← Back

Gentoo

gentoo

178 CVEs • 30 products

Products (30)

Click to collapse
Toggle
Linux
linux
136 CVEs
Portage
portage
7 CVEs
Logrotate
logrotate
6 CVEs
Webmin
webmin
5 CVEs
Xnview
xnview
2 CVEs
Xdg Utils
xdg-utils
2 CVEs
Cman
cman
2 CVEs
Fence
fence
2 CVEs
Soko
soko
2 CVEs
Syslinux
syslinux
1 CVE
Mirrorselect
mirrorselect
1 CVE
Rootkit Hunter
rootkit_hunter
1 CVE
Poppassd Pam
poppassd_pam
1 CVE
Linux Webapp Config
linux_webapp-config
1 CVE
Linux Eix
linux_eix
1 CVE
Qt Unixodbc
qt-unixodbc
1 CVE
Nview
nview
1 CVE
App Crypt Pinentry
app-crypt_pinentry
1 CVE
Media Libs Jpeg
media-libs_jpeg
1 CVE
File
file
1 CVE
Glibc
glibc
1 CVE
Nvclock
nvclock
1 CVE
Mldonkey Ebuild
mldonkey_ebuild
1 CVE
Php Toolkit
php_toolkit
1 CVE
Nullmailer
nullmailer
1 CVE
Dev Python Flower
dev-python-flower
1 CVE
Sci Mathematics Gimps
sci-mathematics-gimps
1 CVE
Security
security
1 CVE
Ebuild For Slurm
ebuild_for_slurm
1 CVE
Gentoo Linux
gentoo_linux
0 CVEs

CVEs (178)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2004-0626
4Conectiva
GentooLinux+1 more
4Linux
LinuxLinux Kernel+1 more
Apr 16, 2026
Dec 6, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The tcp_find_option function of the netfilter subsystem in Linux kernel 2.6, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a large...Show more
The tcp_find_option function of the netfilter subsystem in Linux kernel 2.6, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a large option length that produces a negative integer after a casting operation to the char type.Show less
CVE-2004-0608
10Arush
DreamforgeEpic Games+7 more
14Deusex
DevastationLinux+11 more
Apr 16, 2026
Dec 6, 2004
N/A· v4
N/A· v3
10.0 HIGH· v2
The Unreal Engine, as used in DeusEx 1.112fm and earlier, Devastation 390 and earlier, Mobile Forces 20000 and earlier, Nerf Arena Blast 1.2 and earlier, Postal 2 1337 and earlier, Rune 107 and earlier, Tactical Ops 3.4....Show more
The Unreal Engine, as used in DeusEx 1.112fm and earlier, Devastation 390 and earlier, Mobile Forces 20000 and earlier, Nerf Arena Blast 1.2 and earlier, Postal 2 1337 and earlier, Rune 107 and earlier, Tactical Ops 3.4.0 and earlier, Unreal 1 226f and earlier, Unreal II XMP 7710 and earlier, Unreal Tournament 451b and earlier, Unreal Tournament 2003 2225 and earlier, Unreal Tournament 2004 before 3236, Wheel of Time 333b and earlier, and X-com Enforcer, allows remote attackers to execute arbitrary code via a UDP packet containing a secure query with a long value, which overwrites memory.Show less
CVE-2004-0604
2Gentoo
Gift Fasttrack
2Gift Fasttrack
Linux
Apr 16, 2026
Dec 6, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The HTTP client and server in giFT-FastTrack 0.8.6 and earlier allows remote attackers to cause a denial of service (crash), possibly via an empty search query, which triggers a NULL dereference.
CVE-2004-0565
4Gentoo
LinuxMandrakesoft+1 more
6Linux
Linux KernelMandrake Linux+3 more
Apr 16, 2026
Dec 6, 2004
N/A· v4
N/A· v3
2.1 LOW· v2
Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH...Show more
Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH bit.Show less
CVE-2004-0497
7Conectiva
GentooLinux+4 more
9Enterprise Linux
LinuxLinux+6 more
Apr 16, 2026
Dec 6, 2004
N/A· v4
N/A· v3
2.1 LOW· v2
Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4.
CVE-2004-0496
5Gentoo
LinuxMandrakesoft+2 more
13Linux
Linux KernelMandrake Linux+10 more
Apr 16, 2026
Dec 6, 2004
N/A· v4
N/A· v3
7.2 HIGH· v2
Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source...Show more
Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool.Show less
CVE-2004-0456
3Debian
GentooPavuk
3Debian Linux
LinuxPavuk
Apr 16, 2026
Dec 6, 2004
N/A· v4
N/A· v3
7.6 HIGH· v2
Stack-based buffer overflow in pavuk 0.9pl28, 0.9pl27, and possibly other versions allows remote web sites to execute arbitrary code via a long HTTP Location header.
CVE-2004-0333
4Gentoo
OpenpkgUudeview+1 more
4Linux
OpenpkgUudeview+1 more
Apr 16, 2026
Nov 23, 2004
N/A· v4
N/A· v3
10.0 HIGH· v2
Buffer overflow in the UUDeview package, as used in WinZip 6.2 through WinZip 8.1 SR-1, and possibly other packages, allows remote attackers to execute arbitrary code via a MIME archive with certain long MIME parameters.
CVE-2004-0746
4Gentoo
KdeMandrakesoft+1 more
5Kde
KonquerorLinux+2 more
Apr 16, 2026
Oct 20, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
Konqueror in KDE 3.2.3 and earlier allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk and .firm.in, which could allow remote attackers to perform a session fixation attack an...Show more
Konqueror in KDE 3.2.3 and earlier allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk and .firm.in, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session.Show less
CVE-2004-0500
3Gentoo
MandrakesoftRob Flynn
3Gaim
LinuxMandrake Linux
Apr 16, 2026
Sep 28, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protocol messages that are n...Show more
Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protocol messages that are not properly handled in a strncpy call.Show less
CVE-2004-0809
8Apache
DebianGentoo+5 more
12Debian Linux
Enterprise LinuxEnterprise Linux Desktop+9 more
Apr 16, 2026
Sep 16, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.
CVE-2004-0432
3Gentoo
Proftpd ProjectTrustix
3Linux
ProftpdSecure Linux
Apr 16, 2026
Aug 18, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions.
CVE-2004-0419
3Gentoo
X.orgXfree86 Project
3Linux
X11r6Xdm
Apr 16, 2026
Aug 18, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions.
CVE-2004-0232
4Gentoo
Midnight CommanderSgi+1 more
4Linux
Midnight CommanderPropack+1 more
Apr 16, 2026
Aug 18, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.
CVE-2004-0231
4Gentoo
Midnight CommanderSgi+1 more
4Linux
Midnight CommanderPropack+1 more
Apr 16, 2026
Aug 18, 2004
N/A· v4
N/A· v3
2.1 LOW· v2
Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations."
CVE-2004-0229
2Gentoo
Linux
2Linux
Linux Kernel
Apr 16, 2026
Aug 18, 2004
N/A· v4
N/A· v3
4.6 MEDIUM· v2
The framebuffer driver in Linux kernel 2.6.x does not properly use the fb_copy_cmap function, with unknown impact.
CVE-2004-0226
4Gentoo
Midnight CommanderSgi+1 more
4Linux
Midnight CommanderPropack+1 more
Apr 16, 2026
Aug 18, 2004
N/A· v4
N/A· v3
10.0 HIGH· v2
Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.
CVE-2004-1737
2Gentoo
The Cacti Group
2Cacti
Linux
Apr 16, 2026
Aug 16, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
SQL injection vulnerability in auth_login.php in Cacti 0.8.5a allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) password parameters.
CVE-2004-0667
2Gentoo
Rsbac
2Linux
Rule Set Based Access Control
Apr 16, 2026
Aug 6, 2004
N/A· v4
N/A· v3
7.2 HIGH· v2
Rule Set Based Access Control (RSBAC) 1.2.2 through 1.2.3 allows access to sys_creat, sys_open, and sys_mknod inside jails, which could allow local users to gain elevated privileges.
CVE-2004-0649
2Gentoo
L2tpd
2L2tpd
Linux
Apr 16, 2026
Aug 6, 2004
N/A· v4
N/A· v3
10.0 HIGH· v2
Buffer overflow in write_packet in control.c for l2tpd may allow remote attackers to execute arbitrary code.