Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
SUSE Linux Enterprise Server Number Of NVD 472 CRITICAL 27 HIGH 179 MEDIUM 215 LOW 51
URL https://www.suse.com/
Explanation Support is normally provided for 10 years after release, with service pack releases ending after about 8 years.
After 10 years, extended support is available for a fee, with yearly updates.
Tag
  • Linux
  • 商用ライセンス有り
Add Information URL
No Type Name URL
1 https://www.suse.com/lifecycle/
2 https://www.suse.com/support/policy/
3 https://www.suse.com/releasenotes/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
211 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP5 May 22, 2023 July 16, 2018 July 31, 2028 July 31, 2031 3 8 2 1
212 SUSE Linux Enterprise Server 12 Service Pack 5 Dec. 9, 2019 Oct. 24, 2014 Oct. 31, 2024 Oct. 31, 2027 18 41 78 9
213 SUSE Linux Enterprise Server 11 March 24, 2009 March 31, 2019 March 31, 2022 15 149 148 31
214 SUSE Linux Enterprise Server 10 June 17, 2006 July 31, 2013 6 104 65 23
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
211 -
2.1 		LOW The Netlink implementation in the Linux kernel through 3.14.1 does not provide a mechanism for authorizing socket operations based on the opener of a socket, which allows local users to bypass intend… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0181 cpe:2.3:o:suse:linux_enterprise_server:11:sp1
cpe:2.3:o:suse:linux_enterprise_server:10:sp4 		2024-11-21 11:01
2014-04-27 		Show GitHub Exploit DB Packet Storm
212 -
4.0 		MEDIUM Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denia… CWE-362
Race Condition 		CVE-2010-5298 cpe:2.3:o:suse:linux_enterprise_server:12:- 2024-11-21 10:22
2014-04-15 		Show GitHub Exploit DB Packet Storm
213 -
2.9 		LOW Use-after-free vulnerability in the skb_segment function in net/core/skbuff.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel memory by leveraging the … CWE-416
 Use After Free 		CVE-2014-0131 cpe:2.3:o:suse:linux_enterprise_server:11:sp2 2024-11-21 11:01
2014-03-25 		Show GitHub Exploit DB Packet Storm
214 -
4.3 		MEDIUM The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a c… CWE-476
 NULL Pointer Dereference 		CVE-2014-2497 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_… 		2024-11-21 11:06
2014-03-21 		Show GitHub Exploit DB Packet Storm
215 -
2.6 		LOW The session-restore feature in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 does not consider the Content Security Policy of a data: URL, which makes it easier for remote attackers to conduc… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1504 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3 		2024-11-21 11:04
2014-03-19 		Show GitHub Exploit DB Packet Storm
216 -
6.8 		MEDIUM The (1) WebGL.compressedTexImage2D and (2) WebGL.compressedTexSubImage2D functions in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to bypass the Same Origin Policy and… CWE-346
 Origin Validation Error 		CVE-2014-1502 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3 		2024-11-21 11:04
2014-03-19 		Show GitHub Exploit DB Packet Storm
217 -
5.8 		MEDIUM Mozilla Firefox before 28.0 on Android allows remote attackers to bypass the Same Origin Policy and access arbitrary file: URLs via vectors involving the "Open Link in New Tab" menu selection. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1501 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3 		2024-11-21 11:04
2014-03-19 		Show GitHub Exploit DB Packet Storm
218 -
5.0 		MEDIUM Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to cause a denial of service (resource consumption and application hang) via onbeforeunload events that trigger background… CWE-400
 Uncontrolled Resource Consumption 		CVE-2014-1500 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3 		2024-11-21 11:04
2014-03-19 		Show GitHub Exploit DB Packet Storm
219 -
4.3 		MEDIUM Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to spoof the domain name in the WebRTC (1) camera or (2) microphone permission prompt by triggering navigation at a certai… NVD-CWE-noinfo
CVE-2014-1499 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3 		2024-11-21 11:04
2014-03-19 		Show GitHub Exploit DB Packet Storm
220 -
5.0 		MEDIUM The crypto.generateCRMFRequest method in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 does not properly validate a certain key type, which allows remote attackers to cause a denial of servic… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2014-1498 cpe:2.3:o:suse:linux_enterprise_server:11:sp3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3 		2024-11-21 11:04
2014-03-19 		Show GitHub Exploit DB Packet Storm