Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
SUSE Linux Enterprise Server Number Of NVD 472 CRITICAL 27 HIGH 179 MEDIUM 215 LOW 51
URL https://www.suse.com/
Explanation Support is normally provided for 10 years after release, with service pack releases ending after about 8 years.
After 10 years, extended support is available for a fee, with yearly updates.
Tag
  • 商用ライセンス有り
  • Linux
Add Information URL
No Type Name URL
1 https://www.suse.com/lifecycle/
2 https://www.suse.com/support/policy/
3 https://www.suse.com/releasenotes/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
101 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP5 May 22, 2023 July 16, 2018 July 31, 2028 July 31, 2031 3 8 2 1
102 SUSE Linux Enterprise Server 12 Service Pack 5 Dec. 9, 2019 Oct. 24, 2014 Oct. 31, 2024 Oct. 31, 2027 18 41 78 9
103 SUSE Linux Enterprise Server 11 March 24, 2009 March 31, 2019 March 31, 2022 15 149 148 31
104 SUSE Linux Enterprise Server 10 June 17, 2006 July 31, 2013 6 104 65 23
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
101 9.8
7.5 		CRITICAL
Network 		Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possib… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8779 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:11:sp4
cpe:2.3:o:suse:linux_… 		2024-11-21 11:39
2016-04-20 		Show GitHub Exploit DB Packet Storm
102 9.8
7.5 		CRITICAL
Network 		Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the s… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8778 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:11:sp4
cpe:2.3:o:suse:linux_… 		2024-11-21 11:39
2016-04-20 		Show GitHub Exploit DB Packet Storm
103 9.1
6.4 		CRITICAL
Network 		The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive informatio… CWE-189
Numeric Errors 		CVE-2015-8776 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:11:sp4
cpe:2.3:o:suse:linux_… 		2024-11-21 11:39
2016-04-20 		Show GitHub Exploit DB Packet Storm
104 9.8
7.5 		CRITICAL
Network 		Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9761 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:11.0:sp4
cpe:2.3:o:suse:linu… 		2024-11-21 11:21
2016-04-20 		Show GitHub Exploit DB Packet Storm
105 6.0
4.7 		MEDIUM
Local 		The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to hit BUG conditions and cause a denial of se… CWE-476
 NULL Pointer Dereference 		CVE-2015-8551 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:11:sp4
cpe:2.3:o:suse:linux_… 		2024-11-21 11:38
2016-04-14 		Show GitHub Exploit DB Packet Storm
106 6.2
2.1 		MEDIUM
Local 		The mysql-systemd-helper script in the mysql-community-server package before 5.6.28-2.17.1 in openSUSE 13.2 and before 5.6.28-13.1 in openSUSE Leap 42.1 and the mariadb package before 10.0.22-2.21.2 … CWE-200
Information Exposure 		CVE-2015-5969 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 2024-11-21 11:34
2016-04-9 		Show GitHub Exploit DB Packet Storm
107 9.8
10.0 		CRITICAL
Network 		Integer overflow in Git before 2.7.4 allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, which triggers a heap-based buffer overflow. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2324 cpe:2.3:o:suse:linux_enterprise_server:12.0:sp1 2024-11-21 11:48
2016-04-8 		Show GitHub Exploit DB Packet Storm
108 9.8
10.0 		CRITICAL
Network 		revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based b… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2315 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 2024-11-21 11:48
2016-04-8 		Show GitHub Exploit DB Packet Storm
109 8.6
5.0 		HIGH
Network 		named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted signature record for a DNAME r… NVD-CWE-noinfo
CVE-2016-1286 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:-
cpe:2.3:o:suse:linux_en… 		2024-11-21 11:46
2016-03-10 		Show GitHub Exploit DB Packet Storm
110 6.8
4.3 		MEDIUM
Network 		named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 does not properly handle DNAME records when parsing fetch reply messages, which allows remote attackers to cause a denial of service … NVD-CWE-noinfo
CVE-2016-1285 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:-
cpe:2.3:o:suse:linux_en… 		2024-11-21 11:46
2016-03-10 		Show GitHub Exploit DB Packet Storm