This page lists publicly disclosed CVE vulnerabilities affecting suse linux_enterprise_software_development_kit (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2014-9853 | Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file. | [email protected] | 5.5 | 1.82% | 2017-03-17 | 2026-05-13 |
| CVE-2014-9852 | distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors. | [email protected] | 9.8 | 2.88% | 2017-03-17 | 2026-05-13 |
| CVE-2017-5898 | Integer overflow in the emulated_apdu_from_guest function in usb/dev-smartcard-reader.c in Quick Emulator (Qemu), when built with the CCID Card device emulator support, allows local users to cause a denial of service (application crash) via a large Application Protocol Data Units (APDU) unit. | [email protected] | 5.5 | 0.40% | 2017-03-15 | 2026-05-13 |
| CVE-2016-2318 | GraphicsMagick 1.3.23 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SVG file, related to the (1) DrawImage function in magick/render.c, (2) SVGStartElement function in coders/svg.c, and (3) TraceArcPath function in magick/render.c. | [email protected] | 5.5 | 1.89% | 2017-02-03 | 2026-05-13 |
| CVE-2016-2317 | Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service (crash) via a crafted SVG file, related to the (1) TracePoint function in magick/render.c, (2) GetToken function in magick/utility.c, and (3) GetTransformTokens function in coders/svg.c. | [email protected] | 5.5 | 2.00% | 2017-02-03 | 2026-05-13 |
| CVE-2015-8934 | The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted rar file. | [email protected] | 5.5 | 2.31% | 2016-09-20 | 2026-05-06 |
| CVE-2015-8933 | Integer overflow in the archive_read_format_tar_skip function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted tar file. | [email protected] | 5.5 | 2.04% | 2016-09-20 | 2026-05-06 |
| CVE-2015-8932 | The compress_bidder_init function in archive_read_support_filter_compress.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted tar file, which triggers an invalid left shift. | [email protected] | 5.5 | 2.22% | 2016-09-20 | 2026-05-06 |
| CVE-2015-8931 | Multiple integer overflows in the (1) get_time_t_max and (2) get_time_t_min functions in archive_read_support_format_mtree.c in libarchive before 3.2.0 allow remote attackers to have unspecified impact via a crafted mtree file, which triggers undefined behavior. | [email protected] | 7.8 | 2.13% | 2016-09-20 | 2026-05-06 |
| CVE-2015-8930 | bsdtar in libarchive before 3.2.0 allows remote attackers to cause a denial of service (infinite loop) via an ISO with a directory that is a member of itself. | [email protected] | 7.5 | 4.21% | 2016-09-20 | 2026-05-06 |
| CVE-2015-8929 | Memory leak in the __archive_read_get_extract function in archive_read_extract2.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service via a tar file. | [email protected] | 5.5 | 1.55% | 2016-09-20 | 2026-05-06 |
| CVE-2015-8928 | The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file. | [email protected] | 5.5 | 2.07% | 2016-09-20 | 2026-05-06 |
| CVE-2015-8926 | The archive_read_format_rar_read_data function in archive_read_support_format_rar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted rar archive. | [email protected] | 5.5 | 2.00% | 2016-09-20 | 2026-05-06 |
| CVE-2015-8925 | The readline function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (invalid read) via a crafted mtree file, related to newline parsing. | [email protected] | 5.5 | 2.07% | 2016-09-20 | 2026-05-06 |
| CVE-2016-5772 | Double free vulnerability in the php_wddx_process_data function in wddx.c in the WDDX extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted XML data that is mishandled in a wddx_deserialize call. | [email protected] | 9.8 | 9.75% | 2016-08-07 | 2026-05-06 |
| CVE-2015-8808 | The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted GIF file. | [email protected] | 5.5 | 1.54% | 2016-07-13 | 2026-05-06 |
| CVE-2016-5118 | The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | (pipe) character at the start of a filename. | [email protected] | 9.8 | 49.33% | 2016-06-10 | 2026-05-06 |
| CVE-2015-5041 | The J9 JVM in IBM SDK, Java Technology Edition 6 before SR16 FP20, 6 R1 before SR8 FP20, 7 before SR9 FP30, and 7 R1 before SR3 FP30 allows remote attackers to obtain sensitive information or inject data by invoking non-public interface methods. | [email protected] | 9.1 | 3.90% | 2016-06-06 | 2026-05-06 |
| CVE-2016-0718 | Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow. | [email protected] | 9.8 | 13.33% | 2016-05-26 | 2026-05-06 |
| CVE-2016-0264 | Buffer overflow in the Java Virtual Machine (JVM) in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.1.3.40), and 8 before SR3 (8.0.3.0) allows remote attackers to execute arbitrary code via unspecified vectors. | [email protected] | 5.6 | 3.92% | 2016-05-24 | 2026-05-06 |