Redhat

Enterprise Linux

1709 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2019-6470

Exploit
  • EPSS 0.27%
  • Veröffentlicht 01.11.2019 23:15:10
  • Zuletzt bearbeitet 11.04.2025 14:55:14

There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also a bug in dhcpd relating to the use of this function per its documentation, but the bug in the library function...

5.5

CVE-2013-3718

  • EPSS 0.52%
  • Veröffentlicht 01.11.2019 13:15:11
  • Zuletzt bearbeitet 21.11.2024 01:54:10

evince is missing a check on number of pages which can lead to a segmentation fault

8.1

CVE-2013-4751

  • EPSS 0.6%
  • Veröffentlicht 01.11.2019 13:15:11
  • Zuletzt bearbeitet 21.11.2024 01:56:18

php-symfony2-Validator has loss of information during serialization

7.5

CVE-2019-5010

Exploit
  • EPSS 3.67%
  • Veröffentlicht 31.10.2019 21:15:13
  • Zuletzt bearbeitet 21.11.2024 04:44:10

An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can ini...

9.8

CVE-2019-11043

Warnung Exploit
  • EPSS 94.11%
  • Veröffentlicht 28.10.2019 15:15:13
  • Zuletzt bearbeitet 14.02.2025 16:43:36

In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the p...

7.5

CVE-2019-17596

Exploit
  • EPSS 2.34%
  • Veröffentlicht 24.10.2019 22:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:36

Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a client to a server that verifies client certificates.

9

CVE-2019-14287

Exploit
  • EPSS 86.13%
  • Veröffentlicht 17.10.2019 18:15:12
  • Zuletzt bearbeitet 21.11.2024 04:26:22

In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !r...

9.1

CVE-2019-17631

  • EPSS 0.5%
  • Veröffentlicht 17.10.2019 18:15:12
  • Zuletzt bearbeitet 21.11.2024 04:32:39

From Eclipse OpenJ9 0.15 to 0.16, access to diagnostic operations such as causing a GC or creating a diagnostic file are permitted without any privilege checks.

4.3

CVE-2019-2992

  • EPSS 0.82%
  • Veröffentlicht 16.10.2019 18:15:33
  • Zuletzt bearbeitet 21.11.2024 04:41:56

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticate...

4.2

CVE-2019-2996

  • EPSS 2.89%
  • Veröffentlicht 16.10.2019 18:15:33
  • Zuletzt bearbeitet 21.11.2024 04:41:57

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Deployment). The supported version that is affected is Java SE: 8u221; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker wi...