Redhat

Enterprise Linux

1709 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2019-6470

Exploit
  • EPSS 0.27%
  • Published 01.11.2019 23:15:10
  • Last modified 11.04.2025 14:55:14

There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also a bug in dhcpd relating to the use of this function per its documentation, but the bug in the library function...

5.5

CVE-2013-3718

  • EPSS 0.52%
  • Published 01.11.2019 13:15:11
  • Last modified 21.11.2024 01:54:10

evince is missing a check on number of pages which can lead to a segmentation fault

8.1

CVE-2013-4751

  • EPSS 0.6%
  • Published 01.11.2019 13:15:11
  • Last modified 21.11.2024 01:56:18

php-symfony2-Validator has loss of information during serialization

7.5

CVE-2019-5010

Exploit
  • EPSS 3.67%
  • Published 31.10.2019 21:15:13
  • Last modified 21.11.2024 04:44:10

An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can ini...

9.8

CVE-2019-11043

Warning Exploit
  • EPSS 94.11%
  • Published 28.10.2019 15:15:13
  • Last modified 14.02.2025 16:43:36

In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the p...

7.5

CVE-2019-17596

Exploit
  • EPSS 2.34%
  • Published 24.10.2019 22:15:10
  • Last modified 21.11.2024 04:32:36

Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a client to a server that verifies client certificates.

9

CVE-2019-14287

Exploit
  • EPSS 86.13%
  • Published 17.10.2019 18:15:12
  • Last modified 21.11.2024 04:26:22

In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !r...

9.1

CVE-2019-17631

  • EPSS 0.5%
  • Published 17.10.2019 18:15:12
  • Last modified 21.11.2024 04:32:39

From Eclipse OpenJ9 0.15 to 0.16, access to diagnostic operations such as causing a GC or creating a diagnostic file are permitted without any privilege checks.

4.3

CVE-2019-2992

  • EPSS 0.82%
  • Published 16.10.2019 18:15:33
  • Last modified 21.11.2024 04:41:56

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticate...

4.2

CVE-2019-2996

  • EPSS 2.89%
  • Published 16.10.2019 18:15:33
  • Last modified 21.11.2024 04:41:57

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Deployment). The supported version that is affected is Java SE: 8u221; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker wi...