Linux Enterprise Server

linux_enterprise_server

Vendor: Suse • 474 CVEs

CVEs (474)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2013-5612 7Canonical FedoraprojectMozilla+4 more 16Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+13 more Apr 29, 2026 Dec 11, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 26.0 and SeaMonkey before 2.23 makes it easier for remote attackers to inject arbitrary web script or HTML by leveraging a Same Origin Policy violation t...Show more Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 26.0 and SeaMonkey before 2.23 makes it easier for remote attackers to inject arbitrary web script or HTML by leveraging a Same Origin Policy violation triggered by lack of a charset parameter in a Content-Type HTTP header.Show less
CVE-2013-5611 7Canonical FedoraprojectMozilla+4 more 9Fedora FirefoxLinux Enterprise Desktop+6 more Apr 29, 2026 Dec 11, 2013 N/A· v4 N/A· v3 5.8 MEDIUM· v2 Mozilla Firefox before 26.0 does not properly remove the Application Installation doorhanger, which makes it easier for remote attackers to spoof a Web App installation site by controlling the timing of page navigation.
CVE-2013-5610 6Canonical FedoraprojectMozilla+3 more 9Fedora FirefoxLinux Enterprise Desktop+6 more Apr 29, 2026 Dec 11, 2013 N/A· v4 N/A· v3 10.0 HIGH· v2 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 26.0 and SeaMonkey before 2.23 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibl...Show more Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 26.0 and SeaMonkey before 2.23 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.Show less
CVE-2013-4002 6Apache CanonicalIbm+3 more 15Host On Demand JavaJdk+12 more Apr 29, 2026 Jul 23, 2013 N/A· v4 N/A· v3 7.1 HIGH· v2 XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracl...Show more XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, Java SE Embedded 7u40 and earlier, and possibly other products allows remote attackers to cause a denial of service via vectors related to XML attribute names.Show less
CVE-2013-3812 6Canonical DebianMariadb+3 more 9Debian Linux Linux Enterprise DesktopLinux Enterprise Server+6 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 3.5 LOW· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Replication...Show more Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Replication.Show less
CVE-2013-3809 5Canonical MariadbOpensuse+2 more 8Linux Enterprise Desktop Linux Enterprise ServerLinux Enterprise Software Development Kit+5 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Audit Log.
CVE-2013-3808 4Mariadb OpensuseOracle+1 more 6Linux Enterprise Desktop Linux Enterprise ServerLinux Enterprise Software Development Kit+3 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.68 and earlier, 5.5.30 and earlier, and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Op...Show more Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.68 and earlier, 5.5.30 and earlier, and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Options.Show less
CVE-2013-3805 4Mariadb OpensuseOracle+1 more 7Linux Enterprise Desktop Linux Enterprise ServerLinux Enterprise Software Development Kit+4 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Prepared Statements.
CVE-2013-3804 6Canonical DebianMariadb+3 more 8Debian Linux Linux Enterprise DesktopLinux Enterprise Server+5 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related...Show more Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.Show less
CVE-2013-3802 6Canonical DebianMariadb+3 more 8Debian Linux Linux Enterprise DesktopLinux Enterprise Server+5 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related...Show more Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Full Text Search.Show less
CVE-2013-3801 4Mariadb OpensuseOracle+1 more 6Linux Enterprise Desktop Linux Enterprise ServerLinux Enterprise Software Development Kit+3 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Options.
CVE-2013-3794 4Mariadb OpensuseOracle+1 more 7Linux Enterprise Desktop Linux Enterprise ServerLinux Enterprise Software Development Kit+4 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Partition.
CVE-2013-3793 6Canonical DebianMariadb+3 more 9Debian Linux Linux Enterprise DesktopLinux Enterprise Server+6 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Data Manipulation...Show more Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Data Manipulation Language.Show less
CVE-2013-3783 6Canonical DebianMariadb+3 more 8Debian Linux Linux Enterprise DesktopLinux Enterprise Server+5 more Apr 29, 2026 Jul 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Parser.
CVE-2013-1690 6Canonical DebianMozilla+3 more 15Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+12 more Apr 22, 2026 Jun 26, 2013 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which al...Show more Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted web site that triggers an attempt to execute data at an unmapped memory location.Show less
CVE-2013-2465 3Oracle SunSuse 6Jre JreLinux Enterprise Desktop+3 more Apr 22, 2026 Jun 18, 2013 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affec...Show more Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to "Incorrect image channel verification" in 2D.Show less
CVE-2013-2147 2Linux Suse 2Linux Enterprise Server Linux Kernel Apr 29, 2026 Jun 7, 2013 N/A· v4 N/A· v3 2.1 LOW· v2 The HP Smart Array controller disk-array driver and Compaq SMART2 controller disk-array driver in the Linux kernel through 3.9.4 do not initialize certain data structures, which allows local users to obtain sensitive inf...Show more The HP Smart Array controller disk-array driver and Compaq SMART2 controller disk-array driver in the Linux kernel through 3.9.4 do not initialize certain data structures, which allows local users to obtain sensitive information from kernel memory via (1) a crafted IDAGETPCIINFO command for a /dev/ida device, related to the ida_locked_ioctl function in drivers/block/cpqarray.c or (2) a crafted CCISS_PASSTHRU32 command for a /dev/cciss device, related to the cciss_ioctl32_passthru function in drivers/block/cciss.c.Show less
CVE-2013-2021 3Canonical ClamavSuse 3Clamav Linux Enterprise ServerUbuntu Linux Apr 29, 2026 May 13, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 pdf.c in ClamAV 0.97.1 through 0.97.7 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted length value in an encrypted PDF file.
CVE-2013-2020 3Canonical ClamavSuse 3Clamav Linux Enterprise ServerUbuntu Linux Apr 29, 2026 May 13, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executa...Show more Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read.Show less
CVE-2013-3301 3Linux RedhatSuse 6Enterprise Linux Enterprise MrgLinux Enterprise Desktop+3 more Apr 29, 2026 Apr 29, 2013 N/A· v4 N/A· v3 7.2 HIGH· v2 The ftrace implementation in the Linux kernel before 3.8.8 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by leveraging the CAP_SYS_A...Show more The ftrace implementation in the Linux kernel before 3.8.8 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by leveraging the CAP_SYS_ADMIN capability for write access to the (1) set_ftrace_pid or (2) set_graph_function file, and then making an lseek system call.Show less

Previous 1...121314...24 Next