Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
analyzing computer vulnerabilities since 1999
  home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
The Vigil@nce team watches vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerable product
Vulnerabilities of Novell openSUSE

Novell openSUSE vulnerability: infinite loop via entities
An attacker can create malformed XML data, in order to generate a denial of service in applications linked to libxml2.

Novell openSUSE vulnerability: memory leak via SRTP
An attacker can create a memory leak in OpenSSL compiled by default with SRTP, in order to trigger a denial of service.

Novell openSUSE vulnerability: denial of service via virConnectListAllDomains
An attacker can lock the virConnectListAllDomains() function of libvirt, in order to trigger a denial of service.

Novell openSUSE vulnerability: information disclosure via x2APIC
A local attacker can read a memory fragment via x2APIC of Xen, in order to obtain sensitive information.

Novell openSUSE vulnerability: memory corruption in the function parser
An attacker can define a special environment variable, which is transmitted (via CGI or OpenSSH for example) to bash, in order to execute code.

Display other vulnerabilities of Novell openSUSE described by Vigil@nce...

Display information about Novell openSUSE:

Copyright 1999-2014 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française