MidnightBSD

Advisories for slackware

CVE-1999-0041 HIGH

Buffer overflow in NLS (Natural Language Service).

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gnu libc 5.3.12
cray unicos_max 1.3
gnu libc 5.2.18
cray unicos 9.0
ibm aix 4.1
ibm aix 4.2
slackware slackware_linux 3.1
cray unicos 9.2
redhat linux 4.0
cray unicos 1.5
ibm aix 3.2.5
gnu libc 5.0.9
CVE-1999-0123 LOW

Race condition in Linux mailx command allows local users to read user files.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.0
CVE-1999-0192 HIGH

Buffer overflow in telnet daemon tgetent routing allows remote attackers to gain root access via the TERMCAP environmental variable.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
redhat linux 6.0
slackware slackware_linux 3.5
slackware slackware_linux 4.0
redhat linux 4.1
redhat linux 5.0
redhat linux 4.2
slackware slackware_linux 3.2
redhat linux 4.0
slackware slackware_linux 3.3
redhat linux 5.1
slackware slackware_linux 3.9
slackware slackware_linux 3.4
redhat linux 5.2
slackware slackware_linux 3.6
CVE-1999-0242 HIGH

Remote attackers can access mail files via POP3 in some Linux systems that are using shadow passwords.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux *
CVE-1999-0298 HIGH

ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sun sunos 4.1.3
slackware slackware_linux 2.2
sun sunos 4.1.4
slackware slackware_linux 2.1
slackware slackware_linux 2.3
CVE-1999-0340 HIGH

Buffer overflow in Linux Slackware crond program allows local users to gain root access.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.4
CVE-1999-0341 HIGH

Buffer overflow in the Linux mail program "deliver" allows local users to gain root access.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 2.2
slackware slackware_linux 2.1
slackware slackware_linux 2.3
debian debian_linux 1.3.1
CVE-1999-0368 HIGH

Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.5
caldera openlinux 1.3
sco unixware 7.0
redhat linux 5.0
sco openserver 5.0.5
sco unixware 7.0.1
debian debian_linux 2.0
sco openserver 5.0
sco openserver 5.0.2
redhat linux 5.1
sco openserver 5.0.3
washington_university wu-ftpd 2.4.2_beta18_vr9
proftpd_project proftpd 1.2_pre1
slackware slackware_linux 3.4
washington_university wu-ftpd 2.4.2_beta18
sco openserver 5.0.4
slackware slackware_linux 3.6
CVE-1999-0421 HIGH

During a reboot after an installation of Linux Slackware 3.6, a remote attacker can obtain root access by logging in to the root account without a password.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.6
CVE-1999-0433 MEDIUM

XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.5
suse suse_linux 6.1
slackware slackware_linux 4.0
netbsd netbsd 1.3.3
suse suse_linux 6.0
suse suse_linux 5.2
netbsd netbsd 1.3.2
xfree86_project x11r6 3.3.3
slackware slackware_linux 3.3
redhat linux 5.1
suse suse_linux 5.1
slackware slackware_linux 3.4
redhat linux 5.2
slackware slackware_linux 3.6
CVE-1999-0746 MEDIUM

A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a denial of service.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
suse suse_linux 6.1
suse suse_linux 5.3
suse suse_linux 6.2
suse suse_linux 5.1
suse suse_linux 6.0
suse suse_linux 4.4.1
suse suse_linux 5.0
suse suse_linux 4.4
suse suse_linux 5.2
slackware slackware_linux 3.2
slackware slackware_linux 3.6
CVE-1999-0856 MEDIUM

login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 7.0
CVE-1999-1095 HIGH

sort creates temporary files and follows symbolic links, which allows local users to modify arbitrary files that are writable by the user running sort, as observed in updatedb and other programs that use sort.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.3
redhat linux 4.1
CVE-1999-1186 HIGH

rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to gain root privileges by specifying a malicious program using the -print-pipe command line parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
rxvt rxvt *
slackware slackware_linux 3.0
redhat linux 2.1
CVE-1999-1187 MEDIUM

Pine before version 3.94 allows local users to gain privileges via a symlink attack on a lockfile that is created when a user receives new mail.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 2.1.0
slackware slackware_linux 3.0
university_of_washington pine *
CVE-1999-1299 HIGH

rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is interpreted as -1 by chown and other system calls, which causes the calls to fail to modify the ownership of the file.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
redhat linux 4.0
slackware slackware_linux 3.1
CVE-1999-1422 HIGH

The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the PATH environmental variable, which could allow local users to create Trojan horse programs that are inadvertently executed by other users.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 2.0.35
slackware slackware_linux 3.4
CVE-1999-1434 HIGH

login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.5
slackware slackware_linux 3.3
slackware slackware_linux 3.4
slackware slackware_linux 3.2
slackware slackware_linux 3.1
CVE-1999-1445 MEDIUM

Vulnerability in imapd and ipop3d in Slackware 3.4 and 3.3 with shadowing enabled, and possibly other operating systems, allows remote attackers to cause a core dump via a short sequence of USER and PASS commands that do not provide valid usernames or passwords.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.3
slackware slackware_linux 3.4
CVE-1999-1489 HIGH

Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users to gain root privileges via a long -nopr argument.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.1
CVE-1999-1498 LOW

Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 3.4
CVE-2000-0314 MEDIUM

traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
digital unix 4.0
redhat linux 2.0.34
netbsd netbsd *
debian debian_linux 2.0.34
slackware slackware_linux 2.0.34
CVE-2000-0315 MEDIUM

traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
digital unix 4.0
redhat linux 2.0.34
netbsd netbsd *
debian debian_linux 2.0.34
slackware slackware_linux 2.0.34
CVE-2000-0438 HIGH

Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 4.0
suse suse_linux 6.2
suse suse_linux 4.2
slackware slackware_linux 3.3
suse suse_linux 7.0
suse suse_linux 5.1
slackware slackware_linux 3.9
slackware slackware_linux 3.4
slackware slackware_linux 3.6
slackware slackware_linux 3.5
suse suse_linux 6.1
suse suse_linux 4.3
suse suse_linux 6.0
caldera openlinux 7.0
suse suse_linux 4.4.1
turbolinux turbolinux 6.0.1
suse suse_linux 5.0
suse suse_linux 4.4
suse suse_linux 6.3
suse suse_linux 5.2
suse suse_linux 5.3
suse suse_linux 6.4
turbolinux turbolinux 6.0.2
turbolinux turbolinux 6.0
CVE-2000-0844 HIGH

Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
sgi irix 6.2
sgi irix 6.5
sun sunos 5.4
ibm aix 4.1
caldera openlinux *
conectiva linux 5.1
debian debian_linux 2.2
debian debian_linux 2.0
conectiva linux 4.0es
ibm aix 4.1.5
caldera openlinux_eserver 2.3
sun sunos 5.1
slackware slackware_linux 7.0
ibm aix 4.3.1
mandrakesoft mandrake_linux 7.0
ibm aix 4.1.4
sun sunos 5.8
ibm aix 3.2
sgi irix 6.5.4
sun sunos 5.2
sgi irix 6.5.3f
immunix immunix 6.2
turbolinux turbolinux 6.0.3
sgi irix 6.5.6
sgi irix 6.3
suse suse_linux 6.4
caldera openlinux_ebuilder 3.0
turbolinux turbolinux 6.0.2
sun sunos 5.3
conectiva linux 4.1
ibm aix 4.3.2
ibm aix 4.1.1
redhat linux 6.0
ibm aix 4.2.1
mandrakesoft mandrake_linux 7.1
suse suse_linux 6.2
conectiva linux 4.2
sgi irix 6.5.3m
trustix secure_linux 1.1
redhat linux 5.0
debian debian_linux 2.1
ibm aix 4.3
ibm aix 4.1.2
trustix secure_linux 1.0
suse suse_linux 7.0
sgi irix 6.5.7
sun sunos 5.7
conectiva linux 5.0
ibm aix 3.2.5
sun sunos 5.5.1
redhat linux 6.1
suse suse_linux 6.1
ibm aix 4.1.3
sun sunos 5.5
sun solaris 2.6
sgi irix 6.5.3
sgi irix 6.4
turbolinux turbolinux 6.0.1
suse suse_linux 6.3
conectiva linux 4.0
ibm aix 4.2
sgi irix 6.5.2m
ibm aix 4.0
sun sunos 5.0
turbolinux turbolinux 6.0.4
ibm aix 3.2.4
redhat linux 5.1
slackware slackware_linux 7.1
sgi irix 6.5.8
redhat linux 6.2
redhat linux 5.2
turbolinux turbolinux 6.0
sgi irix 6.5.1
debian debian_linux 2.3
CVE-2000-0867 HIGH

Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mandrakesoft mandrake_linux 6.1
mandrakesoft mandrake_linux 7.1
slackware slackware_linux *
trustix secure_linux 1.1
mandrakesoft mandrake_linux 6.0
redhat linux 6.2
debian debian_linux 2.1
mandrakesoft mandrake_linux 7.0
redhat linux 5.2
debian debian_linux 2.2
CVE-2001-1036 HIGH

GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gnu findutils 4.1
slackware slackware_linux 7.1
slackware slackware_linux 8.0
gnu findutils 4.0
CVE-2002-0004 HIGH

Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
freebsd freebsd 4.2
suse suse_linux 7.3
caldera openlinux_workstation 3.1
redhat linux 7.1
suse suse_linux 7.2
freebsd freebsd 4.1.1
caldera openlinux_server 3.1
debian debian_linux 2.2
freebsd freebsd 4.3
suse suse_linux 7.1
mandrakesoft mandrake_linux 8.0
redhat linux 7.0
redhat linux 7.2
mandrakesoft mandrake_linux 8.1
suse suse_linux 6.4
suse suse_linux 7.0
slackware slackware_linux 7.1
redhat linux 6.2
slackware slackware_linux 7.0
freebsd freebsd 4.4
slackware slackware_linux 8.0
netbsd netbsd 1.5.2
CVE-2002-1814 MEDIUM

Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mandrakesoft mandrake_linux 7.1
mandrakesoft mandrake_linux 8.0
redhat linux 7.0
redhat linux 7.1
redhat linux 6.2
slackware slackware_linux 8.0
gnome bonobo *
mandrakesoft mandrake_linux 9.0
CVE-2003-0195 MEDIUM

CUPS before 1.1.19 allows remote attackers to cause a denial of service via a partial printing request to the IPP port (631), which does not time out.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 8.1
slackware slackware_linux 9.0
CVE-2003-0335 HIGH

rc.M in Slackware 9.0 calls quotacheck with the -M option, which causes the filesystem to be remounted and possibly reset security-relevant mount flags such as nosuid, nodev, and noexec.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
slackware slackware_linux 9.0
CVE-2003-0962 HIGH

Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
engardelinux secure_linux 1.5
andrew_tridgell rsync 2.3.1
andrew_tridgell rsync 2.4.0
andrew_tridgell rsync 2.4.4
andrew_tridgell rsync 2.4.6
engardelinux secure_community 1.0.1
andrew_tridgell rsync 2.5.3
engardelinux secure_community 2.0
andrew_tridgell rsync 2.4.5
andrew_tridgell rsync 2.4.3
andrew_tridgell rsync 2.5.1
andrew_tridgell rsync 2.5.2
redhat rsync 2.4.6-2
redhat rsync 2.5.5-1
slackware slackware_linux 9.0
andrew_tridgell rsync 2.4.8
andrew_tridgell rsync 2.5.5
andrew_tridgell rsync 2.5.0
engardelinux secure_linux 1.2
redhat rsync 2.4.6-5
redhat rsync 2.5.5-4
slackware slackware_linux current
andrew_tridgell rsync 2.3.2
slackware slackware_linux 8.1
slackware slackware_linux 9.1
andrew_tridgell rsync 2.5.6
andrew_tridgell rsync 2.5.4
engardelinux secure_linux 1.1
andrew_tridgell rsync 2.4.1
redhat rsync 2.5.4-2
CVE-2003-0977 HIGH

CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cvs cvs 1.11.6
cvs cvs 1.11.3
cvs cvs 1.11
slackware slackware_linux 9.0
cvs cvs 1.11.2
cvs cvs 1.11.4
cvs cvs 1.11.1
slackware slackware_linux 8.1
cvs cvs 1.10.7
slackware slackware_linux 9.1
cvs cvs 1.11.1_p1
cvs cvs 1.10.8
cvs cvs 1.11.5
CVE-2004-0226 HIGH

Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gentoo linux 1.4
midnight_commander midnight_commander 4.5.41
midnight_commander midnight_commander 4.5.51
midnight_commander midnight_commander 4.5.46
gentoo linux 1.1a
gentoo linux 0.5
midnight_commander midnight_commander 4.5.52
midnight_commander midnight_commander 4.5.50
gentoo linux 1.2
midnight_commander midnight_commander 4.5.43
gentoo linux 0.7
midnight_commander midnight_commander 4.5.55
midnight_commander midnight_commander 4.5.48
slackware slackware_linux *
midnight_commander midnight_commander 4.5.45
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.40
slackware slackware_linux 9.0
midnight_commander midnight_commander 4.5.44
sgi propack 2.4
midnight_commander midnight_commander 4.6
sgi propack 2.3
midnight_commander midnight_commander 4.5.49
slackware slackware_linux 9.1
midnight_commander midnight_commander 4.5.47
CVE-2004-0231 LOW

Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations."

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gentoo linux 1.4
midnight_commander midnight_commander 4.5.41
midnight_commander midnight_commander 4.5.51
midnight_commander midnight_commander 4.5.46
gentoo linux 1.1a
gentoo linux 0.5
midnight_commander midnight_commander 4.5.52
midnight_commander midnight_commander 4.5.50
gentoo linux 1.2
midnight_commander midnight_commander 4.5.43
gentoo linux 0.7
midnight_commander midnight_commander 4.5.55
midnight_commander midnight_commander 4.5.48
slackware slackware_linux *
midnight_commander midnight_commander 4.5.45
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.40
slackware slackware_linux 9.0
midnight_commander midnight_commander 4.5.44
sgi propack 2.4
midnight_commander midnight_commander 4.6
sgi propack 2.3
midnight_commander midnight_commander 4.5.49
slackware slackware_linux 9.1
midnight_commander midnight_commander 4.5.47
CVE-2004-0232 MEDIUM

Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gentoo linux 1.4
midnight_commander midnight_commander 4.5.41
midnight_commander midnight_commander 4.5.51
midnight_commander midnight_commander 4.5.46
gentoo linux 1.1a
gentoo linux 0.5
midnight_commander midnight_commander 4.5.52
midnight_commander midnight_commander 4.5.50
gentoo linux 1.2
midnight_commander midnight_commander 4.5.43
gentoo linux 0.7
midnight_commander midnight_commander 4.5.55
midnight_commander midnight_commander 4.5.48
slackware slackware_linux *
midnight_commander midnight_commander 4.5.45
midnight_commander midnight_commander 4.5.42
midnight_commander midnight_commander 4.5.40
slackware slackware_linux 9.0
midnight_commander midnight_commander 4.5.44
sgi propack 2.4
midnight_commander midnight_commander 4.6
sgi propack 2.3
midnight_commander midnight_commander 4.5.49
slackware slackware_linux 9.1
midnight_commander midnight_commander 4.5.47
CVE-2004-0233 LOW

Utempter allows device names that contain .. (dot dot) directory traversal sequences, which allows local users to overwrite arbitrary files via a symlink attack on device names in combination with an application that trusts the utmp or wtmp files.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
utempter utempter 0.5.3
slackware slackware_linux *
sgi propack 2.4
utempter utempter 0.5.2
slackware slackware_linux 9.1
sgi propack 3.0
CVE-2004-0424 HIGH

Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
linux linux_kernel 2.4.23_ow2
linux linux_kernel 2.4.23
linux linux_kernel 2.4.24_ow1
linux linux_kernel 2.6.3
linux linux_kernel 2.6.2
linux linux_kernel 2.4.25
sgi propack 3.0
linux linux_kernel 2.4.22
slackware slackware_linux current
slackware slackware_linux 9.1
linux linux_kernel 2.4.24
linux linux_kernel 2.6.1
CVE-2004-0880 LOW

getmail 4.x before 4.2.0, when run as root, allows local users to overwrite arbitrary files via a symlink attack on an mbox file.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gentoo linux 1.4
getmail getmail 3.x
getmail getmail 4.0.3
getmail getmail 4.0.7
getmail getmail 4.1
getmail getmail 4.0.1
getmail getmail 2.3.7
getmail getmail 4.0.2
getmail getmail 4.0.12
getmail getmail 4.1.4
getmail getmail 4.0.8
getmail getmail 4.0.10
getmail getmail 4.0.6
getmail getmail 4.0.0_b10
getmail getmail 4.0.9
getmail getmail 4.0.13
getmail getmail 4.0.5
getmail getmail 4.1.3
getmail getmail 4.0
getmail getmail 4.0.11
getmail getmail 4.1.2
getmail getmail 4.1.5
slackware slackware_linux current
getmail getmail 4.1.1
slackware slackware_linux 9.1
slackware slackware_linux 10.0
getmail getmail 4.0.4
CVE-2004-0881 LOW

getmail 4.x before 4.2.0, and other versions before 3.2.5, when run as root, allows local users to write files in arbitrary directories via a symlink attack on subdirectories in the maildir.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gentoo linux 1.4
getmail getmail 3.x
getmail getmail 4.0.3
getmail getmail 4.0.7
getmail getmail 4.1
getmail getmail 4.0.1
getmail getmail 2.3.7
getmail getmail 4.0.2
getmail getmail 4.0.12
getmail getmail 4.1.4
getmail getmail 4.0.8
getmail getmail 4.0.10
getmail getmail 4.0.6
getmail getmail 4.0.0_b10
getmail getmail 4.0.9
getmail getmail 4.0.13
getmail getmail 4.0.5
getmail getmail 4.1.3
getmail getmail 4.0
getmail getmail 4.0.11
getmail getmail 4.1.2
getmail getmail 4.1.5
slackware slackware_linux current
getmail getmail 4.1.1
slackware slackware_linux 9.1
slackware slackware_linux 10.0
getmail getmail 4.0.4
CVE-2004-0891 HIGH

Buffer overflow in the MSN protocol handler for gaim 0.79 to 1.0.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an "unexpected sequence of MSNSLP messages" that results in an unbounded copy operation that writes to the wrong buffer.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gentoo linux 1.4
rob_flynn gaim 0.53
rob_flynn gaim 0.10
rob_flynn gaim 0.59
rob_flynn gaim 0.65
rob_flynn gaim 0.82.1
rob_flynn gaim 0.58
rob_flynn gaim 0.71
rob_flynn gaim 1.0
rob_flynn gaim 0.50
rob_flynn gaim 0.10.3
rob_flynn gaim 0.51
rob_flynn gaim 0.72
rob_flynn gaim 0.64
rob_flynn gaim 0.59.1
rob_flynn gaim 0.68
rob_flynn gaim 0.70
rob_flynn gaim 0.56
rob_flynn gaim 0.66
rob_flynn gaim 0.82
rob_flynn gaim 0.69
rob_flynn gaim 0.67
rob_flynn gaim 0.75
rob_flynn gaim 0.73
rob_flynn gaim 0.74
rob_flynn gaim 0.55
rob_flynn gaim 0.60
rob_flynn gaim 0.61
slackware slackware_linux 9.0
ubuntu ubuntu_linux 4.1
rob_flynn gaim 1.0.1
rob_flynn gaim 0.63
gentoo linux *
rob_flynn gaim 0.57
rob_flynn gaim 0.78
slackware slackware_linux current
slackware slackware_linux 9.1
slackware slackware_linux 10.0
rob_flynn gaim 0.54
rob_flynn gaim 0.52
rob_flynn gaim 0.62
CVE-2004-0940 MEDIUM

Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents that trigger a length calculation error.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-131,

Products Affected

Vendor Product Version
suse suse_linux 9.0
openpkg openpkg 2.1
hp hp-ux 11.00
hp hp-ux 11.11
trustix secure_linux 1.5
openpkg openpkg 2.2
slackware slackware_linux 9.0
suse suse_linux 9.2
hp hp-ux 11.20
suse suse_linux 8.2
slackware slackware_linux current
suse suse_linux 8.0
apache http_server *
suse suse_linux 9.1
slackware slackware_linux 8.1
slackware slackware_linux 8.0
slackware slackware_linux 9.1
slackware slackware_linux 10.0
hp hp-ux 11.22
suse suse_linux 8.1
openpkg openpkg 2.0
CVE-2005-3624 MEDIUM

The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
suse suse_linux 9.0
redhat enterprise_linux 2.1
mandrakesoft mandrake_linux_corporate_server 2.1
easy_software_products cups 1.1.23_rc1
kde kdegraphics 3.2
redhat enterprise_linux_desktop 3.0
mandrakesoft mandrake_linux_corporate_server 3.0
redhat linux 7.3
sco openserver 6.0
turbolinux turbolinux_home *
turbolinux turbolinux_appliance_server 1.0_workgroup_edition
easy_software_products cups 1.1.22
mandrakesoft mandrake_linux 2006
mandrakesoft mandrake_linux 10.1
kde koffice 1.4.2
redhat enterprise_linux 4.0
suse suse_linux 9.1
turbolinux turbolinux_desktop 10.0
turbolinux turbolinux_server 10.0_x86
redhat enterprise_linux 3.0
kde kword 1.4.2
suse suse_linux 10.0
redhat fedora_core core_1.0
mandrakesoft mandrake_linux 10.2
suse suse_linux 9.2
kde kdegraphics 3.4.3
turbolinux turbolinux_server 10.0
turbolinux turbolinux fuji
tetex tetex 3.0
conectiva linux 10.0
turbolinux turbolinux_workstation 8.0
slackware slackware_linux 9.1
slackware slackware_linux 10.0
tetex tetex 2.0.2
suse suse_linux 1.0
trustix secure_linux 2.0
kde koffice 1.4
tetex tetex 1.0.7
slackware slackware_linux 10.2
tetex tetex 2.0.1
redhat fedora_core core_2.0
kde kpdf 3.4.3
poppler poppler 0.4.2
turbolinux turbolinux_personal *
suse suse_linux 9.3
xpdf xpdf 3.0
trustix secure_linux 3.0
turbolinux turbolinux 10
sco openserver 5.0.7
redhat linux 9.0
turbolinux turbolinux_multimedia *
kde kpdf 3.2
slackware slackware_linux 10.1
redhat fedora_core core_4.0
trustix secure_linux 2.2
kde koffice 1.4.1
slackware slackware_linux 9.0
easy_software_products cups 1.1.22_rc1
ubuntu ubuntu_linux 4.1
sgi propack 3.0
tetex tetex 2.0
redhat fedora_core core_3.0
redhat linux_advanced_workstation 2.1
turbolinux turbolinux_appliance_server 1.0_hosting_edition
gentoo linux *
libextractor libextractor *
redhat enterprise_linux_desktop 4.0
debian debian_linux 3.1
easy_software_products cups 1.1.23
turbolinux turbolinux_server 8.0
ubuntu ubuntu_linux 5.04
debian debian_linux 3.0
ubuntu ubuntu_linux 5.10
CVE-2005-3625 HIGH

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, aka "Infinite CPU spins."

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
suse suse_linux 9.0
redhat enterprise_linux 2.1
mandrakesoft mandrake_linux_corporate_server 2.1
easy_software_products cups 1.1.23_rc1
kde kdegraphics 3.2
redhat enterprise_linux_desktop 3.0
mandrakesoft mandrake_linux_corporate_server 3.0
redhat linux 7.3
sco openserver 6.0
turbolinux turbolinux_home *
turbolinux turbolinux_appliance_server 1.0_workgroup_edition
easy_software_products cups 1.1.22
mandrakesoft mandrake_linux 2006
mandrakesoft mandrake_linux 10.1
kde koffice 1.4.2
redhat enterprise_linux 4.0
suse suse_linux 9.1
turbolinux turbolinux_desktop 10.0
turbolinux turbolinux_server 10.0_x86
redhat enterprise_linux 3.0
kde kword 1.4.2
suse suse_linux 10.0
redhat fedora_core core_1.0
mandrakesoft mandrake_linux 10.2
suse suse_linux 9.2
kde kdegraphics 3.4.3
turbolinux turbolinux_server 10.0
turbolinux turbolinux fuji
tetex tetex 3.0
conectiva linux 10.0
turbolinux turbolinux_workstation 8.0
slackware slackware_linux 9.1
slackware slackware_linux 10.0
tetex tetex 2.0.2
suse suse_linux 1.0
trustix secure_linux 2.0
kde koffice 1.4
tetex tetex 1.0.7
slackware slackware_linux 10.2
tetex tetex 2.0.1
redhat fedora_core core_2.0
kde kpdf 3.4.3
poppler poppler 0.4.2
turbolinux turbolinux_personal *
suse suse_linux 9.3
xpdf xpdf 3.0
trustix secure_linux 3.0
turbolinux turbolinux 10
sco openserver 5.0.7
redhat linux 9.0
turbolinux turbolinux_multimedia *
kde kpdf 3.2
slackware slackware_linux 10.1
redhat fedora_core core_4.0
trustix secure_linux 2.2
kde koffice 1.4.1
slackware slackware_linux 9.0
easy_software_products cups 1.1.22_rc1
ubuntu ubuntu_linux 4.1
sgi propack 3.0
tetex tetex 2.0
redhat fedora_core core_3.0
redhat linux_advanced_workstation 2.1
turbolinux turbolinux_appliance_server 1.0_hosting_edition
gentoo linux *
libextractor libextractor *
redhat enterprise_linux_desktop 4.0
debian debian_linux 3.1
easy_software_products cups 1.1.23
turbolinux turbolinux_server 8.0
ubuntu ubuntu_linux 5.04
debian debian_linux 3.0
ubuntu ubuntu_linux 5.10
CVE-2005-3626 MEDIUM

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
suse suse_linux 9.0
redhat enterprise_linux 2.1
mandrakesoft mandrake_linux_corporate_server 2.1
easy_software_products cups 1.1.23_rc1
kde kdegraphics 3.2
redhat enterprise_linux_desktop 3.0
mandrakesoft mandrake_linux_corporate_server 3.0
redhat linux 7.3
sco openserver 6.0
turbolinux turbolinux_home *
turbolinux turbolinux_appliance_server 1.0_workgroup_edition
easy_software_products cups 1.1.22
mandrakesoft mandrake_linux 2006
mandrakesoft mandrake_linux 10.1
kde koffice 1.4.2
redhat enterprise_linux 4.0
suse suse_linux 9.1
turbolinux turbolinux_desktop 10.0
turbolinux turbolinux_server 10.0_x86
redhat enterprise_linux 3.0
kde kword 1.4.2
suse suse_linux 10.0
redhat fedora_core core_1.0
mandrakesoft mandrake_linux 10.2
suse suse_linux 9.2
kde kdegraphics 3.4.3
turbolinux turbolinux_server 10.0
turbolinux turbolinux fuji
tetex tetex 3.0
conectiva linux 10.0
turbolinux turbolinux_workstation 8.0
slackware slackware_linux 9.1
slackware slackware_linux 10.0
tetex tetex 2.0.2
suse suse_linux 1.0
trustix secure_linux 2.0
kde koffice 1.4
tetex tetex 1.0.7
slackware slackware_linux 10.2
tetex tetex 2.0.1
redhat fedora_core core_2.0
kde kpdf 3.4.3
poppler poppler 0.4.2
turbolinux turbolinux_personal *
suse suse_linux 9.3
xpdf xpdf 3.0
trustix secure_linux 3.0
turbolinux turbolinux 10
sco openserver 5.0.7
redhat linux 9.0
turbolinux turbolinux_multimedia *
kde kpdf 3.2
slackware slackware_linux 10.1
redhat fedora_core core_4.0
trustix secure_linux 2.2
kde koffice 1.4.1
slackware slackware_linux 9.0
easy_software_products cups 1.1.22_rc1
ubuntu ubuntu_linux 4.1
sgi propack 3.0
tetex tetex 2.0
redhat fedora_core core_3.0
redhat linux_advanced_workstation 2.1
turbolinux turbolinux_appliance_server 1.0_hosting_edition
gentoo linux *
libextractor libextractor *
redhat enterprise_linux_desktop 4.0
debian debian_linux 3.1
easy_software_products cups 1.1.23
turbolinux turbolinux_server 8.0
ubuntu ubuntu_linux 5.04
debian debian_linux 3.0
ubuntu ubuntu_linux 5.10
CVE-2007-3798 MEDIUM

Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-252,CWE-252,

Products Affected

Vendor Product Version
freebsd freebsd 6.2
slackware slackware 11.0
debian debian_linux 4.0
tcpdump tcpdump *
freebsd freebsd 6.1
freebsd freebsd *
canonical ubuntu_linux 6.10
apple mac_os_x *
slackware slackware 9.0
slackware slackware 12.0
slackware slackware 10.0
slackware slackware 9.1
canonical ubuntu_linux 6.06
freebsd freebsd 5.5
debian debian_linux 3.1
canonical ubuntu_linux 7.04
apple mac_os_x_server *
slackware slackware 10.1
slackware slackware 10.2
CVE-2013-4854 HIGH

The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x before 9.8.5-P2, 9.8.6b1, 9.9.x before 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 before 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query with a malformed RDATA section that is not properly handled during construction of a log message, as exploited in the wild in July 2013.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
slackware slackware_linux 13.0
freebsd freebsd 8.2
isc bind 9.8.2
freebsd freebsd 8.1
isc bind 9.9.3
freebsd freebsd 8.4
freebsd freebsd 9.1
freebsd freebsd 8.3
fedoraproject fedora 19
isc bind 9.7.6
redhat enterprise_linux 5
freebsd freebsd 8.0
isc bind 9.7.7
isc bind 9.7.1
isc bind 9.7.3
isc bind 9.8.5
isc bind 9.7.5
isc dnsco_bind 9.9.3
isc bind 9.9.1
isc bind 9.8.4
isc bind 9.8.0
fedoraproject fedora 18
slackware slackware_linux 12.2
slackware slackware_linux 13.37
isc bind 9.9.2
isc bind 9.8.1
isc bind 9.9.0
isc bind 9.7.2
isc dnsco_bind 9.9.4
redhat enterprise_linux 6.0
slackware slackware_linux 12.1
slackware slackware_linux 13.1
opensuse opensuse 11.4
isc bind 9.7.4
freebsd freebsd 9.0
suse suse_linux_enterprise_software_development_kit 11.0
mandriva business_server 1.0
hp hp-ux b.11.31
mandriva enterprise_server 5.0
freebsd freebsd 9.2
novell suse_linux 11
isc bind 9.8.6
isc bind 9.8.3
isc bind 9.7.0
CVE-2013-7171 HIGH

Slackware 14.0 and 14.1, and Slackware LLVM 3.0-i486-2 and 3.3-i486-2, contain world-writable permissions on the /tmp directory which could allow remote attackers to execute arbitrary code with root privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
slackware slackware_linux 14.0
slackware slackware_linux 14.1
CVE-2013-7172 HIGH

Slackware 13.1, 13.37, 14.0 and 14.1 contain world-writable permissions on the iodbctest and iodbctestw programs within the libiodbc package, which could allow local users to use RPATH information to execute arbitrary code with root privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
slackware slackware_linux 13.37
slackware slackware_linux 14.0
slackware slackware_linux 13.1
slackware slackware_linux 14.1
CVE-2016-4448 HIGH

Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via format string specifiers in unknown vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-134,

Products Affected

Vendor Product Version
mcafee web_gateway *
redhat enterprise_linux_server_tus 7.3
redhat enterprise_linux_desktop 6.0
oracle linux 7
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_server_tus 7.2
redhat enterprise_linux_server_eus 7.2
slackware slackware_linux 14.1
redhat enterprise_linux_server_tus 7.6
hp icewall_federation_agent 3.0
xmlsoft libxml2 *
redhat enterprise_linux_workstation 6.0
oracle vm_server 3.3
redhat enterprise_linux_server 6.0
apple icloud *
redhat enterprise_linux_server_aus 7.2
apple itunes *
redhat enterprise_linux_desktop 7.0
redhat enterprise_linux_server_tus 7.7
redhat enterprise_linux_server 7.0
redhat enterprise_linux_server_eus 7.7
redhat enterprise_linux_server_eus 7.5
apple watchos *
slackware slackware_linux 14.0
apple iphone_os *
apple mac_os_x *
redhat enterprise_linux_server_aus 7.3
tenable log_correlation_engine 4.8.0
apple tvos *
redhat enterprise_linux_server_aus 7.6
oracle vm_server 3.4
redhat enterprise_linux_server_eus 7.3
redhat enterprise_linux_server_eus 7.4
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.7
oracle linux 6
CVE-2018-7184 MEDIUM

ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix for CVE-2015-7704.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
synology diskstation_manager 5.2
synology skynas -
canonical ubuntu_linux 18.04
netapp cloud_backup -
slackware slackware_linux 14.0
ntp ntp 4.2.8
canonical ubuntu_linux 14.04
canonical ubuntu_linux 17.10
slackware slackware_linux 14.1
synology diskstation_manager 6.0
netapp steelstore_cloud_integrated_storage -
synology vs960hd_firmware -
synology diskstation_manager 6.1
synology virtual_diskstation_manager -
synology router_manager 1.1
slackware slackware_linux 14.2
canonical ubuntu_linux 16.04
CVE-2018-9336 MEDIUM

openvpnserv.exe (aka the interactive service helper) in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other impact including privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
openvpn openvpn *
slackware slackware_linux 13.0
slackware slackware_linux 13.37
slackware slackware_linux 14.0
slackware slackware_linux 13.1
slackware slackware_linux 14.1
CVE-2019-11135 LOW

TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N 2.0 4.0

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
intel xeon_5222_firmware -
hp proliant_ml110_firmware *
intel xeon_6240_firmware -
intel core_i5-8265u_firmware -
intel xeon_w-3275_firmware -
intel core_i7-10510y_firmware -
intel xeon_8253_firmware -
intel xeon_8260l_firmware -
hp proliant_xl190r_firmware *
redhat enterprise_linux_eus 8.1
redhat codeready_linux_builder_eus 8.2
hp proliant_xl170r_firmware *
intel xeon_8280_firmware -
intel xeon_4208_firmware -
intel core_i7-9700k_firmware -
debian debian_linux 8.0
intel xeon_5220t_firmware -
intel xeon_4216r_firmware -
fedoraproject fedora 31
redhat enterprise_linux_server_aus 8.6
intel xeon_6230t_firmware -
redhat enterprise_linux_eus 8.6
intel xeon_4215_firmware -
intel xeon_8276m_firmware -
intel core_i5-8210y_firmware -
intel xeon_6252n_firmware -
intel xeon_6230_firmware -
intel xeon_6238m_firmware -
redhat enterprise_linux 8.0
intel core_i5-10210u_firmware -
hp apollo_2000_firmware *
intel xeon_8276_firmware -
intel core_i7-9700kf_firmware -
intel core_i5-10110y_firmware -
intel xeon_6230n_firmware -
redhat codeready_linux_builder 8.0
intel xeon_e-2286m_firmware -
intel xeon_4209t_firmware -
intel xeon_4214_firmware -
intel core_i9-9980hk_firmware -
hp apollo_4200_firmware *
intel xeon_6244_firmware -
intel core_i5-10310y_firmware -
hp proliant_dl180_firmware *
intel xeon_6240y_firmware -
intel xeon_5215m_firmware -
intel xeon_8260y_firmware -
intel xeon_5218n_firmware -
intel xeon_6222v_firmware -
intel core_i5-9300h_firmware -
redhat enterprise_linux_server_tus 7.6
intel xeon_9220_firmware -
intel xeon_6238_firmware -
hp proliant_dl560_firmware *
intel core_i9-9900kf_firmware -
intel xeon_w-3223_firmware -
intel xeon_w-2275_firmware -
intel xeon_5220s_firmware -
intel xeon_5218_firmware -
intel core_i5-8310y_firmware -
intel celeron_5305u_firmware -
intel xeon_w-3265_firmware -
intel xeon_5215l_firmware -
intel xeon_6238l_firmware -
intel xeon_w-3245_firmware -
intel xeon_w-2235_firmware -
redhat enterprise_linux_server 7.0
hp proliant_bl460c_firmware *
intel core_m3-8100y_firmware -
intel xeon_w-2225_firmware -
intel xeon_w-2223_firmware -
redhat codeready_linux_builder_eus 8.6
intel xeon_6242_firmware -
fedoraproject fedora 30
debian debian_linux 10.0
intel core_i5-8365u_firmware -
intel core_i5-10210y_firmware -
intel xeon_4214c_firmware -
oracle zfs_storage_appliance_kit 8.8
redhat codeready_linux_builder_eus 8.1
opensuse leap 15.1
hp proliant_e910_firmware *
intel xeon_8280l_firmware -
intel xeon_e-2288g_firmware -
hp proliant_dl580_firmware *
intel xeon_8260m_firmware -
intel core_i5-9600kf_firmware -
intel core_i7-8565u_firmware -
intel xeon_5220_firmware -
hp proliant_xl450_firmware *
intel xeon_5215r_firmware -
intel pentium_6405u_firmware -
intel xeon_9282_firmware -
intel core_i9-9900k_firmware -
redhat enterprise_linux_eus 8.4
intel xeon_6254_firmware -
intel xeon_w-3235_firmware -
intel core_i5-9600k_firmware -
redhat enterprise_linux_eus 7.6
canonical ubuntu_linux 14.04
debian debian_linux 9.0
intel xeon_e-2278gel_firmware -
intel xeon_w-2295_firmware -
intel xeon_9242_firmware -
intel xeon_6262v_firmware -
intel core_i9-9880h_firmware -
intel xeon_e-2278g_firmware -
redhat enterprise_linux_server_tus 7.7
intel xeon_4210r_firmware -
intel xeon_4216_firmware -
intel xeon_3204_firmware -
redhat enterprise_linux_server_tus 8.4
intel xeon_8276l_firmware -
intel xeon_w-3265m_firmware -
intel xeon_8260_firmware -
hp proliant_dl380_firmware *
intel xeon_6248_firmware -
redhat enterprise_linux_server_tus 8.2
intel xeon_w-2265_firmware -
intel core_i5-9400_firmware -
redhat enterprise_linux_eus 8.2
hp proliant_dl120_firmware *
hp proliant_dl20_firmware *
hp proliant_xl270d_firmware *
redhat enterprise_linux_server_aus 7.6
intel xeon_5217_firmware -
intel xeon_6226_firmware -
intel xeon_9221_firmware -
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.7
intel core_i5-8200y_firmware -
intel xeon_5218t_firmware -
intel xeon_6240m_firmware -
intel xeon_4214r_firmware -
intel xeon_3206r_firmware -
intel xeon_8270_firmware -
intel xeon_8256_firmware -
intel xeon_6252_firmware -
intel xeon_w-3245m_firmware -
opensuse leap 15.0
intel xeon_6240l_firmware -
intel xeon_4208r_firmware -
redhat codeready_linux_builder_eus 8.4
intel xeon_5220r_firmware -
redhat enterprise_linux_server_tus 8.6
intel core_i7-8500y_firmware -
intel xeon_w-2255_firmware -
intel core_i5-9400f_firmware -
intel xeon_4210_firmware -
intel xeon_9222_firmware -
intel xeon_4214y_firmware -
redhat enterprise_linux_desktop 7.0
hp synergy_660_firmware *
redhat enterprise_linux_server_aus 8.4
slackware slackware 14.2
hp proliant_xl230k_firmware *
hp proliant_dl360_firmware *
intel core_i5-9400h_firmware -
intel xeon_6246_firmware -
intel xeon_w-3225_firmware -
intel xeon_8268_firmware -
intel xeon_5215_firmware -
redhat enterprise_linux_server_aus 8.2
intel xeon_w-2245_firmware -
intel core_i7-9850h_firmware -
intel xeon_e-2278ge_firmware -
hp proliant_dl160_firmware *
intel xeon_5218b_firmware -
intel xeon_8280m_firmware -
intel core_i7-8665u_firmware -
intel core_i7-10510u_firmware -
redhat virtualization_manager 4.2
hp proliant_ml30_firmware *
intel core_i7-9750hf_firmware -
hp proliant_ml350_firmware *
redhat enterprise_linux_eus 7.7
intel xeon_w-3275m_firmware -
hp synergy_480_firmware *
intel xeon_6238t_firmware -
intel xeon_6234_firmware -