This page lists publicly disclosed CVE vulnerabilities affecting slackware slackware_linux (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2004-0424 | Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option. | [email protected] | 7.2 | 0.21% | 2004-07-07 | 2026-04-16 |
| CVE-2003-0977 | CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests. | [email protected] | 7.5 | 1.90% | 2004-01-05 | 2026-04-16 |
| CVE-2003-0962 | Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail. | [email protected] | 7.5 | 44.26% | 2003-12-15 | 2026-04-16 |
| CVE-2003-0195 | CUPS before 1.1.19 allows remote attackers to cause a denial of service via a partial printing request to the IPP port (631), which does not time out. | [email protected] | 5.0 | 16.37% | 2003-06-16 | 2026-04-16 |
| CVE-2003-0335 | rc.M in Slackware 9.0 calls quotacheck with the -M option, which causes the filesystem to be remounted and possibly reset security-relevant mount flags such as nosuid, nodev, and noexec. | [email protected] | 7.5 | 0.49% | 2003-05-22 | 2026-04-16 |
| CVE-2002-1814 | Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments. | [email protected] | 4.6 | 0.25% | 2002-12-31 | 2026-04-16 |
| CVE-2002-0004 | Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice. | [email protected] | 7.2 | 0.27% | 2002-02-27 | 2026-04-16 |
| CVE-2001-1036 | GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory. | [email protected] | 7.2 | 0.40% | 2001-08-31 | 2026-04-16 |
| CVE-2000-0315 | traceroute in NetBSD 1.3.3 and Linux systems allows local unprivileged users to modify the source address of the packets, which could be used in spoofing attacks. | [email protected] | 5.0 | 0.44% | 2001-03-12 | 2026-04-16 |
| CVE-2000-0314 | traceroute in NetBSD 1.3.3 and Linux systems allows local users to flood other systems by providing traceroute with a large waittime (-w) option, which is not parsed properly and sets the time delay for sending packets to zero. | [email protected] | 5.0 | 0.32% | 2001-03-12 | 2026-04-16 |
| CVE-2000-0867 | Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages. | [email protected] | 7.2 | 0.07% | 2000-11-14 | 2026-04-16 |
| CVE-2000-0844 | Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | [email protected] | 10.0 | 0.89% | 2000-11-14 | 2026-04-16 |
| CVE-2000-0438 | Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter. | [email protected] | 7.2 | 0.38% | 2000-05-22 | 2026-04-16 |
| CVE-1999-0856 | login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist. | [email protected] | 5.0 | 0.23% | 1999-12-01 | 2026-04-16 |
| CVE-1999-0746 | A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a denial of service. | [email protected] | 5.0 | 6.03% | 1999-08-16 | 2026-04-16 |
| CVE-1999-0433 | XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. | [email protected] | 4.6 | 0.17% | 1999-03-21 | 2026-04-16 |
| CVE-1999-0421 | During a reboot after an installation of Linux Slackware 3.6, a remote attacker can obtain root access by logging in to the root account without a password. | [email protected] | 7.2 | 0.35% | 1999-03-17 | 2026-04-16 |
| CVE-1999-0368 | Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto. | [email protected] | 10.0 | 48.33% | 1999-02-09 | 2026-04-16 |
| CVE-1999-1422 | The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the PATH environmental variable, which could allow local users to create Trojan horse programs that are inadvertently executed by other users. | [email protected] | 7.2 | 0.06% | 1999-01-02 | 2026-04-16 |
| CVE-1999-1434 | login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server. | [email protected] | 7.2 | 0.38% | 1998-07-13 | 2026-04-16 |