Redhat

Enterprise Linux Server Tus

765 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.9

CVE-2014-9529

  • EPSS 0.11%
  • Published 09.01.2015 21:59:00
  • Last modified 12.04.2025 10:46:40

Race condition in the key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through 3.18.2 allows local users to cause a denial of service (memory corruption or panic) or possibly have unspecified other impact via keyctl commands that...

3.5

CVE-2014-5353

  • EPSS 0.47%
  • Published 16.12.2014 23:59:00
  • Last modified 12.04.2025 10:46:40

The krb5_ldap_get_password_policy_from_dn function in plugins/kdb/ldap/libkdb_ldap/ldap_pwd_policy.c in MIT Kerberos 5 (aka krb5) before 1.13.1, when the KDC uses LDAP, allows remote authenticated users to cause a denial of service (daemon crash) via...

5

CVE-2014-8964

  • EPSS 2.09%
  • Published 16.12.2014 18:59:10
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in PCRE 8.36 and earlier allows remote attackers to cause a denial of service (crash) or have other unspecified impact via a crafted regular expression, related to an assertion that allows zero repeats.

9.4

CVE-2014-8567

  • EPSS 4.43%
  • Published 14.11.2014 15:59:02
  • Last modified 12.04.2025 10:46:40

The mod_auth_mellon module before 0.8.1 allows remote attackers to cause a denial of service (Apache HTTP server crash) via a crafted logout request that triggers a read of uninitialized data.

2.1

CVE-2014-3615

  • EPSS 0.09%
  • Published 01.11.2014 23:55:09
  • Last modified 12.04.2025 10:46:40

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution.

5

CVE-2014-3581

  • EPSS 3.87%
  • Published 10.10.2014 10:55:07
  • Last modified 12.04.2025 10:46:40

The cache_merge_headers_out function in modules/cache/cache_util.c in the mod_cache module in the Apache HTTP Server before 2.4.11 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty HTTP...

10

CVE-2014-7169

Warning Exploit
  • EPSS 90.11%
  • Published 25.09.2014 01:55:04
  • Last modified 12.04.2025 10:46:40

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted enviro...

10

CVE-2014-6271

Warning Exploit
  • EPSS 94.22%
  • Published 24.09.2014 18:48:04
  • Last modified 12.04.2025 10:46:40

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceComman...

6.2

CVE-2014-5045

Exploit
  • EPSS 0.03%
  • Published 01.08.2014 11:13:09
  • Last modified 12.04.2025 10:46:40

The mountpoint_last function in fs/namei.c in the Linux kernel before 3.15.8 does not properly maintain a certain reference count during attempts to use the umount system call in conjunction with a symlink, which allows local users to cause a denial ...

7.1

CVE-2014-5077

  • EPSS 14.7%
  • Published 01.08.2014 11:13:09
  • Last modified 12.04.2025 10:46:40

The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by starting to establish an assoc...