| SUSE Linux Enterprise Server | Number Of NVD | 472 | CRITICAL | 27 | HIGH | 179 | MEDIUM | 215 | LOW | 51 |
| URL | https://www.suse.com/ | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Explanation | Support is normally provided for 10 years after release, with service pack releases ending after about 8 years. After 10 years, extended support is available for a fee, with yearly updates. |
||||||||
| Tag | |||||||||
| No | Type | Name | URL |
|---|---|---|---|
| 1 | https://www.suse.com/lifecycle/ | ||
| 2 | https://www.suse.com/support/policy/ | ||
| 3 | https://www.suse.com/releasenotes/ |
| No | Name | Latest Version | Release date | Initial release | Normal Support | Security Support Service Pack Support |
Extended for a fee |
Critical | High | Medium | Low |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 31 | SUSE Linux Enterprise Server 15 | SUSE Linux Enterprise Server 15 SP5 | May 22, 2023 | July 16, 2018 | July 31, 2028 | July 31, 2031 | 3 | 8 | 2 | 1 | |
| 32 | SUSE Linux Enterprise Server 12 | Service Pack 5 | Dec. 9, 2019 | Oct. 24, 2014 | Oct. 31, 2024 | Oct. 31, 2027 | 18 | 41 | 78 | 9 | |
| 33 | SUSE Linux Enterprise Server 11 | March 24, 2009 | March 31, 2019 | March 31, 2022 | 15 | 149 | 148 | 31 | |||
| 34 | SUSE Linux Enterprise Server 10 | June 17, 2006 | July 31, 2013 | 6 | 104 | 65 | 23 |
| No | CVSS3 CVSS2 |
Level Attach Vector |
Title | CWE | CVE | cpe23Uri | or higher | or less | more than | less than | Update date Published date |
Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 31 |
8.1 6.8 |
HIGH
Network |
In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both … | - | CVE-2018-16874 | cpe:2.3:o:suse:linux_enterprise_server:12:- |
2024-11-21 12:53 2018-12-14 |
Show | GitHub Exploit DB Packet Storm | ||||
| 32 |
8.1 6.8 |
HIGH
Network |
In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package th… | - | CVE-2018-16873 | cpe:2.3:o:suse:linux_enterprise_server:12:- |
2024-11-21 12:53 2018-12-14 |
Show | GitHub Exploit DB Packet Storm | ||||
| 33 |
7.8 6.8 |
HIGH
Local |
An issue was discovered in JasPer 2.0.14. There is a heap-based buffer over-read of size 8 in the function jp2_decode in libjasper/jp2/jp2_dec.c. |
CWE-125
Out-of-bounds Read |
CVE-2018-19543 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_… |
2024-11-21 12:58 2018-11-26 |
Show | GitHub Exploit DB Packet Storm | ||||
| 34 |
6.5 4.3 |
MEDIUM
Network |
An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading to a denial of service. |
CWE-476
NULL Pointer Dereference |
CVE-2018-19542 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_… |
2024-11-21 12:58 2018-11-26 |
Show | GitHub Exploit DB Packet Storm | ||||
| 35 |
6.5 4.3 |
MEDIUM
Network |
An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service. |
CWE-617
Reachable Assertion |
CVE-2018-19539 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_… |
2024-11-21 12:58 2018-11-26 |
Show | GitHub Exploit DB Packet Storm | ||||
| 36 |
8.8 6.8 |
HIGH
Network |
An issue was discovered in JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1.900.17, 1.900.18, 1.900.19, 1.900.20, 1.900.21, 1.900.22, 1.900.23, 1.900.2… |
CWE-125
Out-of-bounds Read |
CVE-2018-19541 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_… |
2024-11-21 12:58 2018-11-26 |
Show | GitHub Exploit DB Packet Storm | ||||
| 37 |
8.8 6.8 |
HIGH
Network |
An issue was discovered in JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1.900.17, 1.900.18, 1.900.19, 1.900.20, 1.900.21, 1.900.22, 1.900.23, 1.900.2… |
CWE-787
Out-of-bounds Write |
CVE-2018-19540 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_… |
2024-11-21 12:58 2018-11-26 |
Show | GitHub Exploit DB Packet Storm | ||||
| 38 |
5.5 4.3 |
MEDIUM
Local |
An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function ras_putdatastd in ras/ras_enc.c. |
CWE-476
NULL Pointer Dereference |
CVE-2018-18873 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_… |
2024-11-21 12:56 2018-11-1 |
Show | GitHub Exploit DB Packet Storm | ||||
| 39 |
4.3 4.3 |
MEDIUM
Network |
chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name). |
CWE-476
NULL Pointer Dereference |
CVE-2018-18585 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_… |
2024-11-21 12:56 2018-10-23 |
Show | GitHub Exploit DB Packet Storm | ||||
| 40 |
6.5 4.3 |
MEDIUM
Network |
In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write. |
CWE-787
Out-of-bounds Write |
CVE-2018-18584 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_… |
2024-11-21 12:56 2018-10-23 |
Show | GitHub Exploit DB Packet Storm |