Redhat

Enterprise Linux Hpc Node

146 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2015-2301

Exploit
  • EPSS 17.29%
  • Published 30.03.2015 10:59:10
  • Last modified 12.04.2025 10:46:40

Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP before 5.5.22 and 5.6.x before 5.6.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an a...

4.4

CVE-2014-8169

  • EPSS 0.11%
  • Published 18.03.2015 16:59:00
  • Last modified 12.04.2025 10:46:40

automount 5.0.8, when a program map uses certain interpreted languages, uses the calling user's USER and HOME environment variable values instead of the values for the user used to run the mapped program, which allows local users to gain privileges v...

5

CVE-2014-9675

Exploit
  • EPSS 2.11%
  • Published 08.02.2015 11:59:36
  • Last modified 12.04.2025 10:46:40

bdf/bdflib.c in FreeType before 2.5.4 identifies property names by only verifying that an initial substring is present, which allows remote attackers to discover heap pointer values and bypass the ASLR protection mechanism via a crafted BDF font.

7.5

CVE-2014-9674

Exploit
  • EPSS 5.12%
  • Published 08.02.2015 11:59:35
  • Last modified 12.04.2025 10:46:40

The Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.5.4 proceeds with adding to length values without validating the original values, which allows remote attackers to cause a denial of service (integer overflow and heap-based bu...

6.8

CVE-2014-9673

Exploit
  • EPSS 4.22%
  • Published 08.02.2015 11:59:34
  • Last modified 12.04.2025 10:46:40

Integer signedness error in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.5.4 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted Mac fo...

4.3

CVE-2014-9671

Exploit
  • EPSS 3.22%
  • Published 08.02.2015 11:59:32
  • Last modified 12.04.2025 10:46:40

Off-by-one error in the pcf_get_properties function in pcf/pcfread.c in FreeType before 2.5.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PCF file with a 0xffffffff size value th...

4.3

CVE-2014-9670

Exploit
  • EPSS 5.05%
  • Published 08.02.2015 11:59:31
  • Last modified 12.04.2025 10:46:40

Multiple integer signedness errors in the pcf_get_encodings function in pcf/pcfread.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service (integer overflow, NULL pointer dereference, and application crash) via a crafted PCF f...

6.8

CVE-2014-9669

Exploit
  • EPSS 2.44%
  • Published 08.02.2015 11:59:30
  • Last modified 12.04.2025 10:46:40

Multiple integer overflows in sfnt/ttcmap.c in FreeType before 2.5.4 allow remote attackers to cause a denial of service (out-of-bounds read or memory corruption) or possibly have unspecified other impact via a crafted cmap SFNT table.

6.8

CVE-2014-9667

Exploit
  • EPSS 2.03%
  • Published 08.02.2015 11:59:29
  • Last modified 12.04.2025 10:46:40

sfnt/ttload.c in FreeType before 2.5.4 proceeds with offset+length calculations without restricting the values, which allows remote attackers to cause a denial of service (integer overflow and out-of-bounds read) or possibly have unspecified other im...

6.8

CVE-2014-9666

Exploit
  • EPSS 1.84%
  • Published 08.02.2015 11:59:28
  • Last modified 12.04.2025 10:46:40

The tt_sbit_decoder_init function in sfnt/ttsbit.c in FreeType before 2.5.4 proceeds with a count-to-size association without restricting the count value, which allows remote attackers to cause a denial of service (integer overflow and out-of-bounds ...