Redhat

Enterprise Linux Server Tus

765 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2018-16865

Exploit
  • EPSS 2.07%
  • Veröffentlicht 11.01.2019 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:53:28

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remo...

7.8

CVE-2018-16864

Exploit
  • EPSS 0.15%
  • Veröffentlicht 11.01.2019 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:53:28

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash s...

3.3

CVE-2018-16866

Exploit
  • EPSS 0.11%
  • Veröffentlicht 11.01.2019 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:53:28

An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable.

6.7

CVE-2019-6133

  • EPSS 0.01%
  • Veröffentlicht 11.01.2019 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:46:00

In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore authorization decisions are improperly cached. This is related to lack of uid checking in polkitbackend/polkitbackendin...

5.3

CVE-2018-20685

  • EPSS 3.74%
  • Veröffentlicht 10.01.2019 21:29:00
  • Zuletzt bearbeitet 21.11.2024 04:01:59

In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.

6.5

CVE-2018-20662

  • EPSS 0.46%
  • Veröffentlicht 03.01.2019 13:29:00
  • Zuletzt bearbeitet 21.11.2024 04:01:57

In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is m...

6.5

CVE-2018-20650

  • EPSS 0.36%
  • Veröffentlicht 01.01.2019 16:29:00
  • Zuletzt bearbeitet 21.11.2024 04:01:56

A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach.

9.8

CVE-2018-15127

  • EPSS 15.62%
  • Veröffentlicht 19.12.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:21

LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can result remote code execution

5.5

CVE-2018-18397

Exploit
  • EPSS 0.07%
  • Veröffentlicht 12.12.2018 10:29:00
  • Zuletzt bearbeitet 21.11.2024 03:55:52

The userfaultfd implementation in the Linux kernel before 4.19.7 mishandles access control for certain UFFDIO_ ioctl calls, as demonstrated by allowing local users to write data into holes in a tmpfs file (if the user has read-only access to that fil...

8.8

CVE-2018-18356

  • EPSS 2.61%
  • Veröffentlicht 11.12.2018 16:29:01
  • Zuletzt bearbeitet 21.11.2024 03:55:46

An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.