Redhat

Enterprise Linux Server Tus

766 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2018-2952

  • EPSS 0.11%
  • Veröffentlicht 18.07.2018 13:29:02
  • Zuletzt bearbeitet 21.11.2024 04:04:49

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult t...

3.5

CVE-2018-2767

  • EPSS 0.42%
  • Veröffentlicht 18.07.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 04:04:24

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encryption). Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior and 5.7.22 and prior. Difficult to exploit vulnerability allows low ...

9.8

CVE-2018-14354

  • EPSS 3.5%
  • Veröffentlicht 17.07.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:48:53

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with a manual subscription or unsubscripti...

9.8

CVE-2018-14357

  • EPSS 2.98%
  • Veröffentlicht 17.07.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:48:54

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with an automatic subscription.

9.8

CVE-2018-14362

  • EPSS 2.2%
  • Veröffentlicht 17.07.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:48:55

An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not forbid characters that may have unsafe interaction with message-cache pathnames, as demonstrated by a '/' character.

5.6

CVE-2018-3693

  • EPSS 0.92%
  • Veröffentlicht 10.07.2018 21:29:01
  • Zuletzt bearbeitet 21.11.2024 04:05:53

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis.

7.8

CVE-2018-13405

Exploit
  • EPSS 0.15%
  • Veröffentlicht 06.07.2018 14:29:01
  • Zuletzt bearbeitet 21.11.2024 03:47:02

The inode_init_owner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a memb...

7.1

CVE-2018-10850

  • EPSS 2.05%
  • Veröffentlicht 13.06.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:08

389-ds-base before versions 1.4.0.10, 1.3.8.3 is vulnerable to a race condition in the way 389-ds-base handles persistent search, resulting in a crash if the server is under load. An anonymous attacker could use this flaw to trigger a denial of servi...

8.2

CVE-2018-11806

  • EPSS 0.05%
  • Veröffentlicht 13.06.2018 16:29:01
  • Zuletzt bearbeitet 21.11.2024 03:44:04

m_cat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams.

8.1

CVE-2018-5178

  • EPSS 18.92%
  • Veröffentlicht 11.06.2018 21:29:16
  • Zuletzt bearbeitet 25.11.2025 17:50:16

A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable legacy extension in order to occur. This vulnerability affec...