Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
SUSE Linux Enterprise Server Number Of NVD 472 CRITICAL 27 HIGH 179 MEDIUM 215 LOW 51
URL https://www.suse.com/
Explanation Support is normally provided for 10 years after release, with service pack releases ending after about 8 years.
After 10 years, extended support is available for a fee, with yearly updates.
Tag
  • 商用ライセンス有り
  • Linux
Add Information URL
No Type Name URL
1 https://www.suse.com/lifecycle/
2 https://www.suse.com/support/policy/
3 https://www.suse.com/releasenotes/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
461 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP5 May 22, 2023 July 16, 2018 July 31, 2028 July 31, 2031 3 8 2 1
462 SUSE Linux Enterprise Server 12 Service Pack 5 Dec. 9, 2019 Oct. 24, 2014 Oct. 31, 2024 Oct. 31, 2027 18 41 78 9
463 SUSE Linux Enterprise Server 11 March 24, 2009 March 31, 2019 March 31, 2022 15 149 148 31
464 SUSE Linux Enterprise Server 10 June 17, 2006 July 31, 2013 6 104 65 23
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
461 -
4.9 		MEDIUM nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a files… CWE-16
Configuration 		CVE-2009-1072 cpe:2.3:o:suse:linux_enterprise_server:10:sp2 2026-04-23 09:35
2009-03-25 		Show GitHub Exploit DB Packet Storm
462 -
3.6 		LOW The audit_syscall_entry function in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a… NVD-CWE-noinfo
CVE-2009-0834 cpe:2.3:o:suse:linux_enterprise_server:10:sp2 2026-04-23 09:35
2009-03-6 		Show GitHub Exploit DB Packet Storm
463 -
6.8 		MEDIUM The PNG reference library (aka libpng) before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service (application… CWE-824
 Access of Uninitialized Pointer 		CVE-2009-0040 cpe:2.3:o:suse:linux_enterprise_server:10:sp2 2026-04-23 09:35
2009-02-23 		Show GitHub Exploit DB Packet Storm
464 -
9.3 		HIGH nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) … CWE-362
Race Condition 		CVE-2008-5021 cpe:2.3:o:suse:linux_enterprise_server:9:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp1 		2026-04-23 09:35
2008-11-13 		Show GitHub Exploit DB Packet Storm
465 5.9
4.3 		MEDIUM
Network 		The _gnutls_x509_verify_certificate function in lib/x509/verify.c in libgnutls in GnuTLS before 2.6.1 trusts certificate chains in which the last certificate is an arbitrary trusted, self-signed cert… CWE-295
Improper Certificate Validation  		CVE-2008-4989 cpe:2.3:o:suse:linux_enterprise_server:11:-
cpe:2.3:o:suse:linux_enterprise_server:10:- 		2026-04-23 09:35
2008-11-13 		Show GitHub Exploit DB Packet Storm
466 -
2.1 		LOW QEMU 0.9.0 does not properly handle changes to removable media, which allows guest OS users to read arbitrary files on the host OS by using the diskformat: parameter in the -usbdevice option to modif… NVD-CWE-noinfo
CVE-2008-1945 cpe:2.3:o:suse:linux_enterprise_server:11:-
cpe:2.3:o:suse:linux_enterprise_server:10:- 		2026-04-23 09:35
2008-08-9 		Show GitHub Exploit DB Packet Storm
467 -
6.9 		MEDIUM Race condition in the directory notification subsystem (dnotify) in Linux kernel 2.6.x before 2.6.24.6, and 2.6.25 before 2.6.25.1, allows local users to cause a denial of service (OOPS) and possibly… CWE-362
Race Condition 		CVE-2008-1375 cpe:2.3:o:suse:linux_enterprise_server:9:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp1 		2026-04-23 09:35
2008-05-3 		Show GitHub Exploit DB Packet Storm
468 7.5
4.3 		HIGH
Network 		The Kerberos 4 support in KDC in MIT Kerberos 5 (krb5kdc) does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensiti… CWE-908
 Use of Uninitialized Resource 		CVE-2008-0063 cpe:2.3:o:suse:linux_enterprise_server:10:sp1 2026-04-23 09:35
2008-03-19 		Show GitHub Exploit DB Packet Storm
469 -
9.3 		HIGH The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a … CWE-787
 Out-of-bounds Write 		CVE-2007-6427 cpe:2.3:o:suse:linux_enterprise_server:9:*
cpe:2.3:o:suse:linux_enterprise_server:8:*
cpe:2.3:o:suse:linux_enterp… 		2026-04-23 09:35
2008-01-19 		Show GitHub Exploit DB Packet Storm
470 -
4.3 		MEDIUM Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server … CWE-79
Cross-site Scripting 		CVE-2007-5000 cpe:2.3:o:suse:linux_enterprise_server:9:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp1 		2026-04-23 09:35
2007-12-14 		Show GitHub Exploit DB Packet Storm