GCVE - cpe:2.3:o:mandrakesoft:mandrake_linux:9.1:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:mandrakesoft:mandrake_linux:9.1:*:*:*:*:*:*:*

part: o version: 9.1 update: *

Vendor	Mandrakesoft (`a8a5c606-4abd-5243-b724-ee5f458a973b`)
Product	Mandrake Linux (`3ee4655e-af5a-585e-8ef9-3aa098e5f6c8`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2007-1352`	not_vulnerable	2026-06-08 04:49:42.165662	Details available Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows remote authenticated users to execute arbitrary code via a long first line in the fonts.dir file, which results in a heap overflow. Published: 2007-04-06T01:00:00.000Z Updated: 2024-08-07T12:50:35.267Z Open on db.gcve.eu Reference links http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=502 http://secunia.com/advisories/24745 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10523 http://secunia.com/advisories/33937 http://secunia.com/advisories/24771	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-2396`	not_vulnerable	2026-06-08 04:48:09.532962	Details available passwd 0.68 does not check the return code for the pam_start function, which has unknown impact and attack vectors that may prevent "safe and proper operation" of PAM. Published: 2005-08-17T04:00:00.000Z Updated: 2024-08-08T01:22:13.939Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10370 http://www.mandriva.com/security/advisories?name=MDKSA-2004:045 https://exchange.xforce.ibmcloud.com/vulnerabilities/16179 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120060	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-2395`	vulnerable	2026-06-08 04:48:09.532441	Details available Memory leak in passwd 0.68 allows local users to cause a denial of service (memory consumption) via a large number of failed read attempts from the password buffer. Published: 2005-08-17T04:00:00.000Z Updated: 2024-08-08T01:22:13.698Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10370 http://www.mandriva.com/security/advisories?name=MDKSA-2004:045 https://exchange.xforce.ibmcloud.com/vulnerabilities/16180 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120060	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-2394`	vulnerable	2026-06-08 04:48:09.531155	Details available Off-by-one error in passwd 0.68 and earlier, when using the --stdin option, causes passwd to use the first 78 characters of a password instead of the first 79, which results in a small reduction of the search space required for brute force attacks. Published: 2005-08-17T04:00:00.000Z Updated: 2024-08-08T01:22:13.912Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10370 http://www.mandriva.com/security/advisories?name=MDKSA-2004:045 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120060 https://exchange.xforce.ibmcloud.com/vulnerabilities/16178	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-2392`	vulnerable	2026-06-08 04:48:09.522448	Details available libuser 0.51.7 allows attackers to cause a denial of service (crash or disk consumption) via unknown attack vectors, related to read failures and other bugs. Published: 2005-08-17T04:00:00.000Z Updated: 2024-08-08T01:22:13.810Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10368 https://exchange.xforce.ibmcloud.com/vulnerabilities/16188 http://www.mandriva.com/security/advisories?name=MDKSA-2004:044 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120168 http://www.redhat.com/support/errata/RHSA-2005-770.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0834`	vulnerable	2026-06-08 04:47:51.593057	Details available Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via (1) modem_run, (2) pppoa2, or (3) pppoa3. Published: 2004-10-20T04:00:00.000Z Updated: 2024-08-08T00:31:47.532Z Open on db.gcve.eu Reference links http://speedtouch.sourceforge.net/index.php?/news.en.html http://www.mail-archive.com/speedtouch%40ml.free.fr/msg06688.html https://exchange.xforce.ibmcloud.com/vulnerabilities/17792 http://sourceforge.net/project/showfiles.php?group_id=32758&package_id=28264&release_id=271734	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0581`	vulnerable	2026-06-08 04:47:50.442993	Details available ksymoops-gznm script in Mandrake Linux 9.1 through 10.0, and Corporate Server 2.1, allows local users to delete arbitrary files via a symlink attack on files in /tmp. Published: 2004-06-23T04:00:00.000Z Updated: 2024-08-08T00:24:26.288Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10516 https://exchange.xforce.ibmcloud.com/vulnerabilities/16392 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:060	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0565`	vulnerable	2026-06-08 04:47:50.353639	Details available Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH bit. Published: 2004-07-08T04:00:00.000Z Updated: 2024-08-08T00:24:25.856Z Open on db.gcve.eu Reference links http://secunia.com/advisories/20163 http://archives.neohapsis.com/archives/linux/owl/2004-q2/0038.html http://www.debian.org/security/2006/dsa-1082 http://www.debian.org/security/2006/dsa-1070 http://secunia.com/advisories/20162	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0535`	vulnerable	2026-06-08 04:47:50.145586	Details available The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources. Published: 2004-06-08T04:00:00.000Z Updated: 2024-08-08T00:24:26.913Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10352 http://www.redhat.com/support/errata/RHSA-2004-413.html http://www.redhat.com/support/errata/RHSA-2004-418.html http://www.kernel.org/pub/linux/kernel/v2.4/testing/patch-2.4.27.log http://lwn.net/Articles/91155/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0497`	vulnerable	2026-06-08 04:47:50.008710	Details available Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4. Published: 2004-07-06T04:00:00.000Z Updated: 2024-08-08T00:17:15.122Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2004-354.html https://exchange.xforce.ibmcloud.com/vulnerabilities/16599 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9867 http://www.redhat.com/support/errata/RHSA-2004-360.html http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:066	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0496`	vulnerable	2026-06-08 04:47:50.004617	Details available Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool. Published: 2004-07-06T04:00:00.000Z Updated: 2024-08-08T00:17:15.052Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/16625 http://www.novell.com/linux/security/advisories/2004_20_kernel.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0461`	vulnerable	2026-06-08 04:47:49.904200	Details available The DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13, when compiled in environments that do not provide the vsnprintf function, uses C include files that define vsnprintf to use the less safe vsprintf function, which can lead to buffer overflow vulnerabilities that enable a denial of service (server crash) and possibly execute arbitrary code. Published: 2004-06-24T04:00:00.000Z Updated: 2024-08-08T00:17:15.144Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/654390 https://exchange.xforce.ibmcloud.com/vulnerabilities/16476 http://www.mandriva.com/security/advisories?name=MDKSA-2004:061 http://secunia.com/advisories/23265 http://marc.info/?l=bugtraq&m=108795911203342&w=2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0460`	vulnerable	2026-06-08 04:47:49.896451	Details available Buffer overflow in the logging capability for the DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via multiple hostname options in (1) DISCOVER, (2) OFFER, (3) REQUEST, (4) ACK, or (5) NAK messages, which can generate a long string when writing to a log file. Published: 2004-06-24T04:00:00.000Z Updated: 2024-08-08T00:17:15.127Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/317350 http://www.securityfocus.com/bid/10590 http://www.mandriva.com/security/advisories?name=MDKSA-2004:061 http://secunia.com/advisories/23265 http://marc.info/?l=bugtraq&m=108795911203342&w=2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2003-1020`	vulnerable	2026-06-08 04:47:23.179080	Details available The format_send_to_gui function in formats.c for irssi before 0.8.9 allows remote IRC users to cause a denial of service (crash). Published: 2003-12-23T05:00:00.000Z Updated: 2024-08-08T02:12:35.400Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/347218 http://www.mandriva.com/security/advisories?name=MDKSA-2003:117 https://exchange.xforce.ibmcloud.com/vulnerabilities/13973	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2003-0434`	vulnerable	2026-06-08 04:47:21.512639	Details available Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink. Published: 2003-06-18T04:00:00.000Z Updated: 2024-08-08T01:50:48.159Z Open on db.gcve.eu Reference links http://secunia.com/advisories/9038 http://www.mandriva.com/security/advisories?name=MDKSA-2003:071 http://www.kb.cert.org/vuls/id/200132 http://lists.grok.org.uk/pipermail/full-disclosure/2003-June/005719.html http://www.redhat.com/support/errata/RHSA-2003-196.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.