Redhat

Enterprise Linux Server Aus

1054 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2018-18559

Exploit
  • EPSS 1.14%
  • Published 22.10.2018 16:29:00
  • Last modified 21.11.2024 03:56:09

In the Linux kernel through 4.19, a use-after-free can occur due to a race condition between fanout_add from setsockopt and bind on an AF_PACKET socket. This issue exists because of the 15fe076edea787807a7cdc168df832544b58eba6 incomplete fix for a ra...

8.6

CVE-2018-18284

Exploit
  • EPSS 0.22%
  • Published 19.10.2018 22:29:01
  • Last modified 21.11.2024 03:55:38

Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.

9.8

CVE-2018-5188

  • EPSS 1.34%
  • Published 18.10.2018 13:29:07
  • Last modified 21.11.2024 04:08:18

Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ESR 52.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerabi...

7

CVE-2018-12385

  • EPSS 0.06%
  • Published 18.10.2018 13:29:06
  • Last modified 21.11.2024 03:45:06

A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination with another vulnerability allowing an attacker to w...

8.1

CVE-2018-12386

Exploit
  • EPSS 39.1%
  • Published 18.10.2018 13:29:06
  • Last modified 21.11.2024 03:45:06

A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This leads to remote code execution inside the sandboxed content process when triggered. This vulnerability affects Firefox ESR...

9.1

CVE-2018-12387

Exploit
  • EPSS 34.22%
  • Published 18.10.2018 13:29:06
  • Last modified 21.11.2024 03:45:07

A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack pointer being off by 8 bytes after a bailout. This leaks a memory address to the calling function which can be used as pa...

9.8

CVE-2018-5156

  • EPSS 3.15%
  • Published 18.10.2018 13:29:06
  • Last modified 21.11.2024 04:08:13

A vulnerability can occur when capturing a media stream when the media source type is changed as the capture is occurring. This can result in stream data being cast to the wrong type causing a potentially exploitable crash. This vulnerability affects...

9.8

CVE-2018-12378

  • EPSS 3.11%
  • Published 18.10.2018 13:29:05
  • Last modified 21.11.2024 03:45:05

A use-after-free vulnerability can occur when an IndexedDB index is deleted while still in use by JavaScript code that is providing payload values to be stored. This results in a potentially exploitable crash. This vulnerability affects Firefox < 62,...

7.8

CVE-2018-12379

  • EPSS 0.1%
  • Published 18.10.2018 13:29:05
  • Last modified 21.11.2024 03:45:05

When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running the Mozilla Updater manually on the local system wit...

5.5

CVE-2018-12383

Exploit
  • EPSS 0.08%
  • Published 18.10.2018 13:29:05
  • Last modified 21.11.2024 03:45:06

If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was not deleted when the data was copied to a new format star...