Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
SUSE Linux Enterprise Server Number Of NVD 472 CRITICAL 27 HIGH 179 MEDIUM 215 LOW 51
URL https://www.suse.com/
Explanation Support is normally provided for 10 years after release, with service pack releases ending after about 8 years.
After 10 years, extended support is available for a fee, with yearly updates.
Tag
  • Linux
  • 商用ライセンス有り
Add Information URL
No Type Name URL
1 https://www.suse.com/lifecycle/
2 https://www.suse.com/support/policy/
3 https://www.suse.com/releasenotes/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
201 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP5 May 22, 2023 July 16, 2018 July 31, 2028 July 31, 2031 3 8 2 1
202 SUSE Linux Enterprise Server 12 Service Pack 5 Dec. 9, 2019 Oct. 24, 2014 Oct. 31, 2024 Oct. 31, 2027 18 41 78 9
203 SUSE Linux Enterprise Server 11 March 24, 2009 March 31, 2019 March 31, 2022 15 149 148 31
204 SUSE Linux Enterprise Server 10 June 17, 2006 July 31, 2013 6 104 65 23
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
201 -
4.4 		MEDIUM ppc64-diag 2.6.1 allows local users to overwrite arbitrary files via a symlink attack related to (1) rtas_errd/diag_support.c and /tmp/get_dt_files, (2) scripts/ppc64_diag_mkrsrc and /tmp/diagSEsnap/… CWE-59
Link Following 		CVE-2014-4038 cpe:2.3:o:suse:linux_enterprise_server:11:sp3 2024-11-21 11:09
2014-06-18 		Show GitHub Exploit DB Packet Storm
202 7.8
7.2 		HIGH
Local 		The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafte… NVD-CWE-noinfo
CVE-2014-3153 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_… 		2026-04-22 02:47
2014-06-7 		Show GitHub Exploit DB Packet Storm
203 -
4.3 		MEDIUM The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers t… CWE-476
 NULL Pointer Dereference 		CVE-2014-3470 cpe:2.3:o:suse:linux_enterprise_server:12:- 2024-11-21 11:08
2014-06-6 		Show GitHub Exploit DB Packet Storm
204 -
4.3 		MEDIUM The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client… NVD-CWE-noinfo
CVE-2014-0221 cpe:2.3:o:suse:linux_enterprise_server:12:- 2024-11-21 11:01
2014-06-6 		Show GitHub Exploit DB Packet Storm
205 -
5.0 		MEDIUM The (1) asn1_read_value_type and (2) asn1_read_value functions in GNU Libtasn1 before 3.6 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via a NU… CWE-476
 NULL Pointer Dereference 		CVE-2014-3469 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_… 		2024-11-21 11:08
2014-06-6 		Show GitHub Exploit DB Packet Storm
206 -
7.5 		HIGH The asn1_get_bit_der function in GNU Libtasn1 before 3.6 does not properly report an error when a negative bit length is identified, which allows context-dependent attackers to cause out-of-bounds ac… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2014-3468 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_… 		2024-11-21 11:08
2014-06-6 		Show GitHub Exploit DB Packet Storm
207 -
5.0 		MEDIUM Multiple unspecified vulnerabilities in the DER decoder in GNU Libtasn1 before 3.6, as used in GnuTLS, allow remote attackers to cause a denial of service (out-of-bounds read) via crafted ASN.1 data. NVD-CWE-noinfo
CVE-2014-3467 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_… 		2024-11-21 11:08
2014-06-6 		Show GitHub Exploit DB Packet Storm
208 -
2.1 		LOW The raw_cmd_copyout function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly restrict access to certain pointers during processing of an FDRAWCMD ioctl call, which allo… CWE-200
Information Exposure 		CVE-2014-1738 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3 		2024-11-21 11:04
2014-05-12 		Show GitHub Exploit DB Packet Storm
209 -
7.2 		HIGH The raw_cmd_copyin function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly handle error conditions during processing of an FDRAWCMD ioctl call, which allows local user… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2014-1737 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3 		2024-11-21 11:04
2014-05-12 		Show GitHub Exploit DB Packet Storm
210 -
4.3 		MEDIUM The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows … CWE-476
 NULL Pointer Dereference 		CVE-2014-0198 cpe:2.3:o:suse:linux_enterprise_server:12:- 2024-11-21 11:01
2014-05-6 		Show GitHub Exploit DB Packet Storm