Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Slackware_linux
(Slackware)| Repositories | https://github.com/OpenVPN/openvpn |
| #Vulnerabilities | 55 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 1997-10-18 | CVE-1999-0192 | Buffer overflow in telnet daemon tgetent routing allows remote attackers to gain root access via the TERMCAP environmental variable. | Linux, Slackware_linux | N/A | ||
| 1997-12-01 | CVE-1999-0340 | Buffer overflow in Linux Slackware crond program allows local users to gain root access. | Slackware_linux | N/A | ||
| 1998-01-01 | CVE-1999-0341 | Buffer overflow in the Linux mail program "deliver" allows local users to gain root access. | Debian_linux, Slackware_linux | N/A | ||
| 1999-02-09 | CVE-1999-0368 | Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto. | Openlinux, Debian_linux, Proftpd, Linux, Openserver, Unixware, Slackware_linux, Wu\-Ftpd | N/A | ||
| 1999-03-21 | CVE-1999-0433 | XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. | Netbsd, Linux, Slackware_linux, Suse_linux, X11r6 | N/A | ||
| 1999-12-01 | CVE-1999-0856 | login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist. | Slackware_linux | N/A | ||
| 2019-11-21 | CVE-2013-7172 | Slackware 13.1, 13.37, 14.0 and 14.1 contain world-writable permissions on the iodbctest and iodbctestw programs within the libiodbc package, which could allow local users to use RPATH information to execute arbitrary code with root privileges. | Slackware_linux | N/A | ||
| 2019-11-21 | CVE-2013-7171 | Slackware 14.0 and 14.1, and Slackware LLVM 3.0-i486-2 and 3.3-i486-2, contain world-writable permissions on the /tmp directory which could allow remote attackers to execute arbitrary code with root privileges. | Slackware_linux | N/A | ||
| 2018-03-06 | CVE-2018-7184 | ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix for CVE-2015-7704. | Ubuntu_linux, Cloud_backup, Steelstore_cloud_integrated_storage, Ntp, Slackware_linux, Diskstation_manager, Router_manager, Skynas, Virtual_diskstation_manager, Vs960hd_firmware | 7.5 | ||
| 2018-05-01 | CVE-2018-9336 | openvpnserv.exe (aka the interactive service helper) in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other impact including privilege escalation. | Openvpn, Slackware_linux | 7.8 |