Redhat

Openshift Container Platform

321 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.5%
  • Veröffentlicht 28.05.2026 07:25:27
  • Zuletzt bearbeitet 03.07.2026 13:17:25

A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic domain controllers that use the "check password script" feature. If this script is configured with the %u substitution character, the client...

  • EPSS 0.86%
  • Veröffentlicht 27.05.2026 12:28:44
  • Zuletzt bearbeitet 03.07.2026 13:16:58

A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users with underlying filesystem write permissions may create or delete reparse point m...

  • EPSS 0.94%
  • Veröffentlicht 27.05.2026 12:09:32
  • Zuletzt bearbeitet 02.07.2026 20:17:02

A flaw was found in Samba’s vfs_worm module. The module is intended to provide write-once, read-many (WORM) protections by preventing modification of files after a configurable grace period. Due to insufficient validation during rename operations, an...

  • EPSS 0.26%
  • Veröffentlicht 27.05.2026 10:02:21
  • Zuletzt bearbeitet 03.07.2026 13:17:10

A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without prop...

Exploit
  • EPSS 0.21%
  • Veröffentlicht 26.05.2026 16:16:07
  • Zuletzt bearbeitet 09.07.2026 16:16:41

A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled compressed data within `.solv` files due to insufficient input validation. An attacker can provide a specially crafted `.solv` file, which, ...

Medienbericht
  • EPSS 12.8%
  • Veröffentlicht 26.05.2026 13:56:32
  • Zuletzt bearbeitet 30.06.2026 03:20:33

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remot...

  • EPSS 0.29%
  • Veröffentlicht 20.05.2026 23:34:56
  • Zuletzt bearbeitet 27.06.2026 00:16:49

A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted `.solv` file containing negative size values in the `repo_add_solv` function. This leads to an undersized memory allocation and a ...

  • EPSS 0.4%
  • Veröffentlicht 20.05.2026 23:16:36
  • Zuletzt bearbeitet 29.06.2026 17:16:30

A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser when processing specially crafted Debian repository metadata. An attacker could exploit this by providing malicious SHA384 or SHA51...

Medienbericht
  • EPSS 1.34%
  • Veröffentlicht 18.05.2026 12:44:45
  • Zuletzt bearbeitet 08.07.2026 13:16:42

A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security (DTLS) packet reordering logic. The comparator function, responsible for ordering DTLS packets by sequence numbers, did not correctly handle...

Medienbericht
  • EPSS 1.05%
  • Veröffentlicht 07.05.2026 12:16:17
  • Zuletzt bearbeitet 08.07.2026 13:16:42

A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted...