Suse Linux Enterprise Software Development Kit

suse_linux_enterprise_software_development_kit

Vendor: Novell • 65 CVEs

CVEs (65)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-6815 7Arista CanonicalFedoraproject+4 more 11Enterprise Linux EosFedora+8 more Nov 21, 2024 Jan 31, 2020 N/A· v4 3.5 LOW· v3 2.7 LOW· v2 The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service (infinite loop a...Show more The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4.0.1 does not properly process transmit descriptor data when sending a network packet, which allows attackers to cause a denial of service (infinite loop and guest crash) via unspecified vectors.Show less
CVE-2016-9961 5Fedoraproject Game Music Emu ProjectNovell+2 more 7Fedora Game Music EmuLeap+4 more May 13, 2026 Jun 6, 2017 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 game-music-emu before 0.6.1 mishandles unspecified integer values.
CVE-2016-9960 5Fedoraproject Game Music Emu ProjectNovell+2 more 7Fedora Game Music EmuLeap+4 more May 13, 2026 Jun 6, 2017 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and process crash).
CVE-2016-7796 3Novell RedhatSystemd Project 9Enterprise Linux Desktop Enterprise Linux Hpc NodeEnterprise Linux Server+6 more May 6, 2026 Oct 13, 2016 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 The manager_dispatch_notify_fd function in systemd allows local users to cause a denial of service (system hang) via a zero-length message received over a notify socket, which causes an error to be returned and the notif...Show more The manager_dispatch_notify_fd function in systemd allows local users to cause a denial of service (system hang) via a zero-length message received over a notify socket, which causes an error to be returned and the notification handler to be disabled.Show less
CVE-2015-8924 3Canonical LibarchiveNovell 5Libarchive Suse Linux Enterprise DesktopSuse Linux Enterprise Server+2 more May 6, 2026 Sep 20, 2016 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The archive_read_format_tar_read_header function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted tar file.
CVE-2015-8923 3Canonical LibarchiveNovell 5Libarchive Suse Linux Enterprise DesktopSuse Linux Enterprise Server+2 more May 6, 2026 Sep 20, 2016 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The process_extra function in libarchive before 3.2.0 uses the size field and a signed number in an offset, which allows remote attackers to cause a denial of service (crash) via a crafted zip file.
CVE-2015-8922 4Canonical LibarchiveNovell+1 more 6Libarchive LinuxSuse Linux Enterprise Desktop+3 more May 6, 2026 Sep 20, 2016 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted 7z file, related to th...Show more The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted 7z file, related to the _7z_folder struct.Show less
CVE-2015-8921 3Canonical LibarchiveNovell 5Libarchive Suse Linux Enterprise DesktopSuse Linux Enterprise Server+2 more May 6, 2026 Sep 20, 2016 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.
CVE-2015-8920 3Canonical LibarchiveNovell 5Libarchive Suse Linux Enterprise DesktopSuse Linux Enterprise Server+2 more May 6, 2026 Sep 20, 2016 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file.
CVE-2015-8919 3Canonical LibarchiveNovell 5Libarchive Suse Linux Enterprise DesktopSuse Linux Enterprise Server+2 more May 6, 2026 Sep 20, 2016 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The lha_read_file_extended_header function in archive_read_support_format_lha.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds heap) via a crafted (1) lzh or (2) lha file.
CVE-2015-8918 2Libarchive Novell 4Libarchive Suse Linux Enterprise DesktopSuse Linux Enterprise Server+1 more May 6, 2026 Sep 20, 2016 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The archive_string_append function in archive_string.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted cab files, related to "overlapping memcpy."
CVE-2016-4997 5Canonical DebianLinux+2 more 11Debian Linux LinuxLinux Kernel+8 more May 6, 2026 Jul 3, 2016 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corru...Show more The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement.Show less
CVE-2016-1583 4Canonical DebianLinux+1 more 10Debian Linux Linux KernelSuse Linux Enterprise Debuginfo+7 more May 6, 2026 Jun 27, 2016 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted...Show more The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.Show less
CVE-2016-2834 4Canonical MozillaNovell+1 more 8Firefox LeapNetwork Security Services+5 more May 6, 2026 Jun 13, 2016 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 Mozilla Network Security Services (NSS) before 3.23, as used in Mozilla Firefox before 47.0, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified oth...Show more Mozilla Network Security Services (NSS) before 3.23, as used in Mozilla Firefox before 47.0, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors.Show less
CVE-2016-2818 6Canonical DebianMozilla+3 more 21Debian Linux Enterprise Linux DesktopEnterprise Linux For Ibm Z Systems+18 more May 6, 2026 Jun 13, 2016 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or...Show more Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.Show less
CVE-2016-2815 4Canonical MozillaNovell+1 more 7Firefox LeapOpensuse+4 more May 6, 2026 Jun 13, 2016 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 47.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code v...Show more Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 47.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.Show less
CVE-2016-0376 3Ibm NovellRedhat 13Enterprise Linux Desktop Enterprise Linux Hpc Node SupplementaryEnterprise Linux Server+10 more May 6, 2026 Jun 3, 2016 N/A· v4 8.1 HIGH· v3 5.1 MEDIUM· v2 The com.ibm.rmi.io.SunSerializableFactory class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 be...Show more The com.ibm.rmi.io.SunSerializableFactory class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) does not properly deserialize classes in an AccessController doPrivileged block, which allows remote attackers to bypass a sandbox protection mechanism and execute arbitrary code as demonstrated by the readValue method of the com.ibm.rmi.io.ValueHandlerPool.ValueHandlerSingleton class, which implements the javax.rmi.CORBA.ValueHandler interface. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-5456.Show less
CVE-2016-0363 3Ibm NovellRedhat 13Enterprise Linux Desktop Enterprise Linux Hpc Node SupplementaryEnterprise Linux Server+10 more May 6, 2026 Jun 3, 2016 N/A· v4 8.1 HIGH· v3 6.8 MEDIUM· v2 The com.ibm.CORBA.iiop.ClientDelegate class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before...Show more The com.ibm.CORBA.iiop.ClientDelegate class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) uses the invoke method of the java.lang.reflect.Method class in an AccessController doPrivileged block, which allows remote attackers to call setSecurityManager and bypass a sandbox protection mechanism via vectors related to a Proxy object instance implementing the java.lang.reflect.InvocationHandler interface. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3009.Show less
CVE-2016-4913 4Canonical LinuxNovell+1 more 6Linux Linux KernelSuse Linux Enterprise Debuginfo+3 more May 6, 2026 May 23, 2016 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM (aka alternate name) entries containing \0 characters, which allows local users to obtain sensitive information from...Show more The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM (aka alternate name) entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs filesystem.Show less
CVE-2016-4805 5Canonical LinuxNovell+2 more 12Enterprise Linux LinuxLinux Kernel+9 more May 6, 2026 May 23, 2016 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service (memory corruption and system crash, or spinlock) or possibly have unspecifie...Show more Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service (memory corruption and system crash, or spinlock) or possibly have unspecified other impact by removing a network namespace, related to the ppp_register_net_channel and ppp_unregister_channel functions.Show less

12 3 4 Next