Redhat

Enterprise Linux Server Supplementary Eus

83 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2016-1666

  • EPSS 0.78%
  • Veröffentlicht 14.05.2016 21:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661.94 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

6.5

CVE-2016-1665

  • EPSS 1.6%
  • Veröffentlicht 14.05.2016 21:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The JSGenericLowering class in compiler/js-generic-lowering.cc in Google V8, as used in Google Chrome before 50.0.2661.94, mishandles comparison operators, which allows remote attackers to obtain sensitive information via crafted JavaScript code.

4.3

CVE-2016-1664

  • EPSS 1.06%
  • Veröffentlicht 14.05.2016 21:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The HistoryController::UpdateForCommit function in content/renderer/history_controller.cc in Google Chrome before 50.0.2661.94 mishandles the interaction between subframe forward navigations and other forward navigations, which allows remote attacker...

8.8

CVE-2016-1663

  • EPSS 1.42%
  • Veröffentlicht 14.05.2016 21:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The SerializedScriptValue::transferArrayBuffers function in WebKit/Source/bindings/core/v8/SerializedScriptValue.cpp in the V8 bindings in Blink, as used in Google Chrome before 50.0.2661.94, mishandles certain array-buffer data structures, which all...

10

CVE-2016-1662

  • EPSS 15.29%
  • Veröffentlicht 14.05.2016 21:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

extensions/renderer/gc_callback.cc in Google Chrome before 50.0.2661.94 does not prevent fallback execution once the Garbage Collection callback has started, which allows remote attackers to cause a denial of service (use-after-free) or possibly have...

8.3

CVE-2016-1661

  • EPSS 0.96%
  • Veröffentlicht 14.05.2016 21:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Blink, as used in Google Chrome before 50.0.2661.94, does not ensure that frames satisfy a check for the same renderer process in addition to a Same Origin Policy check, which allows remote attackers to cause a denial of service (memory corruption) o...

8.8

CVE-2016-1660

  • EPSS 1.24%
  • Veröffentlicht 14.05.2016 21:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Blink, as used in Google Chrome before 50.0.2661.94, mishandles assertions in the WTF::BitArray and WTF::double_conversion::Vector classes, which allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified ...

5.5

CVE-2016-3718

Warnung
  • EPSS 79.25%
  • Veröffentlicht 05.05.2016 18:59:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted image.

7.1

CVE-2016-3717

  • EPSS 26.22%
  • Veröffentlicht 05.05.2016 18:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The LABEL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to read arbitrary files via a crafted image.

4.3

CVE-2016-3716

Exploit
  • EPSS 17.35%
  • Veröffentlicht 05.05.2016 18:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to move arbitrary files via a crafted image.