Redhat

Enterprise Linux

1709 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.9

CVE-2024-45618

  • EPSS 0.05%
  • Veröffentlicht 03.09.2024 22:15:05
  • Zuletzt bearbeitet 13.09.2024 16:30:27

A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient or missing checking of return values of functions ...

4.3

CVE-2024-45619

  • EPSS 0.07%
  • Veröffentlicht 03.09.2024 22:15:05
  • Zuletzt bearbeitet 23.09.2024 23:26:14

A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. When buffers are partially fi...

3.9

CVE-2024-45620

  • EPSS 0.05%
  • Veröffentlicht 03.09.2024 22:15:05
  • Zuletzt bearbeitet 19.09.2024 19:21:38

A vulnerability was found in the pkcs15-init tool in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. When buffers are partially filled with data, initialized...

3.9

CVE-2024-45615

  • EPSS 0.01%
  • Veröffentlicht 03.09.2024 22:15:04
  • Zuletzt bearbeitet 13.09.2024 19:21:15

A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. The problem is missing initialization of variables expected to be initialized (as arguments to other functions, etc.).

3.9

CVE-2024-45616

  • EPSS 0.01%
  • Veröffentlicht 03.09.2024 22:15:04
  • Zuletzt bearbeitet 13.09.2024 19:21:11

A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. The following problems were...

7.5

CVE-2024-44070

  • EPSS 0.13%
  • Veröffentlicht 19.08.2024 02:15:04
  • Zuletzt bearbeitet 30.08.2024 16:19:49

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

7.5

CVE-2024-7006

  • EPSS 0.13%
  • Veröffentlicht 12.08.2024 13:38:40
  • Zuletzt bearbeitet 21.11.2024 09:50:44

A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentatio...

4.8

CVE-2024-43168

  • EPSS 0.05%
  • Veröffentlicht 12.08.2024 13:38:36
  • Zuletzt bearbeitet 21.10.2024 12:15:04

DISPUTE NOTE: this issue does not pose a security risk as it (according to analysis by the original software developer, NLnet Labs) falls within the expected functionality and security controls of the application. Red Hat has made a claim that there ...

2.8

CVE-2024-43167

  • EPSS 0.03%
  • Veröffentlicht 12.08.2024 13:38:35
  • Zuletzt bearbeitet 21.11.2024 09:35:06

DISPUTE NOTE: this issue does not pose a security risk as it (according to analysis by the original software developer, NLnet Labs) falls within the expected functionality and security controls of the application. Red Hat has made a claim that there ...

7.7

CVE-2024-3056

  • EPSS 0.47%
  • Veröffentlicht 02.08.2024 21:16:30
  • Zuletzt bearbeitet 27.12.2024 16:15:24

A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the same IPC with at least one other container, can create a large number of IPC resources in /dev/shm. The malicious ...