Computer vulnerabilities of SUSE Linux Enterprise Server

Linux kernel: buffer overflow via rtl_p2p_noa_ie
An attacker can trigger a buffer overflow via rtl_p2p_noa_ie() of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
CERTFR-2019-AVI-555, CERTFR-2019-AVI-561, CERTFR-2019-AVI-575, CERTFR-2019-AVI-612, CERTFR-2019-AVI-635, CERTFR-2020-AVI-029, CERTFR-2020-AVI-071, CERTFR-2020-AVI-095, CERTFR-2020-AVI-123, CERTFR-2020-AVI-125, CERTFR-2020-AVI-147, CERTFR-2020-AVI-157, CERTFR-2020-AVI-194, CERTFR-2020-AVI-210, CERTFR-2020-AVI-238, CVE-2019-17666, DLA-2068-1, DLA-2114-1, JSA11110, openSUSE-SU-2019:2392-1, openSUSE-SU-2019:2444-1, RHSA-2020:0328-01, RHSA-2020:0339-01, RHSA-2020:0543-01, RHSA-2020:0661-01, RHSA-2020:0740-01, RHSA-2020:0831-01, RHSA-2020:0834-01, RHSA-2020:0839-01, RHSA-2020:1347-01, RHSA-2020:1353-01, RHSA-2020:1465-01, RHSA-2020:1473-01, RHSA-2020:1524-01, SUSE-SU-2019:2879-1, SUSE-SU-2019:2946-1, SUSE-SU-2019:2947-1, SUSE-SU-2019:2949-1, SUSE-SU-2019:2951-1, SUSE-SU-2019:2952-1, SUSE-SU-2019:2953-1, SUSE-SU-2019:2984-1, SUSE-SU-2019:3200-1, SUSE-SU-2019:3294-1, SUSE-SU-2019:3295-1, SUSE-SU-2020:0093-1, USN-4183-1, USN-4183-2, USN-4184-1, USN-4184-2, USN-4185-1, USN-4185-2, USN-4185-3, USN-4186-1, USN-4186-2, USN-4186-3, VIGILANCE-VUL-30671

Ansible Core: information disclosure via Templating Passwords On Prompt
An attacker can bypass access restrictions to data via Templating Passwords On Prompt of Ansible Core, in order to obtain sensitive information...
CVE-2019-14856, openSUSE-SU-2020:0513-1, openSUSE-SU-2020:0523-1, VIGILANCE-VUL-30664

GCC: information disclosure via POWER9 Low Random Number Generator
An attacker can bypass access restrictions to data via POWER9 Low Random Number Generator of GCC, in order to obtain sensitive information...
6409294, 91481, CVE-2019-15847, openSUSE-SU-2019:2364-1, openSUSE-SU-2019:2365-1, openSUSE-SU-2020:0716-1, RHSA-2020:0924-01, RHSA-2020:1864-01, SUSE-SU-2019:2702-1, SUSE-SU-2019:3061-1, SUSE-SU-2020:0394-1, VIGILANCE-VUL-30662

libiberty: integer overflow via simple_object_elf_match
An attacker can trigger an integer overflow via simple_object_elf_match() of libiberty, in order to trigger a denial of service, and possibly to run code...
CVE-2019-14250, openSUSE-SU-2019:2364-1, openSUSE-SU-2019:2365-1, openSUSE-SU-2020:0716-1, openSUSE-SU-2020:1790-1, openSUSE-SU-2020:1804-1, SUSE-SU-2019:2702-1, SUSE-SU-2019:3061-1, SUSE-SU-2020:0394-1, SUSE-SU-2020:3060-1, SUSE-SU-2020:3552-1, USN-4326-1, USN-4336-1, VIGILANCE-VUL-30661

ImageMagick: memory leak via XCreateImage
An attacker can create a memory leak via XCreateImage() of ImageMagick, in order to trigger a denial of service...
CVE-2019-16709, FEDORA-2019-4504010099, FEDORA-2019-ba7247edcf, openSUSE-SU-2019:2317-1, openSUSE-SU-2019:2321-1, openSUSE-SU-2019:2515-1, openSUSE-SU-2019:2519-1, RHSA-2020:1180-01, SUSE-SU-2019:2785-2, SUSE-SU-2019:2896-1, USN-4192-1, VIGILANCE-VUL-30642

runc: privilege escalation via AppArmor /proc Mount
An attacker can bypass restrictions via AppArmor /proc Mount of runc, in order to escalate his privileges...
CVE-2019-16884, FEDORA-2019-3fc86a518b, FEDORA-2019-96946c39dd, openSUSE-SU-2019:2418-1, openSUSE-SU-2019:2434-1, openSUSE-SU-2020:0045-1, RHSA-2019:4269-01, RHSA-2020:1234-01, SUSE-SU-2019:2810-1, SUSE-SU-2020:0035-1, SUSE-SU-2020:0065-1, USN-4297-1, VIGILANCE-VUL-30639

Oracle MySQL: vulnerabilities of October 2019
Several vulnerabilities were announced in Oracle products...
1172926, 6408848, 6408858, CERTFR-2019-AVI-509, cpuoct2019, CVE-2019-2910, CVE-2019-2911, CVE-2019-2914, CVE-2019-2922, CVE-2019-2923, CVE-2019-2924, CVE-2019-2938, CVE-2019-2946, CVE-2019-2948, CVE-2019-2950, CVE-2019-2957, CVE-2019-2960, CVE-2019-2963, CVE-2019-2966, CVE-2019-2967, CVE-2019-2968, CVE-2019-2969, CVE-2019-2974, CVE-2019-2982, CVE-2019-2991, CVE-2019-2993, CVE-2019-2997, CVE-2019-2998, CVE-2019-3003, CVE-2019-3004, CVE-2019-3009, CVE-2019-3011, CVE-2019-3018, FEDORA-2019-08c700185f, FEDORA-2019-40ed49f449, FEDORA-2019-48a0a07033, FEDORA-2019-d40df38271, NTAP-20191017-0002, openSUSE-SU-2019:2698-1, RHSA-2020:3518-01, RHSA-2020:3732-01, RHSA-2020:3755-01, RHSA-2020:3757-01, RHSA-2020:4026-01, RHSA-2020:4174-01, RHSA-2020:5246-01, RHSA-2020:5500-01, RHSA-2020:5654-01, RHSA-2020:5663-01, RHSA-2020:5665-01, SUSE-SU-2019:3306-1, SUSE-SU-2019:3369-1, SUSE-SU-2019:3370-1, SUSE-SU-2020:0050-1, USN-4195-1, USN-4195-2, VIGILANCE-VUL-30636

Oracle Java: vulnerabilities of October 2019
Several vulnerabilities were announced in Oracle products...
1126887, 1288366, 3013353, 3260187, 3511029, 4790613, 5695563, 5695611, 5695629, 5695653, 5695665, 5695851, 6116194, 6210349, 6221706, 6248711, 6250817, 6256634, 6330711, CERTFR-2019-AVI-508, cpuoct2019, CVE-2019-2933, CVE-2019-2945, CVE-2019-2949, CVE-2019-2958, CVE-2019-2962, CVE-2019-2964, CVE-2019-2973, CVE-2019-2975, CVE-2019-2977, CVE-2019-2978, CVE-2019-2981, CVE-2019-2983, CVE-2019-2987, CVE-2019-2988, CVE-2019-2989, CVE-2019-2992, CVE-2019-2996, CVE-2019-2999, DLA-2023-1, DSA-2019-168, DSA-2019-169, DSA-2019-186, DSA-2019-201, DSA-2020-003, DSA-2020-105, DSA-2020-198, DSA-4546-1, DSA-4548-1, FEDORA-2019-119312dbfc, FEDORA-2019-4bafcdb85f, FEDORA-2019-a87aba290f, FEDORA-2019-ba59b4b9f1, FEDORA-2019-c170ad0c6b, FEDORA-2019-d03db48dca, FEDORA-2019-d81be00640, FEDORA-2019-e8695f5e6c, FEDORA-2019-e87dd3ca51, FEDORA-2019-f36ac0db92, FG-VD-19-091, NTAP-20191017-0001, openSUSE-SU-2019:2557-1, openSUSE-SU-2019:2565-1, openSUSE-SU-2019:2687-1, RHSA-2019:3127-01, RHSA-2019:3128-01, RHSA-2019:3134-01, RHSA-2019:3135-01, RHSA-2019:3136-01, RHSA-2019:3157-01, RHSA-2019:3158-01, RHSA-2019:4109-01, RHSA-2019:4110-01, RHSA-2019:4113-01, RHSA-2019:4115-01, RHSA-2020:0046-01, RHSA-2020:2237-01, RHSA-2020:2239-01, RHSA-2020:2241-01, SB10315, SUSE-SU-2019:2998-1, SUSE-SU-2019:3083-1, SUSE-SU-2019:3084-1, SUSE-SU-2019:3238-1, SUSE-SU-2020:0001-1, SUSE-SU-2020:0024-1, SUSE-SU-2020:0051-1, SUSE-SU-2020:14263-1, SUSE-SU-2020:14265-1, SUSE-SU-2020:1684-1, SUSE-SU-2020:1685-1, USN-4223-1, VIGILANCE-VUL-30635

Ansible Core: information disclosure via No_log Ignored On Failure
An attacker can bypass access restrictions to data via No_log Ignored On Failure of Ansible Core, in order to obtain sensitive information...
CVE-2019-14858, openSUSE-SU-2020:0513-1, openSUSE-SU-2020:0523-1, VIGILANCE-VUL-30629

GNU gdb: buffer overflow
An attacker can trigger a buffer overflow of GNU gdb, in order to trigger a denial of service, and possibly to run code...
CVE-2019-1010180, openSUSE-SU-2019:2415-1, openSUSE-SU-2019:2432-1, openSUSE-SU-2019:2493-1, openSUSE-SU-2019:2494-1, RHSA-2020:1635-01, SSB-439005, SUSE-SU-2019:14207-1, SUSE-SU-2019:2650-1, SUSE-SU-2019:2902-1, SUSE-SU-2019:2913-1, SUSE-SU-2019:2914-1, SUSE-SU-2019:2916-1, VIGILANCE-VUL-30627

Our database contains other pages. You can request a free trial to read them.

Display information about SUSE Linux Enterprise Server:

https://www.suse.com/products/server/