Redhat

Enterprise Linux Server Aus

1059 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2014-8964

  • EPSS 2.06%
  • Veröffentlicht 16.12.2014 18:59:10
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Heap-based buffer overflow in PCRE 8.36 and earlier allows remote attackers to cause a denial of service (crash) or have other unspecified impact via a crafted regular expression, related to an assertion that allows zero repeats.

7.5

CVE-2014-7840

  • EPSS 2.46%
  • Veröffentlicht 12.12.2014 15:59:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The host_from_stream_offset function in arch_init.c in QEMU, when loading RAM during migration, allows remote attackers to execute arbitrary code via a crafted (1) offset or (2) length value in savevm data.

9.4

CVE-2014-8567

  • EPSS 3.6%
  • Veröffentlicht 14.11.2014 15:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The mod_auth_mellon module before 0.8.1 allows remote attackers to cause a denial of service (Apache HTTP server crash) via a crafted logout request that triggers a read of uninitialized data.

5

CVE-2014-7815

  • EPSS 3.85%
  • Veröffentlicht 14.11.2014 15:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value.

2.1

CVE-2014-3615

  • EPSS 0.09%
  • Veröffentlicht 01.11.2014 23:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution.

5

CVE-2014-3581

  • EPSS 4.81%
  • Veröffentlicht 10.10.2014 10:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The cache_merge_headers_out function in modules/cache/cache_util.c in the mod_cache module in the Apache HTTP Server before 2.4.11 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty HTTP...

7.5

CVE-2014-6051

  • EPSS 7.98%
  • Veröffentlicht 30.09.2014 16:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via an advertisement for a large screen size, which...

6.5

CVE-2014-6055

  • EPSS 11.16%
  • Veröffentlicht 30.09.2014 16:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple stack-based buffer overflows in the File Transfer feature in rfbserver.c in LibVNCServer 0.9.9 and earlier allow remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a (1) long file or (2) d...

10

CVE-2014-7169

Warnung Exploit
  • EPSS 89.06%
  • Veröffentlicht 25.09.2014 01:55:04
  • Zuletzt bearbeitet 22.04.2026 14:32:42

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted enviro...

10

CVE-2014-6271

Warnung Exploit
  • EPSS 94.22%
  • Veröffentlicht 24.09.2014 18:48:04
  • Zuletzt bearbeitet 22.04.2026 16:07:22

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceComman...