Vulnerabilities > Suse > Linux Enterprise Desktop

DATE CVE VULNERABILITY TITLE RISK
2014-07-17 CVE-2014-4260 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier, and 5.6.17 and earlier, allows remote authenticated users to affect integrity and availability via vectors related to SRCHAR.
network
low complexity
oracle debian suse mariadb
5.5
5.5
2014-07-17 CVE-2014-4258 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier and 5.6.17 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to SRINFOSC.
network
low complexity
oracle vmware opensuse-project debian mariadb suse
6.5
6.5
2014-07-17 CVE-2014-4243 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to ENFED.
network
oracle mariadb suse
2.8
2.8
2014-07-17 CVE-2014-4214 Remote Security vulnerability in Oracle MySQL Server
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows remote authenticated users to affect availability via vectors related to SRSP.
network
low complexity
suse oracle
3.3
3.3
2014-07-17 CVE-2014-4207 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier allows remote authenticated users to affect availability via vectors related to SROPTZR.
network
low complexity
suse oracle mariadb debian
4.0
4.0
2014-07-17 CVE-2014-2494 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier allows remote authenticated users to affect availability via vectors related to ENARC.
network
low complexity
oracle suse mariadb debian
4.0
4.0
2014-07-17 CVE-2014-2484 Remote Security vulnerability in Oracle MySQL Server
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to SRFTS.
network
low complexity
oracle suse
6.5
6.5
2014-06-11 CVE-2014-2978 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
The Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers an out-of-bounds write.
network
low complexity
directfb opensuse suse CWE-119
critical
 10.0
10
2014-06-11 CVE-2014-2977 Numeric Errors vulnerability in multiple products
Multiple integer signedness errors in the Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.13 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers a stack-based buffer overflow.
network
low complexity
opensuse suse directfb CWE-189
critical
 10.0
10
2014-06-07 CVE-2014-3153 The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEX_REQUEUE command that facilitates unsafe waiter modification.
local
low complexity
linux redhat suse opensuse canonical oracle
7.8
7.8