|
Vulnerability Report: SuSE Linux Enterprise Server 8
|
This vulnerability report for SuSE Linux Enterprise Server 8 contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in SuSE Linux Enterprise Server 8 then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
49 Secunia Advisories in 2006
|
Secunia has issued a total of 49 Secunia advisories in 2006 for SuSE Linux Enterprise Server 8. Currently, 0% (0 out of 49) are marked as unpatched.
More information about the specific Secunia advisories affecting SuSE Linux Enterprise Server 8 can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date: 2006-12-20 |
Secunia Advisory ID: SA23409 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Cross Site Scripting Privilege escalation System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges and malicious people to conduct cross-site scripting and script insertion attacks, bypass certain security restrictions, and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-12-13 |
Secunia Advisory ID: SA23284 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for gnupg. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-12-11 |
Secunia Advisory ID: SA23335 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-11-27 |
Secunia Advisory ID: SA23132 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Manipulation of data Exposure of system information Exposure of sensitive information DoS
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service), and by malicious people to bypass certain security restrictions, expose sensitive information, and manipulate data. [Read More]
|
|
|
|
|
|
Release Date: 2006-11-27 |
Secunia Advisory ID: SA23133 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS
|
Where: From remote |
|
Short Description: SUSE has issued an update for openldap2-client. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date: 2006-11-20 |
Secunia Advisory ID: SA22932 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, and by malicious people to cause a DoS (Denial of Service), bypass certain security restrictions, and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-11-15 |
Secunia Advisory ID: SA22881 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for php4 and php5. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-11-14 |
Secunia Advisory ID: SA22841 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS
|
Where: From remote |
|
Short Description: SUSE has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date: 2006-11-13 |
Secunia Advisory ID: SA22822 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS
|
Where: From local network |
|
Short Description: SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date: 2006-10-26 |
Secunia Advisory ID: SA22397 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for Qt. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date: 2006-10-20 |
Secunia Advisory ID: SA22495 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for openssh. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-10-10 |
Secunia Advisory ID: SA22338 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for php4 and php5. These fix some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-10-09 |
Secunia Advisory ID: SA22298 |
Solution Status: Partial Fix |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for openssh, openssl, and bind9. These fix some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-09-28 |
Secunia Advisory ID: SA22080 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Manipulation of data Exposure of sensitive information Privilege escalation DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. These fix some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, by malicious users to bypass certain security restrictions, gain escalated privileges, and disclose or manipulate potentially sensitive data, or by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-09-27 |
Secunia Advisory ID: SA22101 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for gzip. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-09-22 |
Secunia Advisory ID: SA22044 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass
|
Where: From remote |
|
Short Description: SUSE has issued updates for openssl and mozilla-nss. These fix some vulnerabilities, which potentially can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date: 2006-09-22 |
Secunia Advisory ID: SA22039 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for php4 and php5. These fix some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, and by malicious people to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-09-04 |
Secunia Advisory ID: SA21749 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Manipulation of data DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. These fix some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions, or by malicious people to conduct SQL injections attacks, cause a DoS (Denial of Service), bypass certain security restrictions, and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-08-15 |
Secunia Advisory ID: SA21467 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Privilege escalation DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. These fix some vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges, or by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-08-11 |
Secunia Advisory ID: SA21459 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Cross Site Scripting Exposure of sensitive information Privilege escalation DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix some vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges, or by malicious people to conduct cross-site scripting attacks, disclose potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-08-02 |
Secunia Advisory ID: SA21319 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for libtiff. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date: 2006-08-02 |
Secunia Advisory ID: SA21285 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for freetype2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise applications using the library. [Read More]
|
|
|
|
|
|
Release Date: 2006-07-25 |
Secunia Advisory ID: SA21159 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Unknown Security Bypass Exposure of system information Exposure of sensitive information DoS
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix some vulnerabilities where some have an unknown impact, and others can be exploited by malicious people to bypass certain security restrictions, disclose various information, or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date: 2006-07-17 |
Secunia Advisory ID: SA20960 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Cross Site Scripting DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date: 2006-07-03 |
Secunia Advisory ID: SA20899 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Privilege escalation DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix some vulnerabilities and security issues, which can be exploited by malicious, local users to perform certain actions with escalated privileges, and by malicious people to cause a DoS (Denial of Service), bypass certain security restrictions, or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-06-23 |
Secunia Advisory ID: SA20762 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Exposure of sensitive information System access
|
Where: From local network |
|
Short Description: SUSE has issued an update for mysql. This fixes some vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-06-21 |
Secunia Advisory ID: SA20766 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix some vulnerabilities and a weakness, which can be exploited by malicious people to bypass certain security restrictions, to cause a DoS (Denial of Service) or potentially to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date: 2006-06-15 |
Secunia Advisory ID: SA20654 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS
|
Where: From remote |
|
Short Description: SUSE has issued an update for sendmail. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date: 2006-06-15 |
Secunia Advisory ID: SA20676 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for php. This fixes some vulnerabilities, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-06-12 |
Secunia Advisory ID: SA20627 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Cross Site Scripting
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date: 2006-06-05 |
Secunia Advisory ID: SA20457 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Exposure of sensitive information DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), to disclose potentially sensitive information, and to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date: 2006-06-01 |
Secunia Advisory ID: SA20398 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Exposure of system information Exposure of sensitive information DoS
|
Where: From remote |
|
Short Description: SUSE has issued an update for the kernel. This fixes some vulnerabilities and weaknesses, which can be exploited by malicious, local users to bypass certain security restrictions, gain knowledge of potentially sensitive information and to cause a DoS (Denial of Service), and by malicious people to disclose certain system information, potentially to bypass certain security restrictions and to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date: 2006-06-01 |
Secunia Advisory ID: SA20388 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Privilege escalation
|
Where: Local system |
|
Short Description: SUSE has issued an update for vixie-cron. This fixes a security issue, which potentially can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date: 2006-05-22 |
Secunia Advisory ID: SA20215 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Cross Site Scripting Manipulation of data DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix some vulnerabilities, which potentially can be exploited by malicious people to conduct HTTP request smuggling attacks, cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-05-15 |
Secunia Advisory ID: SA20117 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Cross Site Scripting DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which potentially can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to cause files to be extracted to arbitrary locations on a user's system, bypass certain security restrictions, conduct cross-site scripting attacks, cause a DoS (Denial of Service), or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-05-05 |
Secunia Advisory ID: SA19979 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Cross Site Scripting Exposure of sensitive information
|
Where: From remote |
|
Short Description: SUSE has issued updates for php4 / php5. These fix some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to bypass certain security restrictions, to gain knowledge of potentially sensitive information, and to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date: 2006-05-01 |
Secunia Advisory ID: SA19897 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Cross Site Scripting Exposure of sensitive information DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to disclose sensitive information, conduct cross-site scripting attacks, execute arbitrary SQL code, cause a DoS (Denial of Service), and to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date: 2006-04-20 |
Secunia Advisory ID: SA19721 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Cross Site Scripting Exposure of sensitive information DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for mozilla and firefox. These fix some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, disclose sensitive information, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date: 2006-03-27 |
Secunia Advisory ID: SA19408 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date: 2006-03-23 |
Secunia Advisory ID: SA19361 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for sendmail. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-03-13 |
Secunia Advisory ID: SA19197 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass
|
Where: From remote |
|
Short Description: SUSE has issued an update for gpg. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date: 2006-03-06 |
Secunia Advisory ID: SA19130 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Cross Site Scripting Manipulation of data DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious users to manipulate certain information and by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), bypass certain security restrictions, to cause files to be extracted to arbitrary locations on a user's system, to trick users into visiting a malicious website by obfuscating URLs displayed in the status bar, and to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date: 2006-02-28 |
Secunia Advisory ID: SA19038 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Exposure of sensitive information DoS
|
Where: From remote |
|
Short Description: SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain knowledge of potentially sensitive information, bypass certain security restrictions and cause a DoS (Denial of Service), and by malicious people to cause a DoS. [Read More]
|
|
|
|
|
|
Release Date: 2006-02-27 |
Secunia Advisory ID: SA19005 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Privilege escalation DoS
|
Where: From local network |
|
Short Description: SUSE has issued an update for heimdal. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges or by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date: 2006-02-27 |
Secunia Advisory ID: SA19012 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Cross Site Scripting DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and HTTP response splitting attacks, cause a DoS (Denial of Service), and potentially to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date: 2006-02-14 |
Secunia Advisory ID: SA18850 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Privilege escalation
|
Where: Local system |
|
Short Description: SUSE has issued an update for openssh. This fixes a weakness, which potentially can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date: 2006-02-03 |
Secunia Advisory ID: SA18717 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Security Bypass Cross Site Scripting Privilege escalation DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix various vulnerabilities and a security issue, which can be exploited by malicious users to gain escalated privileges, bypass certain security restrictions and conduct script insertion attacks, or by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system [Read More]
|
|
|
|
|
|
Release Date: 2006-01-23 |
Secunia Advisory ID: SA18549 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: Privilege escalation DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix various vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, and by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date: 2006-01-16 |
Secunia Advisory ID: SA18503 |
Solution Status: Vendor Patch |
|
Criticality:
 |
Impact: DoS System access
|
Where: From remote |
|
Short Description: SUSE has issued updates for multiple packages. These fix various vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable or a user's system. [Read More]
|
|
|