SuSE Essential and Critical Security Patch Updates - Page 826

Find the information you need for your favorite open source distribution .

SuSE: cfengine vulnerability

SuSE: 'cfengine' vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

There are several format string vulnerabilities in GNU cfengine.

LinuxSecurity.com Team
Oct 11, 2000

SuSE: esound update

SuSE: 'esound' update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A vulnerability exists in the esound package in SuSE versions >= 6.3.

LinuxSecurity.com Team
Oct 11, 2000

SuSE: syslogd/klogd vulnerability

SuSE: 'syslogd/klogd' vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Errors in both the klogd and the syslogd can cause both daemons do die when specially designed strings get passed to the kernel by the user.

LinuxSecurity.com Team
Sep 20, 2000

SuSE: pam_smb vulnerability

SuSE: 'pam_smb' vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Versions 1.1.5 and before contain a buffer overflow that would allow a remote attacker to gain root access on the target host.

LinuxSecurity.com Team
Sep 13, 2000

SuSE: apache vulnerabilities.

SuSE: 'apache' vulnerabilities.

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The configuration file for apache contains two security relevant errors.

LinuxSecurity.com Team
Sep 07, 2000

SuSE: screen vulnerability

SuSE: 'screen' vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

screen, a tty multiplexer, is installed suid root by default on SuSE Linux distributions.

LinuxSecurity.com Team
Sep 06, 2000

SuSE: shlibs vulnerability

SuSE: 'shlibs' vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The glibc implementations in all SuSE distributions starting with SuSE-6.0 have multiple security problems

LinuxSecurity.com Team
Sep 06, 2000

SuSE: Netscape vulnerability [updated]

SuSE: Netscape vulnerability [updated]

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Two security problems exist in the netscape package as shipped with SuSE Linux distributions.

LinuxSecurity.com Team
Aug 23, 2000

SuSE: perl vulnerability

SuSE: perl vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

suidperl is the perl interpreter for suid perl scripts, a part of the perl package. A maliciously implemented feature causes the interpreter to spawn the /bin/mail program to inform the superuser of its usage, thereby passing on untrusted environment that causes /bin/mail to execute arbitrary commands as user root.

LinuxSecurity.com Team
Aug 13, 2000

SuSE: knfsd vulnerability

SuSE: knfsd vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Due to incorrect string parsing in the code, a remote attacker could gain root priviledges on the machine running the vulnerable rpc.kstatd. This advisory contains other general security information as well.

LinuxSecurity.com Team
Aug 10, 2000

SuSE: Misc Security Info

SuSE: Misc Security Info

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This advisory contains information on the status of several outstanding potential security vulnerabilities present in SuSE Linux.

LinuxSecurity.com Team
Aug 04, 2000

SuSE: nkitb vulnerability

SuSE: nkitb vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

It may be possible for an attacker to modify his/her DNS record to execute abitrary machine code as root while connecting to the standard ftp daemon.

LinuxSecurity.com Team
Jul 17, 2000

SuSE: tnef vulnerability

SuSE: tnef vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Root compromise possible by overwriting critical system files.

LinuxSecurity.com Team
Jul 11, 2000

SuSE: dhclient

SuSE: dhclient

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Dhclient could be tricked by a rogue DHCP server to execute commands as user root.

LinuxSecurity.com Team
Jul 11, 2000

SuSE: makewhatis not vulnerable

SuSE: makewhatis not vulnerable

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

makewhatis from man package reported to not be vulnerable to /tmp race condition bug.

LinuxSecurity.com Team
Jul 10, 2000

SuSE: Kernel update

SuSE: Kernel update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The implementation of the capability feature of the kernel 2.2.x < 2.2.16 is faulty.

LinuxSecurity.com Team
Jun 27, 2000

SuSE: Updated wu-ftpd package

SuSE: Updated wu-ftpd package

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The wu-ftp FTP server does not do proper bounds checking while processing the SITE EXEC command.

LinuxSecurity.com Team
Jun 27, 2000

SuSE 6.x: qpop vulnerability

SuSE 6.x: qpop vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The qpop 2.53 does not check the mail header for invalid input.

LinuxSecurity.com Team
Jun 09, 2000

SuSE: kmulti local root compromise

SuSE: kmulti local root compromise

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

An adversary could set SHELL to his own program to get local root access to the system by writing directly to the raw HDD device.

LinuxSecurity.com Team
May 29, 2000

SuSE: gdm root compromise vulnerability

SuSE: gdm root compromise vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

An remote adversary could crash gdm or execute his own code, which leads to root compromise of the system running gdm.

LinuxSecurity.com Team
May 26, 2000

Prev
826
827
828
Next

LinuxSecurity Poll

Which open source security automation tool do you use to protect against vulnerabilities?

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

News

Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Advisories

Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
HOWTOs

Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Features

Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
About Us

Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Powered By

Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.

© 2024 Guardian Digital, Inc All Rights Reserved