Redhat

Enterprise Linux

1714 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2023-5217

Warnung Exploit
  • EPSS 4.84%
  • Veröffentlicht 28.09.2023 16:15:10
  • Zuletzt bearbeitet 24.10.2025 14:07:24

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

6.5

CVE-2023-5215

Exploit
  • EPSS 0.07%
  • Veröffentlicht 28.09.2023 14:15:26
  • Zuletzt bearbeitet 21.11.2024 08:41:18

A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec states the size is a 64-bit unsigned value). This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat...

4.7

CVE-2023-42756

Exploit
  • EPSS 0.01%
  • Veröffentlicht 28.09.2023 14:15:21
  • Zuletzt bearbeitet 21.11.2024 08:23:06

A flaw was found in the Netfilter subsystem of the Linux kernel. A race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP can lead to a kernel panic due to the invocation of `__ip_set_put` on a wrong `set`. This issue may allow a local user to crash...

7.5

CVE-2023-5157

  • EPSS 0.27%
  • Veröffentlicht 27.09.2023 15:19:41
  • Zuletzt bearbeitet 01.10.2025 15:15:41

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service.

7.8

CVE-2023-42753

Exploit
  • EPSS 0.01%
  • Veröffentlicht 25.09.2023 21:15:15
  • Zuletzt bearbeitet 21.11.2024 08:23:06

An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the `h->nets` array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory...

7.1

CVE-2023-4156

Exploit
  • EPSS 0.03%
  • Veröffentlicht 25.09.2023 18:15:11
  • Zuletzt bearbeitet 21.11.2024 08:34:30

A heap out-of-bounds read flaw was found in builtin.c in the gawk package. This issue may lead to a crash and could be used to read sensitive information.

7.5

CVE-2023-5156

  • EPSS 0.06%
  • Veröffentlicht 25.09.2023 16:15:15
  • Zuletzt bearbeitet 21.11.2024 08:41:10

A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result in an application crash.

6.5

CVE-2023-4527

Exploit
  • EPSS 0.11%
  • Veröffentlicht 18.09.2023 17:15:55
  • Zuletzt bearbeitet 24.06.2025 17:31:20

A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured with no-aaaa mode via /etc/resolv.conf, a DNS response via TCP larger than 2048 bytes can potentially disclose stack con...

5.9

CVE-2023-4806

  • EPSS 1.9%
  • Veröffentlicht 18.09.2023 17:15:55
  • Zuletzt bearbeitet 26.09.2025 12:15:32

A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethos...

5.6

CVE-2023-3301

  • EPSS 0.01%
  • Veröffentlicht 13.09.2023 17:15:10
  • Zuletzt bearbeitet 21.11.2024 08:16:57

A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the virtio-net pci frontend has been unplugged. A malicious guest could use this time window to trigger an assertion and c...