Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
SUSE Linux Enterprise Server Number Of NVD 472 CRITICAL 27 HIGH 179 MEDIUM 215 LOW 51
URL https://www.suse.com/
Explanation Support is normally provided for 10 years after release, with service pack releases ending after about 8 years.
After 10 years, extended support is available for a fee, with yearly updates.
Tag
  • 商用ライセンス有り
  • Linux
Add Information URL
No Type Name URL
1 https://www.suse.com/lifecycle/
2 https://www.suse.com/support/policy/
3 https://www.suse.com/releasenotes/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
71 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP5 May 22, 2023 July 16, 2018 July 31, 2028 July 31, 2031 3 8 2 1
72 SUSE Linux Enterprise Server 12 Service Pack 5 Dec. 9, 2019 Oct. 24, 2014 Oct. 31, 2024 Oct. 31, 2027 18 41 78 9
73 SUSE Linux Enterprise Server 11 March 24, 2009 March 31, 2019 March 31, 2022 15 149 148 31
74 SUSE Linux Enterprise Server 10 June 17, 2006 July 31, 2013 6 104 65 23
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
71 5.5
2.1 		MEDIUM
Local 		Integer overflow in the emulated_apdu_from_guest function in usb/dev-smartcard-reader.c in Quick Emulator (Qemu), when built with the CCID Card device emulator support, allows local users to cause a … CWE-190
 Integer Overflow or Wraparound 		CVE-2017-5898 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:12:ltss 		2024-11-21 12:28
2017-03-16 		Show GitHub Exploit DB Packet Storm
72 4.3
4.0 		MEDIUM
Network 		The ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows attackers to cause unspecified impact via a c… CWE-254
 7PK - Security Features 		CVE-2015-7976 cpe:2.3:o:suse:linux_enterprise_server:12:sp1
cpe:2.3:o:suse:linux_enterprise_server:11:sp4
cpe:2.3:o:suse:linux_… 		2024-11-21 11:37
2017-01-31 		Show GitHub Exploit DB Packet Storm
73 5.5
4.3 		MEDIUM
Local 		The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted ra… CWE-125
Out-of-bounds Read 		CVE-2015-8934 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 2024-11-21 11:39
2016-09-20 		Show GitHub Exploit DB Packet Storm
74 5.5
4.3 		MEDIUM
Local 		Integer overflow in the archive_read_format_tar_skip function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafte… CWE-190
 Integer Overflow or Wraparound 		CVE-2015-8933 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 2024-11-21 11:39
2016-09-20 		Show GitHub Exploit DB Packet Storm
75 5.5
4.3 		MEDIUM
Local 		The compress_bidder_init function in archive_read_support_filter_compress.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted tar file, which trigg… CWE-20
 Improper Input Validation  		CVE-2015-8932 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 2024-11-21 11:39
2016-09-20 		Show GitHub Exploit DB Packet Storm
76 7.8
6.8 		HIGH
Local 		Multiple integer overflows in the (1) get_time_t_max and (2) get_time_t_min functions in archive_read_support_format_mtree.c in libarchive before 3.2.0 allow remote attackers to have unspecified impa… CWE-190
 Integer Overflow or Wraparound 		CVE-2015-8931 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 2024-11-21 11:39
2016-09-20 		Show GitHub Exploit DB Packet Storm
77 7.5
5.0 		HIGH
Network 		bsdtar in libarchive before 3.2.0 allows remote attackers to cause a denial of service (infinite loop) via an ISO with a directory that is a member of itself. CWE-20
 Improper Input Validation  		CVE-2015-8930 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 2024-11-21 11:39
2016-09-20 		Show GitHub Exploit DB Packet Storm
78 5.5
4.3 		MEDIUM
Local 		Memory leak in the __archive_read_get_extract function in archive_read_extract2.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service via a tar file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8929 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 2024-11-21 11:39
2016-09-20 		Show GitHub Exploit DB Packet Storm
79 5.5
4.3 		MEDIUM
Local 		The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file. CWE-125
Out-of-bounds Read 		CVE-2015-8928 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 2024-11-21 11:39
2016-09-20 		Show GitHub Exploit DB Packet Storm
80 5.5
4.3 		MEDIUM
Local 		The archive_read_format_rar_read_data function in archive_read_support_format_rar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted rar archive. CWE-476
 NULL Pointer Dereference 		CVE-2015-8926 cpe:2.3:o:suse:linux_enterprise_server:12:sp1 2024-11-21 11:39
2016-09-20 		Show GitHub Exploit DB Packet Storm