CVE-2003-0780 3Conectiva MysqlOracle 3Linux MysqlMysql Apr 16, 2026 Sep 22, 2003 N/A· v4 N/A· v3 9.0 HIGH· v2 Buffer overflow in get_salt_from_password from sql_acl.cc for MySQL 4.0.14 and earlier, and 3.23.x, allows attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.
CVE-2003-0540 2Conectiva Wietse Venema 2Linux Postfix Apr 16, 2026 Aug 27, 2003 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The address parser code in Postfix 1.1.12 and earlier allows remote attackers to cause a denial of service (lock) via (1) a malformed envelope address to a local host that would generate a bounce and contains the ".!" st...Show more The address parser code in Postfix 1.1.12 and earlier allows remote attackers to cause a denial of service (lock) via (1) a malformed envelope address to a local host that would generate a bounce and contains the ".!" string in the MAIL FROM or Errors-To headers, which causes nqmgr to lock up, or (2) via a valid MAIL FROM with a RCPT TO containing a ".!" string, which causes an instance of the SMTP listener to lock up.Show less

Previous 123 4 Next