Opensuse

opensuse

Vendor: Opensuse • 1,454 CVEs

CVEs (1,454)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2013-3794 4Mariadb OpensuseOracle+1 more 7Linux Enterprise Desktop Linux Enterprise ServerLinux Enterprise Software Development Kit+4 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Partition.
CVE-2013-3793 6Canonical DebianMariadb+3 more 9Debian Linux Linux Enterprise DesktopLinux Enterprise Server+6 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Data Manipulation...Show more Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Data Manipulation Language.Show less
CVE-2013-3783 6Canonical DebianMariadb+3 more 8Debian Linux Linux Enterprise DesktopLinux Enterprise Server+5 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Parser.
CVE-2013-2765 2Opensuse Trustwave 2Modsecurity Opensuse Apr 29, 2026 Jul 15, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service (NULL pointer dereference, process crash, and disk consumption) via a POST request with a large body and...Show more The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service (NULL pointer dereference, process crash, and disk consumption) via a POST request with a large body and a crafted Content-Type header.Show less
CVE-2013-1896 4Apache CanonicalOpensuse+1 more 9Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+6 more Apr 29, 2026 Jul 10, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 mod_dav.c in the Apache HTTP Server before 2.2.25 does not properly determine whether DAV is enabled for a URI, which allows remote attackers to cause a denial of service (segmentation fault) via a MERGE request in which...Show more mod_dav.c in the Apache HTTP Server before 2.2.25 does not properly determine whether DAV is enabled for a URI, which allows remote attackers to cause a denial of service (segmentation fault) via a MERGE request in which the URI is configured for handling by the mod_dav_svn module, but a certain href attribute in XML data refers to a non-DAV URI.Show less
CVE-2013-1362 2Nagios Opensuse 2Opensuse Remote Plug In Executor Apr 29, 2026 Jul 9, 2013 N/A· v4 N/A· v3 7.5 HIGH· v2 Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor (NRPE) before 2.14 might allow remote attackers to execute arbitrary shell commands via "$()" shell metacharacters, which are processed by ba...Show more Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor (NRPE) before 2.14 might allow remote attackers to execute arbitrary shell commands via "$()" shell metacharacters, which are processed by bash.Show less
CVE-2013-2168 2Freedesktop Opensuse 2Dbus Opensuse Apr 29, 2026 Jul 3, 2013 N/A· v4 N/A· v3 1.9 LOW· v2 The _dbus_printf_string_upper_bound function in dbus/dbus-sysdeps-unix.c in D-Bus (aka DBus) 1.4.x before 1.4.26, 1.6.x before 1.6.12, and 1.7.x before 1.7.4 allows local users to cause a denial of service (service crash...Show more The _dbus_printf_string_upper_bound function in dbus/dbus-sysdeps-unix.c in D-Bus (aka DBus) 1.4.x before 1.4.26, 1.6.x before 1.6.12, and 1.7.x before 1.7.4 allows local users to cause a denial of service (service crash) via a crafted message.Show less
CVE-2013-1690 6Canonical DebianMozilla+3 more 15Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+12 more Apr 22, 2026 Jun 26, 2013 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which al...Show more Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted web site that triggers an attempt to execute data at an unmapped memory location.Show less
CVE-2013-2064 6Canonical DebianFedoraproject+3 more 6Debian Linux FedoraLibxcb+3 more Apr 29, 2026 Jun 15, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Integer overflow in X.org libxcb 1.9 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the read_packet function.
CVE-2013-1987 3Canonical OpensuseX 3Libxrender OpensuseUbuntu Linux Apr 29, 2026 Jun 15, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Multiple integer overflows in X.org libXrender 0.9.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XRenderQueryFilters, (2) XRenderQueryForm...Show more Multiple integer overflows in X.org libXrender 0.9.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XRenderQueryFilters, (2) XRenderQueryFormats, and (3) XRenderQueryPictIndexValues functions.Show less
CVE-2013-1862 5Apache CanonicalOpensuse+2 more 10Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+7 more Apr 29, 2026 Jun 10, 2013 N/A· v4 N/A· v3 5.1 MEDIUM· v2 mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary command...Show more mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.Show less
CVE-2013-4082 3Debian OpensuseWireshark 3Debian Linux OpensuseWireshark Apr 29, 2026 Jun 9, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The vwr_read function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x before 1.8.8 does not validate the relationship between a record length and a trailer length, which allows remote attackers to...Show more The vwr_read function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x before 1.8.8 does not validate the relationship between a record length and a trailer length, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted packet.Show less
CVE-2013-4081 3Debian OpensuseWireshark 3Debian Linux OpensuseWireshark Apr 29, 2026 Jun 9, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The http_payload_subdissector function in epan/dissectors/packet-http.c in the HTTP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 does not properly determine when to use a recursive approach, which al...Show more The http_payload_subdissector function in epan/dissectors/packet-http.c in the HTTP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 does not properly determine when to use a recursive approach, which allows remote attackers to cause a denial of service (stack consumption) via a crafted packet.Show less
CVE-2013-4079 2Opensuse Wireshark 2Opensuse Wireshark Apr 29, 2026 Jun 9, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The dissect_schedule_message function in epan/dissectors/packet-gsm_cbch.c in the GSM CBCH dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (infinite loop and application han...Show more The dissect_schedule_message function in epan/dissectors/packet-gsm_cbch.c in the GSM CBCH dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (infinite loop and application hang) via a crafted packet.Show less
CVE-2013-4078 3Debian OpensuseWireshark 3Debian Linux OpensuseWireshark Apr 29, 2026 Jun 9, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 epan/dissectors/packet-rdp.c in the RDP dissector in Wireshark 1.8.x before 1.8.8 does not validate return values during checks for data availability, which allows remote attackers to cause a denial of service (applicati...Show more epan/dissectors/packet-rdp.c in the RDP dissector in Wireshark 1.8.x before 1.8.8 does not validate return values during checks for data availability, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.Show less
CVE-2013-4077 3Debian OpensuseWireshark 3Debian Linux OpensuseWireshark Apr 29, 2026 Jun 9, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Array index error in the NBAP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a crafted packet, related to nbap.cnf and packet-nbap.c.
CVE-2013-4076 3Debian OpensuseWireshark 3Debian Linux OpensuseWireshark Apr 29, 2026 Jun 9, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Buffer overflow in the dissect_iphc_crtp_fh function in epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a cra...Show more Buffer overflow in the dissect_iphc_crtp_fh function in epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a crafted packet.Show less
CVE-2013-4075 3Debian OpensuseWireshark 3Debian Linux OpensuseWireshark Apr 29, 2026 Jun 9, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.x before 1.8.8 does not properly initialize memory, which allows remote attackers to cause a denial of service (application crash) via a cra...Show more epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.x before 1.8.8 does not properly initialize memory, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.Show less
CVE-2013-4074 3Debian OpensuseWireshark 3Debian Linux OpensuseWireshark Apr 29, 2026 Jun 9, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The dissect_capwap_data function in epan/dissectors/packet-capwap.c in the CAPWAP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 incorrectly uses a -1 data value to represent an error condition, which...Show more The dissect_capwap_data function in epan/dissectors/packet-capwap.c in the CAPWAP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 incorrectly uses a -1 data value to represent an error condition, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.Show less
CVE-2002-2443 6Canonical DebianFedoraproject+3 more 10Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+7 more Apr 29, 2026 May 29, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and ba...Show more schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a communication loop, as demonstrated by krb_pingpong.nasl, a related issue to CVE-1999-0103.Show less

Previous 1...505152...73 Next