MandrakeSoft Mandrake Linux 2008.0
Approved changes feed: RSS · Atom
cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*
part: o version: 2008.0 update: *
| Vendor | Mandrakesoft (a8a5c606-4abd-5243-b724-ee5f458a973b) |
|---|---|
| Product | Mandrake Linux (3ee4655e-af5a-585e-8ef9-3aa098e5f6c8) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2008-0595 |
vulnerable | 2026-06-08 04:50:17.218049 |
Details available
dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface.
Published: 2008-02-29T19:00:00.000Z
Updated: 2024-08-07T07:54:22.705Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2008-0411 |
not_vulnerable | 2026-06-08 04:50:10.973644 |
Details available
Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript (.ps) file containing a long Range array in a .seticcspace operator.
Published: 2008-02-28T21:00:00.000Z
Updated: 2024-08-07T07:46:54.069Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2008-0386 |
not_vulnerable | 2026-06-08 04:50:10.883291 |
Details available
Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to (1) xdg-open or (2) xdg-email.
Published: 2008-02-04T22:00:00.000Z
Updated: 2024-08-07T07:46:54.347Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2008-0008 |
not_vulnerable | 2026-06-08 04:50:09.917321 |
Details available
The pa_drop_root function in PulseAudio 0.9.8, and a certain 0.9.9 build, does not check return values from (1) setresuid, (2) setreuid, (3) setuid, and (4) seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail via attacks such as resource exhaustion.
Published: 2008-01-28T23:00:00.000Z
Updated: 2024-08-07T07:32:23.571Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2007-6284 |
vulnerable | 2026-06-08 04:50:08.408462 |
Details available
The xmlCurrentChar function in libxml2 before 2.6.31 allows context-dependent attackers to cause a denial of service (infinite loop) via XML containing invalid UTF-8 sequences.
Published: 2008-01-12T02:00:00.000Z
Updated: 2024-08-07T16:02:36.031Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2007-5116 |
not_vulnerable | 2026-06-08 04:49:57.904422 |
Details available
Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.
Published: 2007-11-07T20:00:00.000Z
Updated: 2024-08-07T15:17:28.328Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.