Redhat

Enterprise Linux Desktop

1928 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2016-8635

  • EPSS 0.44%
  • Published 01.08.2018 13:29:00
  • Last modified 21.11.2024 02:59:43

It was found that Diffie Hellman Client key exchange handling in NSS 3.21.x was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired g...

8.1

CVE-2016-9573

Exploit
  • EPSS 1.41%
  • Published 01.08.2018 06:29:00
  • Last modified 21.11.2024 03:01:25

An out-of-bounds read vulnerability was found in OpenJPEG 2.1.2, in the j2k_to_image tool. Converting a specially crafted JPEG2000 file to another format could cause the application to crash or, potentially, disclose some data from the heap.

6.8

CVE-2016-8626

  • EPSS 2.87%
  • Published 31.07.2018 19:29:00
  • Last modified 21.11.2024 02:59:42

A flaw was found in Red Hat Ceph before 0.94.9-8. The way Ceph Object Gateway handles POST object requests permits an authenticated attacker to launch a denial of service attack by sending null or specially crafted POST object requests.

5.5

CVE-2018-10883

  • EPSS 0.04%
  • Published 30.07.2018 16:29:00
  • Last modified 21.11.2024 03:42:13

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.

7.8

CVE-2017-7518

  • EPSS 0.09%
  • Published 30.07.2018 15:29:00
  • Last modified 21.11.2024 03:32:03

A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. A user/pr...

6.5

CVE-2018-14679

  • EPSS 1.11%
  • Published 28.07.2018 23:29:00
  • Last modified 21.11.2024 03:49:34

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).

6.5

CVE-2018-14680

  • EPSS 1.24%
  • Published 28.07.2018 23:29:00
  • Last modified 21.11.2024 03:49:34

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames.

8.8

CVE-2018-14681

  • EPSS 1.6%
  • Published 28.07.2018 23:29:00
  • Last modified 21.11.2024 03:49:34

An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite.

8.8

CVE-2018-14682

  • EPSS 1.6%
  • Published 28.07.2018 23:29:00
  • Last modified 21.11.2024 03:49:34

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression.

7.5

CVE-2016-9578

  • EPSS 3.47%
  • Published 27.07.2018 21:29:00
  • Last modified 21.11.2024 03:01:25

A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An attacker able to connect to the SPICE server could send crafted messages which would cause the process to crash.