The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of SUSE Linux Enterprise Server

Linux kernel: file reading via Deleted Files In Cleancache
A local attacker can read a file via Deleted Files In Cleancache of the Linux kernel, in order to obtain sensitive information...
CERTFR-2019-AVI-038, CERTFR-2019-AVI-042, CERTFR-2019-AVI-044, CERTFR-2019-AVI-051, CERTFR-2019-AVI-071, CERTFR-2019-AVI-391, CERTFR-2019-AVI-419, CVE-2018-16862, DLA-1715-1, DLA-1731-1, DLA-1731-2, FEDORA-2018-3857a8b41a, FEDORA-2018-87ba0312c2, openSUSE-SU-2019:0065-1, openSUSE-SU-2019:0140-1, SSA:2019-030-01, SSB-439005, SUSE-SU-2019:0148-1, SUSE-SU-2019:0196-1, SUSE-SU-2019:0222-1, SUSE-SU-2019:0224-1, SUSE-SU-2019:0320-1, SUSE-SU-2019:0439-1, SUSE-SU-2019:0541-1, USN-3879-1, USN-3879-2, USN-4094-1, USN-4118-1, VIGILANCE-VUL-27872
PHP: code execution via imap_open Server Name
An attacker can use a vulnerability via imap_open() Server Name of PHP, in order to run code...
77153, bulletinjan2019, CVE-2018-19518, DLA-1608-1, DLA-1700-1, DSA-4353-1, FEDORA-2018-7ebfe1e6f2, FEDORA-2018-dfe1f0bac6, openSUSE-SU-2018:4030-1, openSUSE-SU-2018:4038-1, SSA:2018-341-01, SUSE-SU-2018:3986-1, SUSE-SU-2018:3988-1, SUSE-SU-2018:3995-1, USN-4160-1, VIGILANCE-VUL-27866
Ruby Rack: Cross Site Scripting via Rack-Request
An attacker can trigger a Cross Site Scripting via Rack::Request of Ruby Rack, in order to run JavaScript code in the context of the web site...
CVE-2018-16471, DLA-1585-1, openSUSE-SU-2019:1553-1, openSUSE-SU-2020:0214-1, SUSE-SU-2020:0359-1, USN-4089-1, VIGILANCE-VUL-27857
Linux kernel: NULL pointer dereference via vcpu_scan_ioapic
An attacker can force a NULL pointer to be dereferenced via vcpu_scan_ioapic() of the Linux kernel, in order to trigger a denial of service...
CERTFR-2019-AVI-035, CERTFR-2019-AVI-038, CERTFR-2019-AVI-041, CERTFR-2019-AVI-042, CERTFR-2019-AVI-044, CERTFR-2019-AVI-051, CERTFR-2019-AVI-114, CERTFR-2019-AVI-233, CVE-2018-19407, DLA-1715-1, FEDORA-2018-3857a8b41a, FEDORA-2018-87ba0312c2, openSUSE-SU-2019:0065-1, openSUSE-SU-2019:0140-1, SUSE-SU-2019:0148-1, SUSE-SU-2019:0196-1, SUSE-SU-2019:0222-1, SUSE-SU-2019:0224-1, SUSE-SU-2019:0320-1, SUSE-SU-2019:0541-1, SUSE-SU-2019:1287-1, SUSE-SU-2019:1289-1, SUSE-SU-2019:13937-1, SUSE-SU-2019:13979-1, USN-3871-1, USN-3871-2, USN-3871-3, USN-3871-4, USN-3871-5, USN-3872-1, USN-3878-1, USN-3878-2, USN-3879-1, USN-3879-2, VIGILANCE-VUL-27856
GraphicsMagick: memory leak via WriteMSLImage
An attacker can create a memory leak via WriteMSLImage() of GraphicsMagick, in order to trigger a denial of service...
bulletinoct2018, CVE-2018-18544, openSUSE-SU-2018:3824-1, openSUSE-SU-2018:3827-1, openSUSE-SU-2018:3839-1, openSUSE-SU-2018:4054-1, openSUSE-SU-2019:1141-1, RHSA-2020:1180-01, SUSE-SU-2018:4023-1, SUSE-SU-2019:0739-1, SUSE-SU-2019:13923-1, SUSE-SU-2019:13993-1, USN-4034-1, VIGILANCE-VUL-27849
libmatroska: use after free
An attacker can force the usage of a freed memory area of libmatroska, in order to trigger a denial of service, and possibly to run code...
CVE-2018-4022, openSUSE-SU-2018:3819-1, VIGILANCE-VUL-27848
Xen: denial of service via Shadow Paging
An attacker, inside a guest system, can generate a fatal error via Shadow Paging of Xen, in order to trigger a denial of service on the host system...
CERTFR-2018-AVI-566, CVE-2018-19966, DLA-1949-1, DSA-4369-1, FEDORA-2018-2fde555d91, FEDORA-2019-3e89502cb1, FEDORA-2019-bce6498890, openSUSE-SU-2018:4111-1, openSUSE-SU-2018:4304-1, openSUSE-SU-2019:1226-1, SUSE-SU-2018:4070-1, SUSE-SU-2018:4300-1, SUSE-SU-2019:0003-1, SUSE-SU-2019:0020-1, SUSE-SU-2019:0825-1, SUSE-SU-2019:0827-1, SUSE-SU-2019:13921-1, SUSE-SU-2019:14011-1, VIGILANCE-VUL-27847, XSA-280
Xen: denial of service via INVPCID Non-canonical Addresses
An attacker, inside a guest system, can generate a fatal error via INVPCID Non-canonical Addresses of Xen, in order to trigger a denial of service on the host system...
CERTFR-2018-AVI-564, CERTFR-2018-AVI-566, CTX239432, CVE-2018-19965, DSA-4369-1, FEDORA-2018-2fde555d91, FEDORA-2019-3e89502cb1, FEDORA-2019-bce6498890, openSUSE-SU-2018:4111-1, openSUSE-SU-2018:4304-1, openSUSE-SU-2019:1226-1, SUSE-SU-2018:4070-1, SUSE-SU-2018:4300-1, SUSE-SU-2019:0003-1, SUSE-SU-2019:0020-1, SUSE-SU-2019:0827-1, SUSE-SU-2019:13921-1, SUSE-SU-2019:14011-1, SUSE-SU-2020:0388-1, VIGILANCE-VUL-27846, XSA-279
Xen: denial of service via x86 P2M Page Removals
An attacker, inside a guest system, can generate a fatal error via x86 P2M Page Removals of Xen, in order to trigger a denial of service on the host system...
CERTFR-2018-AVI-566, CVE-2018-19964, FEDORA-2018-2fde555d91, FEDORA-2019-3e89502cb1, SUSE-SU-2019:0003-1, VIGILANCE-VUL-27845, XSA-277
Xen: denial of service via x86 IOREQ
An attacker, inside a guest system, can generate a fatal error via x86 IOREQ of Xen, in order to trigger a denial of service on the host system...
CERTFR-2018-AVI-566, CVE-2018-19963, FEDORA-2018-2fde555d91, FEDORA-2019-3e89502cb1, SUSE-SU-2019:0003-1, VIGILANCE-VUL-27844, XSA-276
Our database contains other pages. You can request a free trial to read them.

Display information about SUSE Linux Enterprise Server: