Redhat

Enterprise Linux Desktop

1928 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2012-3991

  • EPSS 1.42%
  • Veröffentlicht 10.10.2012 17:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict JSAPI access to the GetProperty function, which allows remote attackers to by...

2.1

CVE-2012-4453

  • EPSS 0.04%
  • Veröffentlicht 09.10.2012 23:55:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other products, creates initramfs images with world-readable permissions, which might allow local users to obtain sensitive information.

6.5

CVE-2012-3489

  • EPSS 1.04%
  • Veröffentlicht 03.10.2012 21:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The xml_parse function in the libxml2 support in the core server component in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 allows remote authenticated users to determine the existence of arbitrary files or U...

5

CVE-2012-3972

  • EPSS 4.55%
  • Veröffentlicht 29.08.2012 10:56:41
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The format-number functionality in the XSLT implementation in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to obtain sensit...

4.3

CVE-2012-3976

  • EPSS 0.78%
  • Veröffentlicht 29.08.2012 10:56:41
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, and SeaMonkey before 2.12 do not properly handle onLocationChange events during navigation between different https sites, which allows remote attackers to spoof the X.509 certificate inform...

10

CVE-2012-1974

  • EPSS 3.31%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the gfxTextRun::CanBreakLineBefore function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers...

10

CVE-2012-1975

  • EPSS 3.31%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the PresShell::CompleteMove function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to exe...

10

CVE-2012-1976

  • EPSS 3.17%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the nsHTMLSelectElement::SubmitNamesValues function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote a...

10

CVE-2012-3956

  • EPSS 2.31%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the MediaStreamGraphThreadRunnable::Run function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote atta...

10

CVE-2012-3957

  • EPSS 2.96%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in the nsBlockFrame::MarkLineDirty function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to e...