Redhat

Enterprise Linux

1854 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.44%
  • Veröffentlicht 26.03.2026 20:06:29
  • Zuletzt bearbeitet 19.05.2026 14:16:38

A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can exploit this by sending a malformed 'longname' field within an `SSH_FXP_NAME` message during a file listing operation. This missing null check can lead to re...

  • EPSS 0.41%
  • Veröffentlicht 26.03.2026 20:06:28
  • Zuletzt bearbeitet 19.05.2026 14:16:32

A malicious SCP server can send unexpected paths that could make the client application override local files outside of working directory. This could be misused to create malicious executable or configuration files and make the user execute them unde...

  • EPSS 0.58%
  • Veröffentlicht 26.03.2026 20:06:28
  • Zuletzt bearbeitet 19.05.2026 14:16:36

A flaw was found in libssh. The API function `ssh_get_hexa()` is vulnerable to a denial of service when processing zero-length input. This can be exploited remotely by an attacker during GSSAPI (Generic Security Service Application Program Interface)...

  • EPSS 1.16%
  • Veröffentlicht 26.03.2026 20:01:46
  • Zuletzt bearbeitet 07.07.2026 15:16:43

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attemp...

Exploit
  • EPSS 0.49%
  • Veröffentlicht 26.03.2026 20:00:28
  • Zuletzt bearbeitet 03.04.2026 20:12:51

A flaw was found in GIMP. Heap-buffer-overflow vulnerability exists in the fread_pascal_string function when processing a specially crafted PSD (Photoshop Document) file. This occurs because the buffer allocated for a Pascal string is not properly nu...

Exploit
  • EPSS 0.84%
  • Veröffentlicht 26.03.2026 20:00:10
  • Zuletzt bearbeitet 03.04.2026 20:17:54

A flaw was found in GIMP. An integer overflow vulnerability exists when processing ICO image files, specifically in the `ico_read_info` and `ico_read_icon` functions. This issue arises because a size calculation for image buffers can wrap around due ...

Exploit
  • EPSS 0.45%
  • Veröffentlicht 26.03.2026 19:31:34
  • Zuletzt bearbeitet 21.04.2026 15:48:48

A flaw was found in libsoup's SoupServer. A remote attacker could exploit a use-after-free vulnerability where the `soup_server_disconnect()` function frees connection objects prematurely, even if a TLS handshake is still pending. If the handshake co...

  • EPSS 0.13%
  • Veröffentlicht 26.03.2026 15:16:43
  • Zuletzt bearbeitet 21.04.2026 16:29:29

A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the `polkit-agent-helper-1` setuid binary via standard input (stdin). This unbounded input can lead to an out-of-memory (OOM) condit...

  • EPSS 0.55%
  • Veröffentlicht 24.03.2026 14:42:47
  • Zuletzt bearbeitet 30.06.2026 03:20:41

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write du...

  • EPSS 0.23%
  • Veröffentlicht 23.03.2026 21:26:14
  • Zuletzt bearbeitet 04.05.2026 15:30:08

An incomplete fix for CVE-2024-47778 allows an out-of-bounds read in gst_wavparse_adtl_chunk() function. The patch added a size validation check lsize + 8 > size, but it does not account for the GST_ROUND_UP_2(lsize) used in the actual offset calcula...