CVE-2025-6021
- EPSS 0.58%
- Veröffentlicht 12.06.2025 12:49:16
- Zuletzt bearbeitet 29.11.2025 01:16:03
A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.
CVE-2024-9676
- EPSS 1.33%
- Veröffentlicht 15.10.2024 16:15:06
- Zuletzt bearbeitet 03.04.2025 02:15:19
A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image us...
CVE-2024-1725
- EPSS 0.14%
- Veröffentlicht 07.03.2024 20:15:50
- Zuletzt bearbeitet 26.03.2025 05:15:40
A flaw was found in the kubevirt-csi component of OpenShift Virtualization's Hosted Control Plane (HCP). This issue could allow an authenticated attacker to gain access to the root HCP worker node's volume by creating a custom Persistent Volume that ...
CVE-2023-5625
- EPSS 0.08%
- Veröffentlicht 01.11.2023 14:15:38
- Zuletzt bearbeitet 06.12.2024 11:15:07
A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products.
CVE-2022-4318
- EPSS 0.04%
- Veröffentlicht 25.09.2023 20:15:10
- Zuletzt bearbeitet 21.11.2024 07:35:01
A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.
CVE-2023-3089
- EPSS 0.05%
- Veröffentlicht 05.07.2023 13:15:09
- Zuletzt bearbeitet 21.11.2024 08:16:25
A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated.