GCVE - cpe:2.3:o:gentoo:linux:1.2:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:gentoo:linux:1.2:*:*:*:*:*:*:*

part: o version: 1.2 update: *

Vendor	Gentoo (`7fa277de-5a05-5db1-a5d1-2f4db074c494`)
Product	Linux (`97766503-c66c-5631-b938-02c72964de5e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/gentoo/genkernel`	purl2cpe	2026-06-01 10:12:48.517136

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2007-3531`	not_vulnerable	2026-06-03 14:28:16.258101	Details available The set_default_speeds function in backend/backend.c in NVidia NVClock before 0.8b2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/nvclock temporary file. Published: 2007-07-25T17:00:00.000Z Updated: 2024-08-07T14:21:36.106Z Open on db.gcve.eu Reference links http://secunia.com/advisories/26200 http://secunia.com/advisories/26208 http://osvdb.org/38573 http://bugs.gentoo.org/show_bug.cgi?id=184071 http://security.gentoo.org/glsa/glsa-200707-08.xml	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-1390`	vulnerable	2026-06-03 14:27:24.231612	Details available The configuration of NetHack 3.4.3-r1 and earlier, Falcon's Eye 1.9.4a and earlier, and Slash'EM 0.0.760 and earlier on Gentoo Linux allows local users in the games group to modify saved games files to execute arbitrary code via buffer overflows and overwrite arbitrary files via symlink attacks. Published: 2006-03-25T00:00:00.000Z Updated: 2024-08-07T17:12:21.262Z Open on db.gcve.eu Reference links http://secunia.com/advisories/19376 http://www.gentoo.org/security/en/glsa/glsa-200603-23.xml http://bugs.gentoo.org/show_bug.cgi?id=125902 http://bugs.gentoo.org/show_bug.cgi?id=127167 http://bugs.gentoo.org/show_bug.cgi?id=127319	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-0005`	vulnerable	2026-06-03 14:26:48.851988	Details available Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and possibly earlier versions allows remote attackers to execute arbitrary code via a .PSD image file with a large number of layers. Published: 2005-01-19T05:00:00.000Z Updated: 2024-08-07T20:57:40.834Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9925 http://www.debian.org/security/2005/dsa-646 http://www.gentoo.org/security/en/glsa/glsa-200501-37.xml http://marc.info/?l=bugtraq&m=110608222117215&w=2 http://www.idefense.com/application/poi/display?id=184&type=vulnerabilities	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-1452`	vulnerable	2026-06-03 14:26:39.696169	Details available Tomcat before 5.0.27-r3 in Gentoo Linux sets the default permissions on the init scripts as tomcat:tomcat, but executes the scripts with root privileges, which could allow local users in the tomcat group to execute arbitrary commands as root by modifying the scripts. Published: 2005-02-13T05:00:00.000Z Updated: 2024-08-08T00:53:23.647Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10951 https://exchange.xforce.ibmcloud.com/vulnerabilities/16993 http://www.gentoo.org/security/en/glsa/glsa-200408-15.xml http://secunia.com/advisories/12296/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0749`	vulnerable	2026-06-03 14:26:36.729298	Details available The mod_authz_svn module in Subversion 1.0.7 and earlier does not properly restrict access to all metadata on unreadable paths, which could allow remote attackers to gain sensitive information via (1) svn log -v, (2) svn propget, or (3) svn blame, and other commands that follow renames. Published: 2004-11-19T05:00:00.000Z Updated: 2024-08-08T00:31:46.965Z Open on db.gcve.eu Reference links http://fedoranews.org/updates/FEDORA-2004-318.shtml https://exchange.xforce.ibmcloud.com/vulnerabilities/17472 http://www.securityfocus.com/bid/11243 http://subversion.tigris.org/security/CAN-2004-0749-advisory.txt http://www.gentoo.org/security/en/glsa/glsa-200409-35.xml	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0456`	vulnerable	2026-06-03 14:26:35.579203	Details available Stack-based buffer overflow in pavuk 0.9pl28, 0.9pl27, and possibly other versions allows remote web sites to execute arbitrary code via a long HTTP Location header. Published: 2004-07-06T04:00:00.000Z Updated: 2024-08-08T00:17:14.989Z Open on db.gcve.eu Reference links http://www.debian.org/security/2004/dsa-527 https://exchange.xforce.ibmcloud.com/vulnerabilities/16551 http://www.securityfocus.com/bid/10633 http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023322.html http://security.gentoo.org/glsa/glsa-200406-22.xml	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0432`	vulnerable	2026-06-03 14:26:35.520791	Details available ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions. Published: 2004-05-05T04:00:00.000Z Updated: 2024-08-08T00:17:15.157Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10252 https://exchange.xforce.ibmcloud.com/vulnerabilities/16038 http://marc.info/?l=bugtraq&m=108335051011341&w=2 http://bugs.proftpd.org/show_bug.cgi?id=2267 http://marc.info/?l=bugtraq&m=108335030208523&w=2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0386`	vulnerable	2026-06-03 14:26:35.369435	Details available Buffer overflow in the HTTP parser for MPlayer 1.0pre3 and earlier, 0.90, and 0.91 allows remote attackers to execute arbitrary code via a long Location header. Published: 2004-04-07T04:00:00.000Z Updated: 2024-08-08T00:17:14.357Z Open on db.gcve.eu Reference links http://secunia.com/advisories/11259 http://www.mplayerhq.hu/homepage/design6/news.html https://exchange.xforce.ibmcloud.com/vulnerabilities/15675 http://marc.info/?l=bugtraq&m=108067020624076&w=2 http://www.mandriva.com/security/advisories?name=MDKSA-2004:026	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0232`	vulnerable	2026-06-03 14:26:34.823734	Details available Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. Published: 2004-05-05T04:00:00.000Z Updated: 2024-08-08T00:10:03.655Z Open on db.gcve.eu Reference links http://www.novell.com/linux/security/advisories/2004_12_mc.html http://security.gentoo.org/glsa/glsa-200405-21.xml https://exchange.xforce.ibmcloud.com/vulnerabilities/16021 http://www.mandriva.com/security/advisories?name=MDKSA-2004:039 http://www.debian.org/security/2004/dsa-497	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0231`	vulnerable	2026-06-03 14:26:34.822805	Details available Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations." Published: 2004-05-05T04:00:00.000Z Updated: 2024-08-08T00:10:03.983Z Open on db.gcve.eu Reference links http://www.novell.com/linux/security/advisories/2004_12_mc.html http://security.gentoo.org/glsa/glsa-200405-21.xml http://www.mandriva.com/security/advisories?name=MDKSA-2004:039 http://www.debian.org/security/2004/dsa-497 http://www.redhat.com/support/errata/RHSA-2004-172.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0226`	vulnerable	2026-06-03 14:26:34.756847	Details available Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. Published: 2004-05-05T04:00:00.000Z Updated: 2024-08-08T00:10:03.623Z Open on db.gcve.eu Reference links http://www.novell.com/linux/security/advisories/2004_12_mc.html http://security.gentoo.org/glsa/glsa-200405-21.xml https://exchange.xforce.ibmcloud.com/vulnerabilities/16016 http://www.mandriva.com/security/advisories?name=MDKSA-2004:039 http://www.debian.org/security/2004/dsa-497	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2003-0694`	vulnerable	2026-06-03 14:26:26.309415	Details available The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c. Published: 2003-09-18T04:00:00.000Z Updated: 2024-08-08T02:05:11.329Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=106398718909274&w=2 http://www.sendmail.org/8.12.10.html http://www.redhat.com/support/errata/RHSA-2003-283.html http://archives.neohapsis.com/archives/fulldisclosure/2003-q3/4119.html http://www.cert.org/advisories/CA-2003-25.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2003-0681`	vulnerable	2026-06-03 14:26:26.242276	Details available A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences. Published: 2003-09-18T04:00:00.000Z Updated: 2024-08-08T02:05:11.990Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=106398718909274&w=2 http://www.sendmail.org/8.12.10.html http://www.redhat.com/support/errata/RHSA-2003-283.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A595 http://www.mandriva.com/security/advisories?name=MDKSA-2003:092	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.