The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Novell Linux Desktop

BIND: denial of service via Additional Records
An attacker can use malicious Additional Resource Records, in order to lockup a BIND server...
AA-00801, AA-00807, BID-55852, c03526327, CERTA-2012-AVI-569, CERTA-2012-AVI-601, CERTA-2012-AVI-602, CERTA-2012-AVI-603, CERTA-2012-AVI-679, CVE-2012-5166, DSA-2560-1, FEDORA-2012-15965, FEDORA-2012-15981, FreeBSD-SA-12:06.bind, HPSBUX02823, IV30364, IV30365, IV30366, IV30367, IV30368, MDVSA-2012:162, openSUSE-SU-2012:1372-1, openSUSE-SU-2013:0605-1, RHSA-2012:1363-01, RHSA-2012:1364-01, RHSA-2012:1365-01, sol14201, SSA:2012-284-01, SSA:2012-341-01, SSRT100976, SUSE-SU-2012:1390-1, SUSE-SU-2012:1390-2, SUSE-SU-2012:1390-3, VIGILANCE-VUL-12050
BIND: denial of service via rdata null
An attacker can use a zone containing an empty record, in order to stop a recursive DNS server, or to obtain fragments of its memory...
BID-53772, c03388901, c03526327, CERTA-2012-AVI-305, CERTA-2012-AVI-305-001, CERTA-2012-AVI-348, CERTA-2012-AVI-364, CERTA-2012-AVI-601, CERTA-2012-AVI-663, CVE-2012-1667, DSA-2486-1, ESX410-201211001, ESX410-201211401-SG, ESX410-201211402-SG, ESX410-201211405-SG, ESX410-201211407-SG, FEDORA-2012-8946, FEDORA-2012-8962, FEDORA-2012-8968, FreeBSD-SA-12:03.bind, HPSBUX02795, HPSBUX02823, IV22554, IV22555, IV22556, IV22557, IV22625, MDVSA-2012:089, openSUSE-SU-2012:0722-1, openSUSE-SU-2013:0605-1, RHSA-2012:0716-01, RHSA-2012:0717-01, RHSA-2012:1110-01, sol13175, SOL13660, SSA:2012-166-01, SSA:2012-341-01, SSRT100878, SSRT100976, SUSE-SU-2012:0741-1, SUSE-SU-2012:0741-2, SUSE-SU-2012:0741-3, SUSE-SU-2012:0741-4, SUSE-SU-2012:0741-5, SUSE-SU-2012:0741-6, VIGILANCE-VUL-11671, VMSA-2012-0016, VU#381699
Samba: buffer overflow via PIDL
An unauthenticated attacker can send a malicious RPC query, in order to generate an overflow in Samba, which leads to code execution with root privileges...
8815, BID-52973, BID-55655, c03365218, CERTA-2012-AVI-210, CVE-2012-1182, DSA-2450-1, FEDORA-2012-5805, FEDORA-2012-5843, FEDORA-2012-6382, HPSBUX02789, MDVSA-2012:055, openSUSE-SU-2012:0507-1, openSUSE-SU-2012:0508-1, RHSA-2012:0466-01, RHSA-2012:0478-01, RHSA-2013:0506-02, RHSA-2013:0515-02, SSRT100824, SUSE-SU-2012:0500-1, SUSE-SU-2012:0501-1, SUSE-SU-2012:0501-2, SUSE-SU-2012:0502-1, SUSE-SU-2012:0504-1, SUSE-SU-2012:0515-1, VIGILANCE-VUL-11531, ZDI-12-063, ZDI-12-064, ZDI-12-068, ZDI-12-069, ZDI-12-070, ZDI-12-071, ZDI-12-072
FreeType: several vulnerabilities
An attacker can invite the victim to display a document using a malicious font with an application linked to FreeType, in order to execute code on his computer...
BID-52318, CERTA-2012-AVI-123, CERTA-2012-AVI-235, CVE-2012-1126, CVE-2012-1127, CVE-2012-1128, CVE-2012-1129, CVE-2012-1130, CVE-2012-1131, CVE-2012-1132, CVE-2012-1133, CVE-2012-1134, CVE-2012-1135, CVE-2012-1136, CVE-2012-1137, CVE-2012-1138, CVE-2012-1139, CVE-2012-1140, CVE-2012-1141, CVE-2012-1142, CVE-2012-1143, CVE-2012-1144, DSA-2428-1, FEDORA-2012-4946, FEDORA-2012-5422, FEDORA-2013-1114, MDVSA-2012:057, openSUSE-SU-2012:0489-1, RHSA-2012:0467-01, SSA:2012-176-01, SUSE-SU-2012:0483-1, SUSE-SU-2012:0483-2, SUSE-SU-2012:0484-1, SUSE-SU-2012:0521-1, SUSE-SU-2012:0553-1, VIGILANCE-VUL-11407
Samba: buffer overflow via AndX
An unauthenticated attacker can send a SMB AndX query to Samba, in order to create a loop, which overflows an array, leading to a denial of service or to code execution...
c04401461, CERTA-2012-AVI-099, CERTFR-2014-AVI-112, CVE-2012-0870, HPSBUX03093, MDVSA-2012:025, openSUSE-SU-2012:0507-1, RHSA-2012:0332-01, SSRT101009, SUSE-SU-2012:0337-1, SUSE-SU-2012:0338-1, SUSE-SU-2012:0348-1, SUSE-SU-2012:0515-1, VIGILANCE-VUL-11389
MIT krb5-appl: buffer overflow of telnetd
A remote unauthenticated attacker can generate a buffer overflow in the telnetd daemon of MIT krb5-appl, in order to stop it, or to execute code...
83262, BID-51182, CERTA-2011-AVI-718, CERTA-2012-ALE-001-001, cisco-amb-20120126-ironport, cisco-sa-20120126-ironport, CVE-2011-4862, DSA-2372-1, DSA-2373-1, DSA-2375-1, FEDORA-2011-17492, FEDORA-2011-17493, FreeBSD-SA-11:08.telnetd, MDVSA-2011:195, MITKRB5-SA-2011-008, openSUSE-SU-2012:0019-1, openSUSE-SU-2012:0051-1, RHSA-2011:1851-01, RHSA-2011:1852-02, RHSA-2011:1853-01, RHSA-2011:1854-01, SUSE-SU-2012:0010-1, SUSE-SU-2012:0018-1, SUSE-SU-2012:0024-1, SUSE-SU-2012:0042-1, SUSE-SU-2012:0050-1, SUSE-SU-2012:0056-1, VIGILANCE-VUL-11248
BIND 9: denial of service via recursion
An attacker can use a malicious query on a recursive BIND DNS server, with an invalid value in its cache, in order to stop it...
BID-50690, c03105548, CERTA-2011-AVI-645, CVE-2011-4313, DSA-2347-1, FEDORA-2011-16002, FEDORA-2011-16036, FEDORA-2011-16057, FreeBSD-SA-11:06.bind, HPSBUX02729, IV09491, IV09978, IV10049, IV11106, IV11742, IV11743, IV11744, MDVSA-2011:176, MDVSA-2011:176-1, MDVSA-2011:176-2, NetBSD-SA2011-009, openSUSE-SU-2011:1272-1, RHSA-2011:1458-01, RHSA-2011:1459-01, RHSA-2011:1496-01, sol14204, SSRT100687, SUSE-SU-2011:1268-1, SUSE-SU-2011:1270-1, SUSE-SU-2011:1270-2, SUSE-SU-2011:1270-3, VIGILANCE-VUL-11162, VU#606539
Linux kernel: memory reading via ipc
A local attacker can use an IPC, in order to read bytes stored in the kernel memory...
BID-43828, BID-43829, BID-45054, BID-45073, CERTA-2002-AVI-272, CVE-2010-4072, CVE-2010-4073, DSA-2126-1, ESX400-201110001, ESX400-201110401-SG, ESX400-201110403-SG, ESX400-201110406-SG, ESX400-201110408-SG, ESX400-201110409-SG, ESX400-201110410-SG, FEDORA-2010-18432, FEDORA-2010-18493, FEDORA-2010-18506, MDVSA-2011:029, MDVSA-2011:051, openSUSE-SU-2010:1047-1, openSUSE-SU-2011:0004-1, openSUSE-SU-2011:0048-1, openSUSE-SU-2011:0346-1, openSUSE-SU-2013:0927-1, RHSA-2010:0958-01, RHSA-2011:0007-01, RHSA-2011:0017-01, RHSA-2011:0162-01, SUSE-SA:2010:060, SUSE-SA:2011:001, SUSE-SA:2011:004, SUSE-SA:2011:007, SUSE-SA:2011:008, SUSE-SA:2011:017, SUSE-SU-2011:0928-1, VIGILANCE-VUL-10008, VMSA-2011-0004.2, VMSA-2011-0009.1, VMSA-2011-0010.2, VMSA-2011-0012, VMSA-2011-0012.1, VMSA-2011-0013, VMSA-2012-0005
crypt_blowfish: hash collision
When the user has a password containing 8 bit characters, the Blowfish hashing algorithm of crypt() generates an invalid hash, which is potentially faster to find with a brute force...
CVE-2011-2483, DSA-2340-1, MDVSA-2011:161, MDVSA-2011:178, MDVSA-2011:179, MDVSA-2011:180, openSUSE-SU-2011:0921-1, openSUSE-SU-2011:0921-2, openSUSE-SU-2011:0970-1, openSUSE-SU-2011:0972-1, openSUSE-SU-2012:0480-1, openSUSE-SU-2013:1670-1, openSUSE-SU-2013:1676-1, RHSA-2011:1377-01, RHSA-2011:1378-01, SUSE-SA:2011:035, SUSE-SU-2011:0922-1, SUSE-SU-2011:0923-1, SUSE-SU-2011:0927-1, SUSE-SU-2011:0971-1, SUSE-SU-2011:0974-1, SUSE-SU-2011:0991-1, SUSE-SU-2011:1081-1, SUSE-SU-2011:1081-2, VIGILANCE-VUL-10934
foomatic-rip: code execution via PPD
When the system is configured to use a foomatic-rip or foomatic-rip-hplip print filter, a local attacker (or remote attacker via CUPS) can print a document, in order to execute code with privileges of the lp user...
698451, CVE-2011-2697, CVE-2011-2964, DSA-2380-1, FEDORA-2011-9554, FEDORA-2011-9575, MDVSA-2011:125, openSUSE-SU-2011:0892-1, RHSA-2011:1109-01, RHSA-2011:1110-01, SUSE-SU-2011:0895-1, VIGILANCE-VUL-10883
Our database contains other pages. You can request a free trial to read them.