Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
SUSE Linux Enterprise Server Number Of NVD 472 CRITICAL 27 HIGH 179 MEDIUM 215 LOW 51
URL https://www.suse.com/
Explanation Support is normally provided for 10 years after release, with service pack releases ending after about 8 years.
After 10 years, extended support is available for a fee, with yearly updates.
Tag
  • Linux
  • 商用ライセンス有り
Add Information URL
No Type Name URL
1 https://www.suse.com/lifecycle/
2 https://www.suse.com/support/policy/
3 https://www.suse.com/releasenotes/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
191 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP5 May 22, 2023 July 16, 2018 July 31, 2028 July 31, 2031 3 8 2 1
192 SUSE Linux Enterprise Server 12 Service Pack 5 Dec. 9, 2019 Oct. 24, 2014 Oct. 31, 2024 Oct. 31, 2027 18 41 78 9
193 SUSE Linux Enterprise Server 11 March 24, 2009 March 31, 2019 March 31, 2022 15 149 148 31
194 SUSE Linux Enterprise Server 10 June 17, 2006 July 31, 2013 6 104 65 23
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
191 -
6.5 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related… NVD-CWE-noinfo
CVE-2014-2484 cpe:2.3:o:suse:linux_enterprise_server:11.0:sp3
cpe:2.3:o:suse:linux_enterprise_server:11.0:sp3 		2024-11-21 11:06
2014-07-17 		Show GitHub Exploit DB Packet Storm
192 -
5.0 		MEDIUM The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a certain backlog value, which allows remote attackers to cause a denial of servi… NVD-CWE-noinfo
CVE-2014-4667 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_… 		2024-11-21 11:10
2014-07-3 		Show GitHub Exploit DB Packet Storm
193 -
4.6 		MEDIUM Multiple integer overflows in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allow local users to cause a denial of service by leveraging /dev/snd/controlCX… CWE-190
 Integer Overflow or Wraparound 		CVE-2014-4656 cpe:2.3:o:suse:linux_enterprise_server:10:sp4 2024-11-21 11:10
2014-07-3 		Show GitHub Exploit DB Packet Storm
194 -
4.9 		MEDIUM The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not properly maintain the user_ctl_count value, which allows local user… CWE-190
 Integer Overflow or Wraparound 		CVE-2014-4655 cpe:2.3:o:suse:linux_enterprise_server:10:sp4 2024-11-21 11:10
2014-07-3 		Show GitHub Exploit DB Packet Storm
195 -
4.6 		MEDIUM The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not check authorization for SNDRV_CTL_IOCTL_ELEM_REPLACE commands, whic… CWE-416
 Use After Free 		CVE-2014-4654 cpe:2.3:o:suse:linux_enterprise_server:10:sp4 2024-11-21 11:10
2014-07-3 		Show GitHub Exploit DB Packet Storm
196 -
4.6 		MEDIUM sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not ensure possession of a read/write lock, which allows local users to cause a denial of service (use-a… CWE-416
 Use After Free 		CVE-2014-4653 cpe:2.3:o:suse:linux_enterprise_server:10:sp4 2024-11-21 11:10
2014-07-3 		Show GitHub Exploit DB Packet Storm
197 -
1.9 		LOW Race condition in the tlv handler functionality in the snd_ctl_elem_user_tlv function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allows local users t… CWE-362
Race Condition 		CVE-2014-4652 cpe:2.3:o:suse:linux_enterprise_server:10:sp4 2024-11-21 11:10
2014-07-3 		Show GitHub Exploit DB Packet Storm
198 -
7.5 		HIGH Multiple integer overflows in the lzo1x_decompress_safe function in lib/lzo/lzo1x_decompress_safe.c in the LZO decompressor in the Linux kernel before 3.15.2 allow context-dependent attackers to caus… CWE-190
 Integer Overflow or Wraparound 		CVE-2014-4608 cpe:2.3:o:suse:linux_enterprise_server:11:sp2 2024-11-21 11:10
2014-07-3 		Show GitHub Exploit DB Packet Storm
199 -
2.3 		LOW The rd_build_device_space function in drivers/target/target_core_rd.c in the Linux kernel before 3.14 does not properly initialize a certain data structure, which allows local users to obtain sensiti… CWE-200
Information Exposure 		CVE-2014-4027 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3 		2024-11-21 11:09
2014-06-23 		Show GitHub Exploit DB Packet Storm
200 -
2.1 		LOW ppc64-diag 2.6.1 uses 0775 permissions for /tmp/diagSEsnap and does not properly restrict permissions for /tmp/diagSEsnap/snapH.tar.gz, which allows local users to obtain sensitive information by rea… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-4039 cpe:2.3:o:suse:linux_enterprise_server:11:sp3 2024-11-21 11:09
2014-06-18 		Show GitHub Exploit DB Packet Storm