Redhat

Enterprise Linux For Arm 64

45 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2023-46846

  • EPSS 9.62%
  • Veröffentlicht 03.11.2023 08:15:07
  • Zuletzt bearbeitet 18.12.2024 01:15:06

SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Response smuggling past firewall and frontend security systems.

7.8

CVE-2023-3972

  • EPSS 0.01%
  • Veröffentlicht 01.11.2023 16:15:08
  • Zuletzt bearbeitet 21.11.2024 08:18:25

A vulnerability was found in insights-client. This security issue occurs because of insecure file operations or unsafe handling of temporary files and directories that lead to local privilege escalation. Before the insights-client has been registered...

7.8

CVE-2023-5633

  • EPSS 0.02%
  • Veröffentlicht 23.10.2023 22:15:09
  • Zuletzt bearbeitet 25.02.2026 19:29:20

The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way memory objects were handled when they were being used to store a surface. When running inside a VMware guest with 3D acce...

7.8

CVE-2023-4911

Warnung Exploit
  • EPSS 57.7%
  • Veröffentlicht 03.10.2023 18:15:10
  • Zuletzt bearbeitet 13.02.2026 21:25:07

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launch...

4.7

CVE-2023-4732

  • EPSS 0.01%
  • Veröffentlicht 03.10.2023 17:15:09
  • Zuletzt bearbeitet 21.11.2024 08:35:51

A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user privilege may cause a denial of service problem due to a BUG statement referencing pmd_t x.

7.5

CVE-2023-5157

  • EPSS 0.44%
  • Veröffentlicht 27.09.2023 15:19:41
  • Zuletzt bearbeitet 01.10.2025 15:15:41

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service.

5.9

CVE-2023-4806

  • EPSS 1.9%
  • Veröffentlicht 18.09.2023 17:15:55
  • Zuletzt bearbeitet 26.09.2025 12:15:32

A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethos...

6.5

CVE-2023-4527

Exploit
  • EPSS 0.11%
  • Veröffentlicht 18.09.2023 17:15:55
  • Zuletzt bearbeitet 24.06.2025 17:31:20

A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured with no-aaaa mode via /etc/resolv.conf, a DNS response via TCP larger than 2048 bytes can potentially disclose stack con...

5.5

CVE-2023-4042

  • EPSS 0.04%
  • Veröffentlicht 23.08.2023 13:15:07
  • Zuletzt bearbeitet 21.11.2024 08:34:17

A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed to be. This issue only affects the ghostscript package as shipped with Red Hat Enterprise Linux 8.

7.8

CVE-2023-3899

  • EPSS 0.03%
  • Veröffentlicht 23.08.2023 11:15:07
  • Zuletzt bearbeitet 21.11.2024 08:18:19

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the reg...