Redhat

Enterprise Linux Server Aus

1056 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2014-7815

  • EPSS 5.23%
  • Veröffentlicht 14.11.2014 15:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value.

2.1

CVE-2014-3615

  • EPSS 0.09%
  • Veröffentlicht 01.11.2014 23:55:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution.

5

CVE-2014-3581

  • EPSS 4.81%
  • Veröffentlicht 10.10.2014 10:55:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The cache_merge_headers_out function in modules/cache/cache_util.c in the mod_cache module in the Apache HTTP Server before 2.4.11 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty HTTP...

7.5

CVE-2014-6051

  • EPSS 6.61%
  • Veröffentlicht 30.09.2014 16:55:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via an advertisement for a large screen size, which...

6.5

CVE-2014-6055

  • EPSS 11.16%
  • Veröffentlicht 30.09.2014 16:55:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple stack-based buffer overflows in the File Transfer feature in rfbserver.c in LibVNCServer 0.9.9 and earlier allow remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a (1) long file or (2) d...

10

CVE-2014-7169

Warnung Exploit
  • EPSS 90.11%
  • Veröffentlicht 25.09.2014 01:55:04
  • Zuletzt bearbeitet 22.10.2025 01:16:04

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted enviro...

10

CVE-2014-6271

Warnung Exploit
  • EPSS 94.14%
  • Veröffentlicht 24.09.2014 18:48:04
  • Zuletzt bearbeitet 22.10.2025 01:15:57

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceComman...

6.2

CVE-2014-5045

Exploit
  • EPSS 0.03%
  • Veröffentlicht 01.08.2014 11:13:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The mountpoint_last function in fs/namei.c in the Linux kernel before 3.15.8 does not properly maintain a certain reference count during attempts to use the umount system call in conjunction with a symlink, which allows local users to cause a denial ...

7.1

CVE-2014-5077

  • EPSS 12.78%
  • Veröffentlicht 01.08.2014 11:13:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by starting to establish an assoc...

5

CVE-2014-4341

  • EPSS 14.45%
  • Veröffentlicht 20.07.2014 11:12:50
  • Zuletzt bearbeitet 12.04.2025 10:46:40

MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) by injecting invalid tokens into a GSSAPI application session.