| SUSE Linux Enterprise Server | Number Of NVD | 472 | CRITICAL | 27 | HIGH | 179 | MEDIUM | 215 | LOW | 51 |
| URL | https://www.suse.com/ | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Explanation | Support is normally provided for 10 years after release, with service pack releases ending after about 8 years. After 10 years, extended support is available for a fee, with yearly updates. |
||||||||
| Tag | |||||||||
| No | Type | Name | URL |
|---|---|---|---|
| 1 | https://www.suse.com/lifecycle/ | ||
| 2 | https://www.suse.com/support/policy/ | ||
| 3 | https://www.suse.com/releasenotes/ |
| No | Name | Latest Version | Release date | Initial release | Normal Support | Security Support Service Pack Support |
Extended for a fee |
Critical | High | Medium | Low |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 61 | SUSE Linux Enterprise Server 15 | SUSE Linux Enterprise Server 15 SP5 | May 22, 2023 | July 16, 2018 | July 31, 2028 | July 31, 2031 | 3 | 8 | 2 | 1 | |
| 62 | SUSE Linux Enterprise Server 12 | Service Pack 5 | Dec. 9, 2019 | Oct. 24, 2014 | Oct. 31, 2024 | Oct. 31, 2027 | 18 | 41 | 78 | 9 | |
| 63 | SUSE Linux Enterprise Server 11 | March 24, 2009 | March 31, 2019 | March 31, 2022 | 15 | 149 | 148 | 31 | |||
| 64 | SUSE Linux Enterprise Server 10 | June 17, 2006 | July 31, 2013 | 6 | 104 | 65 | 23 |
| No | CVSS3 CVSS2 |
Level Attach Vector |
Title | CWE | CVE | cpe23Uri | or higher | or less | more than | less than | Update date Published date |
Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 61 |
7.5 5.0 |
HIGH
Network |
The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to… |
CWE-361
7PK - Time and State |
CVE-2015-5300 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_enterprise_server:11:sp4 cpe:2.3:o:suse:linux_… |
2024-11-21 11:32 2017-07-21 |
Show | GitHub Exploit DB Packet Storm | ||||
| 62 |
7.5 5.0 |
HIGH
Network |
The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infin… |
CWE-704
Incorrect Type Conversion or Cast |
CVE-2015-5219 |
cpe:2.3:o:suse:linux_enterprise_server:11:sp3 cpe:2.3:o:suse:linux_enterprise_server:11:sp2 cpe:2.3:o:suse:linux_… |
2024-11-21 11:32 2017-07-21 |
Show | GitHub Exploit DB Packet Storm | ||||
| 63 |
7.8 7.2 |
HIGH
Local |
glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causing them to alias, potentially resulting in arbitrary code execution. Please note… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-1000366 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_… |
2024-11-21 12:04 2017-06-20 |
Show | GitHub Exploit DB Packet Storm | ||||
| 64 |
7.7 6.8 |
HIGH
Network |
Memory leak in net/vmxnet3.c in QEMU allows remote attackers to cause a denial of service (memory consumption). |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2015-8567 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_enterprise_server:12:- cpe:2.3:o:suse:linux_en… |
2024-11-21 11:38 2017-04-14 |
Show | GitHub Exploit DB Packet Storm | ||||
| 65 |
7.5 5.0 |
HIGH
Network |
FreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermediate CA certificates. |
CWE-295
Improper Certificate Validation |
CVE-2015-4680 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_… |
2024-11-21 11:31 2017-04-6 |
Show | GitHub Exploit DB Packet Storm | ||||
| 66 |
7.5 5.0 |
HIGH
Network |
The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors. |
CWE-617
Reachable Assertion |
CVE-2016-9398 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_enterprise_server:12:sp2 cpe:2.3:o:suse:linux_… |
2024-11-21 12:01 2017-03-24 |
Show | GitHub Exploit DB Packet Storm | ||||
| 67 |
7.8 7.2 |
HIGH
Local |
A code injection in the supportconfig data collection tool in supportutils in SUSE Linux Enterprise Server 12 and 12-SP1 and SUSE Linux Enterprise Desktop 12 and 12-SP1 could be used by local attacke… |
CWE-94
Code Injection |
CVE-2016-1602 | cpe:2.3:o:suse:linux_enterprise_server:12:sp1 |
2024-11-21 11:46 2017-03-23 |
Show | GitHub Exploit DB Packet Storm | ||||
| 68 |
7.5 5.0 |
HIGH
Network |
coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image." |
CWE-399
Resource Management Errors |
CVE-2014-9854 | cpe:2.3:o:suse:linux_enterprise_server:11:sp4 |
2024-11-21 11:21 2017-03-17 |
Show | GitHub Exploit DB Packet Storm | ||||
| 69 |
5.5 4.3 |
MEDIUM
Local |
Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file. |
CWE-399
Resource Management Errors |
CVE-2014-9853 |
cpe:2.3:o:suse:linux_enterprise_server:12:sp1 cpe:2.3:o:suse:linux_enterprise_server:11:sp4 |
2024-11-21 11:21 2017-03-17 |
Show | GitHub Exploit DB Packet Storm | ||||
| 70 |
9.8 7.5 |
CRITICAL
Network |
distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors. |
CWE-913
Improper Control of Dynamically-Managed Code Resources |
CVE-2014-9852 | cpe:2.3:o:suse:linux_enterprise_server:12:sp1 |
2024-11-21 11:21 2017-03-17 |
Show | GitHub Exploit DB Packet Storm |