Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
SUSE Linux Enterprise Server Number Of NVD 472 CRITICAL 27 HIGH 179 MEDIUM 215 LOW 51
URL https://www.suse.com/
Explanation Support is normally provided for 10 years after release, with service pack releases ending after about 8 years.
After 10 years, extended support is available for a fee, with yearly updates.
Tag
  • 商用ライセンス有り
  • Linux
Add Information URL
No Type Name URL
1 https://www.suse.com/lifecycle/
2 https://www.suse.com/support/policy/
3 https://www.suse.com/releasenotes/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
431 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP5 May 22, 2023 July 16, 2018 July 31, 2028 July 31, 2031 3 8 2 1
432 SUSE Linux Enterprise Server 12 Service Pack 5 Dec. 9, 2019 Oct. 24, 2014 Oct. 31, 2024 Oct. 31, 2027 18 41 78 9
433 SUSE Linux Enterprise Server 11 March 24, 2009 March 31, 2019 March 31, 2022 15 149 148 31
434 SUSE Linux Enterprise Server 10 June 17, 2006 July 31, 2013 6 104 65 23
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
431 -
2.1 		LOW The xfs_swapext function in fs/xfs/xfs_dfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT ioctl, which allows local users to leverage write a… CWE-200
Information Exposure 		CVE-2010-2226 cpe:2.3:o:suse:linux_enterprise_server:10:sp3 2024-11-21 10:16
2010-09-4 		Show GitHub Exploit DB Packet Storm
432 8.8
9.3 		HIGH
Network 		Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute ar… CWE-190
CWE-416
 Integer Overflow or Wraparound
 Use After Free 		CVE-2010-2753 cpe:2.3:o:suse:linux_enterprise_server:11:sp1
cpe:2.3:o:suse:linux_enterprise_server:11:- 		2024-11-21 10:17
2010-07-31 		Show GitHub Exploit DB Packet Storm
433 6.5
4.3 		MEDIUM
Network 		Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing m… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2010-2249 cpe:2.3:o:suse:linux_enterprise_server:9:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp1
cpe:2.3:o:suse:linux_ent… 		2024-11-21 10:16
2010-07-1 		Show GitHub Exploit DB Packet Storm
434 9.8
7.5 		CRITICAL
Network 		Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers… CWE-120
Classic Buffer Overflow 		CVE-2010-1205 cpe:2.3:o:suse:linux_enterprise_server:9:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp1
cpe:2.3:o:suse:linux_ent… 		2024-11-21 10:13
2010-07-1 		Show GitHub Exploit DB Packet Storm
435 -
5.0 		MEDIUM Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2 allow context-dependent attackers to cause a denial of service (application crash) via a large fragment,… CWE-190
 Integer Overflow or Wraparound 		CVE-2010-1634 cpe:2.3:o:suse:linux_enterprise_server:11:sp1
cpe:2.3:o:suse:linux_enterprise_server:11:-
cpe:2.3:o:suse:linux_en… 		2023-11-7 11:05
2010-05-28 		Show GitHub Exploit DB Packet Storm
436 -
6.8 		MEDIUM The kg_accept_krb5 function in krb5/accept_sec_context.c in the GSS-API library in MIT Kerberos 5 (aka krb5) through 1.7.1 and 1.8 before 1.8.2, as used in kadmind and other applications, does not pr… CWE-476
 NULL Pointer Dereference 		CVE-2010-1321 cpe:2.3:o:suse:linux_enterprise_server:11:sp1
cpe:2.3:o:suse:linux_enterprise_server:11:-
cpe:2.3:o:suse:linux_en… 		2021-02-3 03:53
2010-05-20 		Show GitHub Exploit DB Packet Storm
437 7.0
4.4 		HIGH
Local 		Race condition in the find_keyring_by_name function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause a denial of service (memory corruption and system… CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2010-1437 cpe:2.3:o:suse:linux_enterprise_server:11:- 2024-02-3 01:38
2010-05-8 		Show GitHub Exploit DB Packet Storm
438 -
4.3 		MEDIUM The png_decompress_chunk function in pngrutil.c in libpng 1.0.x before 1.0.53, 1.2.x before 1.2.43, and 1.4.x before 1.4.1 does not properly handle compressed ancillary-chunk data that has a dispropo… CWE-400
 Uncontrolled Resource Consumption 		CVE-2010-0205 cpe:2.3:o:suse:linux_enterprise_server:9:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp1
cpe:2.3:o:suse:linux_ent… 		2020-08-7 22:26
2010-03-4 		Show GitHub Exploit DB Packet Storm
439 7.5
5.0 		HIGH
Network 		Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. (dot dot) in an application… CWE-22
Path Traversal 		CVE-2010-0013 cpe:2.3:o:suse:linux_enterprise_server:10:sp3
cpe:2.3:o:suse:linux_enterprise_server:10:sp2 		2026-04-23 09:35
2010-01-10 		Show GitHub Exploit DB Packet Storm
440 -
7.2 		HIGH Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negati… CWE-129
 Improper Validation of Array Index 		CVE-2009-3080 cpe:2.3:o:suse:linux_enterprise_server:10:sp3
cpe:2.3:o:suse:linux_enterprise_server:10:sp2 		2026-04-23 09:35
2009-11-21 		Show GitHub Exploit DB Packet Storm