Slackware Linux 14.0

CPE Details

Slackware Linux 14.0
slackware
slackware_linux
14.0
2019-09-30
12h44 +00:00
2019-09-30
12h44 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:slackware:slackware_linux:14.0:*:*:*:*:*:*:*

Informations

Vendor

slackware

Product

slackware_linux

Version

14.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2013-7172 2019-11-21 12h51 +00:00 Slackware 13.1, 13.37, 14.0 and 14.1 contain world-writable permissions on the iodbctest and iodbctestw programs within the libiodbc package, which could allow local users to use RPATH information to execute arbitrary code with root privileges.
7.8
High
CVE-2013-7171 2019-11-21 12h46 +00:00 Slackware 14.0 and 14.1, and Slackware LLVM 3.0-i486-2 and 3.3-i486-2, contain world-writable permissions on the /tmp directory which could allow remote attackers to execute arbitrary code with root privileges.
9.8
Critical
CVE-2018-9336 2018-05-01 16h00 +00:00 openvpnserv.exe (aka the interactive service helper) in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other impact including privilege escalation.
7.8
High
CVE-2018-7184 2018-03-06 19h00 +00:00 ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix for CVE-2015-7704.
7.5
High
CVE-2016-4448 2016-06-09 14h00 +00:00 Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via format string specifiers in unknown vectors.
9.8
Critical
CVE-2004-0226 2004-05-05 02h00 +00:00 Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.
10
CVE-2004-0231 2004-05-05 02h00 +00:00 Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations."
2.1
CVE-2004-0232 2004-05-05 02h00 +00:00 Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.
5
CVE-2004-0233 2004-05-05 02h00 +00:00 Utempter allows device names that contain .. (dot dot) directory traversal sequences, which allows local users to overwrite arbitrary files via a symlink attack on device names in combination with an application that trusts the utmp or wtmp files.
2.1
CVE-2000-0867 2001-01-22 04h00 +00:00 Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.
7.2
CVE-1999-0242 2000-02-04 04h00 +00:00 Remote attackers can access mail files via POP3 in some Linux systems that are using shadow passwords.
7.5