Redhat

Enterprise Linux Server Aus

1059 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2017-10053

  • EPSS 0.73%
  • Veröffentlicht 08.08.2017 15:29:01
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerabi...

7.5

CVE-2015-7691

  • EPSS 13.6%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to a...

7.5

CVE-2015-7692

  • EPSS 14.77%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.

7.5

CVE-2015-7701

  • EPSS 14.33%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (memory consumption).

6.5

CVE-2015-7702

  • EPSS 2.1%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.

7.5

CVE-2015-7704

  • EPSS 13.94%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted "KOD" messages.

5.9

CVE-2015-7852

  • EPSS 3.19%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted mode 6 response packets.

7.5

CVE-2017-10664

  • EPSS 5.12%
  • Veröffentlicht 02.08.2017 19:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

qemu-nbd in QEMU (aka Quick Emulator) does not ignore SIGPIPE, which allows remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt.

7.5

CVE-2016-8743

  • EPSS 10.64%
  • Veröffentlicht 27.07.2017 21:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Apache HTTP Server, in all releases prior to 2.2.32 and 2.4.25, was liberal in the whitespace accepted from requests and sent in response lines and headers. Accepting these different behaviors represented a security concern when httpd participates in...

5.5

CVE-2015-3149

  • EPSS 0.07%
  • Veröffentlicht 25.07.2017 18:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The Hotspot component in OpenJDK8 as packaged in Red Hat Enterprise Linux 6 and 7 allows local users to write to arbitrary files via a symlink attack.