GCVE - cpe:2.3:o:mandrakesoft:mandrake

Approved changes feed: RSS · Atom

cpe:2.3:o:mandrakesoft:mandrake_linux:7.0:*:*:*:*:*:*:*

part: o version: 7.0 update: *

Vendor	Mandrakesoft (`a8a5c606-4abd-5243-b724-ee5f458a973b`)
Product	Mandrake Linux (`3ee4655e-af5a-585e-8ef9-3aa098e5f6c8`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2002-0638`	vulnerable	2026-06-08 04:46:21.864116	Details available setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow local users to gain privileges via a complex race condition that uses an open file descriptor in utility programs such as chfn and chsh. Published: 2003-04-02T05:00:00.000Z Updated: 2024-08-08T02:56:38.516Z Open on db.gcve.eu Reference links ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-043.0.txt http://www.securityfocus.com/bid/5344 http://www.iss.net/security_center/static/9709.php http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-047.php http://rhn.redhat.com/errata/RHSA-2002-132.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0473`	vulnerable	2026-06-08 04:45:20.326068	Details available Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands. Published: 2001-09-18T04:00:00.000Z Updated: 2024-08-08T04:21:38.677Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/bugtraq/2001-03/0246.html http://www.osvdb.org/5615 http://www.redhat.com/support/errata/RHSA-2001-029.html http://marc.info/?l=bugtraq&m=98473109630421&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/6235	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0441`	vulnerable	2026-06-08 04:45:20.273222	Details available Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header. Published: 2001-05-24T04:00:00.000Z Updated: 2024-08-08T04:21:38.397Z Open on db.gcve.eu Reference links http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000383 https://exchange.xforce.ibmcloud.com/vulnerabilities/6213 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-028.php3 http://marc.info/?l=bugtraq&m=98471253131191&w=2 http://www.securityfocus.com/bid/2493	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0388`	vulnerable	2026-06-08 04:45:20.119462	Details available time server daemon timed allows remote attackers to cause a denial of service via malformed packets. Published: 2001-09-18T04:00:00.000Z Updated: 2024-08-08T04:21:37.222Z Open on db.gcve.eu Reference links http://www.novell.com/linux/security/advisories/2001_007_nkitserv.html https://exchange.xforce.ibmcloud.com/vulnerabilities/6228 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-034.php3 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:28.timed.asc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0178`	vulnerable	2026-06-08 04:45:19.860723	Details available kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:14:06.573Z Open on db.gcve.eu Reference links http://www.novell.com/linux/security/advisories/2001_002_kdesu_txt.html http://www.calderasystems.com/support/security/advisories/CSSA-2001-005.0.txt http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-018.php3?dis=7.2 https://exchange.xforce.ibmcloud.com/vulnerabilities/5995	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0169`	vulnerable	2026-06-08 04:45:19.837302	Details available When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.519Z Open on db.gcve.eu Reference links http://www.novell.com/linux/security/advisories/2001_001_glibc_txt.html http://www.debian.org/security/2001/dsa-039 https://exchange.xforce.ibmcloud.com/vulnerabilities/5971 http://www.securityfocus.com/bid/2223 http://www.securityfocus.com/archive/1/157650	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0142`	vulnerable	2026-06-08 04:45:19.811350	Details available squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some configurations. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.450Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=97916374410647&w=2 http://www.securityfocus.com/bid/2184 http://www.debian.org/security/2001/dsa-019 https://exchange.xforce.ibmcloud.com/vulnerabilities/5921 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-003.php3	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0140`	vulnerable	2026-06-08 04:45:19.805111	Details available arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configurations. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.442Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=97916374410647&w=2 http://www.securityfocus.com/bid/2183 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-002.php3 https://exchange.xforce.ibmcloud.com/vulnerabilities/5922	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0139`	vulnerable	2026-06-08 04:45:19.804475	Details available inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.545Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=97916374410647&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/5916 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-010.php3 http://www.securityfocus.com/bid/2190 http://www.calderasystems.com/support/security/advisories/CSSA-2001-001.0.txt	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0138`	vulnerable	2026-06-08 04:45:19.803860	Details available privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.458Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=97916374410647&w=2 http://www.securityfocus.com/bid/2189 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-001.php3 https://exchange.xforce.ibmcloud.com/vulnerabilities/5915 http://www.debian.org/security/2001/dsa-016	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0125`	vulnerable	2026-06-08 04:45:19.766680	Details available exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exmhErrorMsg temporary file. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.320Z Open on db.gcve.eu Reference links http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-015.php3 http://archives.neohapsis.com/archives/freebsd/2001-01/0543.html http://marc.info/?l=bugtraq&m=97846489313059&w=2 http://marc.info/?l=bugtraq&m=97958594330100&w=2 http://www.debian.org/security/2001/dsa-022	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0120`	vulnerable	2026-06-08 04:45:19.758490	Details available useradd program in shadow-utils program may allow local users to overwrite arbitrary files via a symlink attack. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.313Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=97916374410647&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/5927 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-007.php3 http://www.securityfocus.com/bid/2196	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0119`	vulnerable	2026-06-08 04:45:19.758070	Details available getty_ps 2.0.7j allows local users to overwrite arbitrary files via a symlink attack. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.434Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=97916374410647&w=2 http://www.securityfocus.com/bid/2194 https://exchange.xforce.ibmcloud.com/vulnerabilities/5924 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-004.php3	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0118`	vulnerable	2026-06-08 04:45:19.757641	Details available rdist 6.1.5 allows local users to overwrite arbitrary files via a symlink attack. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.433Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=97916374410647&w=2 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-005.php3 http://www.securityfocus.com/bid/2195 https://exchange.xforce.ibmcloud.com/vulnerabilities/5925	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0117`	vulnerable	2026-06-08 04:45:19.752681	Details available sdiff 2.7 in the diffutils package allows local users to overwrite files via a symlink attack. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.471Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=97916374410647&w=2 http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2000-70-028-01 https://exchange.xforce.ibmcloud.com/vulnerabilities/5914 http://www.securityfocus.com/bid/2191 http://www.kb.cert.org/vuls/id/579928	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2001-0116`	vulnerable	2026-06-08 04:45:19.752076	Details available gpm 1.19.3 allows local users to overwrite arbitrary files via a symlink attack. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T04:06:55.490Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=97916374410647&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/5917 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-006.php3 http://www.securityfocus.com/bid/2188	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-1134`	vulnerable	2026-06-08 04:45:19.321117	Details available Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack. Published: 2000-12-19T05:00:00.000Z Updated: 2024-08-08T05:45:37.043Z Open on db.gcve.eu Reference links http://www.debian.org/security/2000/20001111a http://www.securityfocus.com/bid/1926 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000350 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4047 http://archives.neohapsis.com/archives/tru64/2002-q1/0009.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-1059`	vulnerable	2026-06-08 04:45:19.219889	Details available The default configuration of the Xsession file in Mandrake Linux 7.1 and 7.0 bypasses the Xauthority access control mechanism with an "xhost + localhost" command, which allows local users to sniff X Windows events and gain privileges. Published: 2001-01-22T05:00:00.000Z Updated: 2024-08-08T05:45:36.176Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/136495 http://www.linux-mandrake.com/en/security/MDKSA-2000-052.php3 https://exchange.xforce.ibmcloud.com/vulnerabilities/5305 http://www.securityfocus.com/bid/1735	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-1043`	vulnerable	2026-06-08 04:45:19.190776	Details available Format string vulnerability in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function. Published: 2001-01-22T05:00:00.000Z Updated: 2024-08-08T05:45:36.479Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/5731 http://www.linux-mandrake.com/en/security/MDKSA-2000-064.php3?dis=7.1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-1042`	vulnerable	2026-06-08 04:45:19.190472	Details available Buffer overflow in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function. Published: 2001-01-22T05:00:00.000Z Updated: 2024-08-08T05:45:36.208Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/5730 http://www.linux-mandrake.com/en/security/MDKSA-2000-064.php3?dis=7.1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0883`	vulnerable	2026-06-08 04:45:18.918830	Details available The default configuration of mod_perl for Apache as installed on Mandrake Linux 6.1 through 7.1 sets the /perl/ directory to be browseable, which allows remote attackers to list the contents of that directory. Published: 2001-01-22T05:00:00.000Z Updated: 2024-08-08T05:37:31.433Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/1678 https://exchange.xforce.ibmcloud.com/vulnerabilities/5257 http://archives.neohapsis.com/archives/bugtraq/2000-09/0111.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0867`	vulnerable	2026-06-08 04:45:18.893759	Details available Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages. Published: 2001-01-22T05:00:00.000Z Updated: 2024-08-08T05:37:31.337Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/5259 http://www.osvdb.org/5824 http://marc.info/?l=bugtraq&m=97726239017741&w=2 http://www.turbolinux.com/pipermail/tl-security-announce/2000-September/000023.html http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:050	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0844`	vulnerable	2026-06-08 04:45:18.842665	Details available Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. Published: 2001-01-22T05:00:00.000Z Updated: 2024-08-08T05:37:30.623Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2000-057.html http://www.novell.com/linux/security/advisories/adv5_draht_glibc_txt.html http://archives.neohapsis.com/archives/bugtraq/2000-08/0436.html http://archives.neohapsis.com/archives/tru64/2000-q4/0000.html http://www.turbolinux.com/pipermail/tl-security-announce/2000-September/000020.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0718`	vulnerable	2026-06-08 04:45:18.666472	Details available A race condition in MandrakeUpdate allows local users to modify RPM files while they are in the /tmp directory before they are installed. Published: 2000-10-13T04:00:00.000Z Updated: 2024-08-08T05:28:41.462Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/1567 http://archives.neohapsis.com/archives/bugtraq/2000-08/0146.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0607`	vulnerable	2026-06-08 04:45:18.425949	Details available Buffer overflow in fld program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via an input file containing long CHARSET_REGISTRY or CHARSET_ENCODING settings. Published: 2000-07-19T04:00:00.000Z Updated: 2024-08-08T05:21:31.314Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/1371 http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0006192340340.19998-100000%40ferret.lmh.ox.ac.uk	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0606`	vulnerable	2026-06-08 04:45:18.423194	Details available Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter. Published: 2000-07-19T04:00:00.000Z Updated: 2024-08-08T05:21:31.251Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/1371 http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.21.0006192340340.19998-100000%40ferret.lmh.ox.ac.uk	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0566`	vulnerable	2026-06-08 04:45:18.334560	Details available makewhatis in Linux man package allows local users to overwrite files via a symlink attack. Published: 2000-10-13T04:00:00.000Z Updated: 2024-08-08T05:21:31.202Z Open on db.gcve.eu Reference links ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-021.0.txt http://frontal2.mandriva.com/security/advisories?name=MDKSA-2000:015 http://www.redhat.com/support/errata/RHSA-2000-041.html https://exchange.xforce.ibmcloud.com/vulnerabilities/4900 http://archives.neohapsis.com/archives/bugtraq/2000-07/0390.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0508`	vulnerable	2026-06-08 04:45:18.209030	Details available rpc.lockd in Red Hat Linux 6.1 and 6.2 allows remote attackers to cause a denial of service via a malformed request. Published: 2000-10-13T04:00:00.000Z Updated: 2024-08-08T05:21:31.106Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/bugtraq/2000-06/0073.html http://www.securityfocus.com/bid/1372 https://exchange.xforce.ibmcloud.com/vulnerabilities/5050	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0454`	vulnerable	2026-06-08 04:45:18.022311	Details available Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter. Published: 2000-07-12T04:00:00.000Z Updated: 2024-08-08T05:21:30.843Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/bugtraq/2000-06/0019.html http://archives.neohapsis.com/archives/bugtraq/2000-05/0367.html http://archives.neohapsis.com/archives/bugtraq/2000-05/0434.html http://www.securityfocus.com/bid/1265	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0336`	vulnerable	2026-06-08 04:44:58.458878	Details available Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack. Published: 2000-07-12T04:00:00.000Z Updated: 2024-08-08T05:14:21.407Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2000-012.html http://www.turbolinux.com/pipermail/tl-security-announce/2000-May/000009.html http://www.securityfocus.com/bid/1232 ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-009.0.txt	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0186`	vulnerable	2026-06-08 04:44:58.414191	Details available Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument. Published: 2000-04-10T04:00:00.000Z Updated: 2024-08-08T05:05:54.163Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/1020 http://www.redhat.com/support/errata/RHSA-2000-100.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0184`	vulnerable	2026-06-08 04:44:58.413564	Details available Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords. Published: 2000-04-25T04:00:00.000Z Updated: 2024-08-08T05:05:54.110Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/bugtraq/2000-03/0082.html http://www.securityfocus.com/bid/1037	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-1999-1008`	vulnerable	2026-06-08 04:44:58.184816	Details available xsoldier program allows local users to gain root access via a long argument. Published: 2000-04-18T04:00:00.000Z Updated: 2024-08-01T16:55:29.389Z Open on db.gcve.eu Reference links http://marc.info/?l=freebsd-security&m=94531826621620&w=2 http://www.securityfocus.com/bid/871	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

MandrakeSoft Mandrake Linux 7.0

PURL mappings

Vulnerability references

Contribute