This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Novell First view 2005-10-27
Product Suse Linux Last view 2007-08-17
Version 10.0 Type Os
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:novell:suse_linux

Activity : Overall

Related : CVE

  Date Alert Description
2.1 2007-08-17 CVE-2007-4394

Unspecified vulnerability in a "core clean" cron job created by the findutils-locate package on SUSE Linux 10.0 and 10.1 and Enterprise Server 9 and 10 before 20070810 allows local users to delete of arbitrary files via unknown vectors.

10 2007-01-23 CVE-2007-0460

Multiple buffer overflows in ulogd for SUSE Linux 9.3 up to 10.1, and possibly other distributions, have unknown impact and attack vectors related to "improper string length calculations."

5 2006-02-23 CVE-2006-0803

The signature verification functionality in the YaST Online Update (YOU) script handling relies on a gpg feature that is not intended for signature verification, which prevents YOU from detecting malicious scripts or code that do not pass the signature check when gpg 1.4.x is being used.

2.1 2005-12-31 CVE-2005-4791

Multiple untrusted search path vulnerabilities in SUSE Linux 10.0 cause the working directory to be added to LD_LIBRARY_PATH, which might allow local users to execute arbitrary code via (1) liferea or (2) banshee.

6.9 2005-12-31 CVE-2005-4790

Multiple untrusted search path vulnerabilities in SUSE Linux 9.3 and 10.0, and possibly other distributions, cause the working directory to be added to LD_LIBRARY_PATH, which might allow local users to execute arbitrary code via (1) beagle, (2) tomboy, or (3) blam. NOTE: in August 2007, the tomboy vector was reported for other distributions.

4.6 2005-10-27 CVE-2005-3321

chkstat in SuSE Linux 9.0 through 10.0 allows local users to modify permissions of files by creating a hardlink to a file from a world-writable directory, which can cause the link count to drop to 1 when the file is deleted or replaced, which is then modified by chkstat to use weaker permissions.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

Open Source Vulnerability Database (OSVDB)

id Description
46404 SUSE Linux findutils-locate Package core clean Cron Job Unspecified Arbitrary...
39580 SuSE Linux banshee LD_LIBRARY_PATH Variable Path Subversion Local Privilege E...
39579 Liferea LD_LIBRARY_PATH Variable Path Subversion Local Privilege Escalation
39578 SuSE Linux tomboy LD_LIBRARY_PATH Variable Path Subversion Local Privilege Es...
39577 SuSE Linux blam LD_LIBRARY_PATH Variable Path Subversion Local Privilege Esca...
32939 ulogd Multiple Unspecified Overflows
28025 SuSE YaST YaST Online Update (YOU) Signature Verification Bypass
20263 SUSE Permissions Bypass chkstat Arbitrary File Access
19982 SuSE Linux beagle LD_LIBRARY_PATH Variable Path Subversion Local Privilege Es...

OpenVAS Exploits

id Description
2011-02-28 Name : Mandriva Update for tomboy MDVSA-2011:035 (tomboy)
File : nvt/gb_mandriva_MDVSA_2011_035.nasl
2009-10-10 Name : SLES9: Security update for liby2util
File : nvt/sles9p5016129.nasl
2009-04-09 Name : Mandriva Update for tomboy MDVSA-2008:064 (tomboy)
File : nvt/gb_mandriva_MDVSA_2008_064.nasl
2009-03-23 Name : Ubuntu Update for tomboy vulnerability USN-560-1
File : nvt/gb_ubuntu_USN_560_1.nasl
2009-02-27 Name : Fedora Update for tomboy FEDORA-2007-3253
File : nvt/gb_fedora_2007_3253_tomboy_fc8.nasl
2009-02-27 Name : Fedora Update for blam FEDORA-2007-3962
File : nvt/gb_fedora_2007_3962_blam_fc8.nasl
2009-02-27 Name : Fedora Update for blam FEDORA-2007-3952
File : nvt/gb_fedora_2007_3952_blam_fc7.nasl
2009-02-27 Name : Fedora Update for blam FEDORA-2007-3798
File : nvt/gb_fedora_2007_3798_blam_fc8.nasl
2009-02-27 Name : Fedora Update for blam FEDORA-2007-3792
File : nvt/gb_fedora_2007_3792_blam_fc7.nasl
2009-02-27 Name : Fedora Update for liferea FEDORA-2007-3733
File : nvt/gb_fedora_2007_3733_liferea_fc7.nasl
2009-02-27 Name : Fedora Update for liferea FEDORA-2007-3701
File : nvt/gb_fedora_2007_3701_liferea_fc8.nasl
2009-02-27 Name : Fedora Update for tomboy FEDORA-2007-3011
File : nvt/gb_fedora_2007_3011_tomboy_fc7.nasl
2009-02-17 Name : Fedora Update for blam FEDORA-2008-6127
File : nvt/gb_fedora_2008_6127_blam_fc8.nasl
2009-02-17 Name : Fedora Update for blam FEDORA-2008-6491
File : nvt/gb_fedora_2008_6491_blam_fc8.nasl
2009-02-17 Name : Fedora Update for blam FEDORA-2008-8399
File : nvt/gb_fedora_2008_8399_blam_fc8.nasl
2009-02-17 Name : Fedora Update for blam FEDORA-2008-9667
File : nvt/gb_fedora_2008_9667_blam_fc8.nasl
2009-02-16 Name : Fedora Update for blam FEDORA-2008-1535
File : nvt/gb_fedora_2008_1535_blam_fc8.nasl
2009-02-16 Name : Fedora Update for blam FEDORA-2008-2682
File : nvt/gb_fedora_2008_2682_blam_fc8.nasl
2009-02-13 Name : Fedora Update for blam FEDORA-2008-11551
File : nvt/gb_fedora_2008_11551_blam_fc8.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200703-17 (ulogd)
File : nvt/glsa_200703_17.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200711-12 (tomboy)
File : nvt/glsa_200711_12.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200801-14 (blam)
File : nvt/glsa_200801_14.nasl

Nessus® Vulnerability Scanner

id Description
2014-01-27 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201401-28.nasl - Type: ACT_GATHER_INFO
2011-02-23 Name: The remote Mandriva Linux host is missing a security update.
File: mandriva_MDVSA-2011-035.nasl - Type: ACT_GATHER_INFO
2009-09-24 Name: The remote SuSE 9 host is missing a security-related patch.
File: suse9_10892.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote Mandriva Linux host is missing a security update.
File: mandriva_MDVSA-2008-064.nasl - Type: ACT_GATHER_INFO
2008-01-29 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-200801-14.nasl - Type: ACT_GATHER_INFO
2008-01-08 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-560-1.nasl - Type: ACT_GATHER_INFO
2007-11-29 Name: The remote Fedora host is missing a security update.
File: fedora_2007-3701.nasl - Type: ACT_GATHER_INFO
2007-11-29 Name: The remote Fedora host is missing a security update.
File: fedora_2007-3733.nasl - Type: ACT_GATHER_INFO
2007-11-29 Name: The remote Fedora host is missing a security update.
File: fedora_2007-3792.nasl - Type: ACT_GATHER_INFO
2007-11-29 Name: The remote Fedora host is missing a security update.
File: fedora_2007-3798.nasl - Type: ACT_GATHER_INFO
2007-11-20 Name: The remote openSUSE host is missing a security update.
File: suse_tomboy-4698.nasl - Type: ACT_GATHER_INFO
2007-11-14 Name: The remote Fedora host is missing a security update.
File: fedora_2007-3253.nasl - Type: ACT_GATHER_INFO
2007-11-12 Name: The remote Fedora host is missing a security update.
File: fedora_2007-3011.nasl - Type: ACT_GATHER_INFO
2007-11-09 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-200711-12.nasl - Type: ACT_GATHER_INFO
2007-03-19 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-200703-17.nasl - Type: ACT_GATHER_INFO