GCVE - cpe:2.3:o:mandrakesoft:mandrake_linux:9.1:*:ppc:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:mandrakesoft:mandrake_linux:9.1:*:ppc:*:*:*:*:*

part: o version: 9.1 update: *

Vendor	Mandrakesoft (`a8a5c606-4abd-5243-b724-ee5f458a973b`)
Product	Mandrake Linux (`3ee4655e-af5a-585e-8ef9-3aa098e5f6c8`)
Edition	ppc
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2007-1352`	not_vulnerable	2026-06-08 04:49:42.166244	Details available Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow. Published: 2007-04-06T01:00:00.000Z Updated: 2024-08-07T12:50:35.267Z Open on db.gcve.eu Reference links http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=502 http://secunia.com/advisories/24745 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10523 http://secunia.com/advisories/33937 http://secunia.com/advisories/24771	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-2396`	not_vulnerable	2026-06-08 04:48:09.532979	Details available passwd 0.68 does not check the return code for the pam_start function, which has unknown impact and attack vectors that may prevent "safe and proper operation" of PAM. Published: 2005-08-17T04:00:00.000Z Updated: 2024-08-08T01:22:13.939Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10370 http://www.mandriva.com/security/advisories?name=MDKSA-2004:045 https://exchange.xforce.ibmcloud.com/vulnerabilities/16179 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120060	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-2395`	vulnerable	2026-06-08 04:48:09.532458	Details available Memory leak in passwd 0.68 allows local users to cause a denial of service (memory consumption) via a large number of failed read attempts from the password buffer. Published: 2005-08-17T04:00:00.000Z Updated: 2024-08-08T01:22:13.698Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10370 http://www.mandriva.com/security/advisories?name=MDKSA-2004:045 https://exchange.xforce.ibmcloud.com/vulnerabilities/16180 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120060	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-2394`	vulnerable	2026-06-08 04:48:09.531848	Details available Off-by-one error in passwd 0.68 and earlier, when using the --stdin option, causes passwd to use the first 78 characters of a password instead of the first 79, which results in a small reduction of the search space required for brute force attacks. Published: 2005-08-17T04:00:00.000Z Updated: 2024-08-08T01:22:13.912Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10370 http://www.mandriva.com/security/advisories?name=MDKSA-2004:045 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120060 https://exchange.xforce.ibmcloud.com/vulnerabilities/16178	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0834`	vulnerable	2026-06-08 04:47:51.593078	Details available Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via (1) modem_run, (2) pppoa2, or (3) pppoa3. Published: 2004-10-20T04:00:00.000Z Updated: 2024-08-08T00:31:47.532Z Open on db.gcve.eu Reference links http://speedtouch.sourceforge.net/index.php?/news.en.html http://www.mail-archive.com/speedtouch%40ml.free.fr/msg06688.html https://exchange.xforce.ibmcloud.com/vulnerabilities/17792 http://sourceforge.net/project/showfiles.php?group_id=32758&package_id=28264&release_id=271734	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0581`	vulnerable	2026-06-08 04:47:50.443019	Details available ksymoops-gznm script in Mandrake Linux 9.1 through 10.0, and Corporate Server 2.1, allows local users to delete arbitrary files via a symlink attack on files in /tmp. Published: 2004-06-23T04:00:00.000Z Updated: 2024-08-08T00:24:26.288Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10516 https://exchange.xforce.ibmcloud.com/vulnerabilities/16392 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:060	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0535`	vulnerable	2026-06-08 04:47:50.145614	Details available The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources. Published: 2004-06-08T04:00:00.000Z Updated: 2024-08-08T00:24:26.913Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10352 http://www.redhat.com/support/errata/RHSA-2004-413.html http://www.redhat.com/support/errata/RHSA-2004-418.html http://www.kernel.org/pub/linux/kernel/v2.4/testing/patch-2.4.27.log http://lwn.net/Articles/91155/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0461`	vulnerable	2026-06-08 04:47:49.904217	Details available The DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13, when compiled in environments that do not provide the vsnprintf function, uses C include files that define vsnprintf to use the less safe vsprintf function, which can lead to buffer overflow vulnerabilities that enable a denial of service (server crash) and possibly execute arbitrary code. Published: 2004-06-24T04:00:00.000Z Updated: 2024-08-08T00:17:15.144Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/654390 https://exchange.xforce.ibmcloud.com/vulnerabilities/16476 http://www.mandriva.com/security/advisories?name=MDKSA-2004:061 http://secunia.com/advisories/23265 http://marc.info/?l=bugtraq&m=108795911203342&w=2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0460`	vulnerable	2026-06-08 04:47:49.896953	Details available Buffer overflow in the logging capability for the DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via multiple hostname options in (1) DISCOVER, (2) OFFER, (3) REQUEST, (4) ACK, or (5) NAK messages, which can generate a long string when writing to a log file. Published: 2004-06-24T04:00:00.000Z Updated: 2024-08-08T00:17:15.127Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/317350 http://www.securityfocus.com/bid/10590 http://www.mandriva.com/security/advisories?name=MDKSA-2004:061 http://secunia.com/advisories/23265 http://marc.info/?l=bugtraq&m=108795911203342&w=2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2003-1020`	vulnerable	2026-06-08 04:47:23.179836	Details available The format_send_to_gui function in formats.c for irssi before 0.8.9 allows remote IRC users to cause a denial of service (crash). Published: 2003-12-23T05:00:00.000Z Updated: 2024-08-08T02:12:35.400Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/347218 http://www.mandriva.com/security/advisories?name=MDKSA-2003:117 https://exchange.xforce.ibmcloud.com/vulnerabilities/13973	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.