Redhat

Enterprise Linux

1714 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2025-4478

  • EPSS 0.08%
  • Veröffentlicht 16.05.2025 14:22:17
  • Zuletzt bearbeitet 29.10.2025 14:14:55

A flaw was found in the FreeRDP used by Anaconda's remote install feature, where a crafted RDP packet could trigger a segmentation fault. This issue causes the service to crash and remain defunct, resulting in a denial of service. It occurs pre-boot ...

7.5

CVE-2025-3891

  • EPSS 0.48%
  • Veröffentlicht 29.04.2025 11:56:50
  • Zuletzt bearbeitet 28.07.2025 14:15:27

A flaw was found in the mod_auth_openidc module for Apache httpd. This flaw allows a remote, unauthenticated attacker to trigger a denial of service by sending an empty POST request when the OIDCPreservePost directive is enabled. The server crashes c...

5.5

CVE-2025-46400

Exploit
  • EPSS 0.02%
  • Veröffentlicht 23.04.2025 20:55:17
  • Zuletzt bearbeitet 03.11.2025 20:19:05

In xfig diagramming tool, a segmentation fault while running fig2dev allows an attacker to availability via local input manipulation via read_arcobject function.

5.5

CVE-2025-46399

Exploit
  • EPSS 0.02%
  • Veröffentlicht 23.04.2025 20:55:15
  • Zuletzt bearbeitet 03.11.2025 20:19:05

A flaw was found in fig2dev. This vulnerability allows availability via local input manipulation via genge_itp_spline function.

5.5

CVE-2025-46398

Exploit
  • EPSS 0.02%
  • Veröffentlicht 23.04.2025 20:55:13
  • Zuletzt bearbeitet 03.11.2025 20:19:04

In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via read_objects function.

7.8

CVE-2025-46397

Exploit
  • EPSS 0.03%
  • Veröffentlicht 23.04.2025 20:55:09
  • Zuletzt bearbeitet 21.11.2025 12:15:47

A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via bezier_spline function.

3.7

CVE-2025-3416

  • EPSS 0.07%
  • Veröffentlicht 08.04.2025 18:24:22
  • Zuletzt bearbeitet 09.04.2025 20:02:41

A flaw was found in OpenSSL's handling of the properties argument in certain functions. This vulnerability can allow use-after-free exploitation, which may result in undefined behavior or incorrect property parsing, leading to OpenSSL treating the in...

7.4

CVE-2025-3155

Exploit
  • EPSS 0.15%
  • Veröffentlicht 03.04.2025 14:15:46
  • Zuletzt bearbeitet 12.08.2025 21:15:30

A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows malicious users to input help documents, which may exfiltrate user files to an external environment.

6.5

CVE-2025-2784

Exploit
  • EPSS 0.72%
  • Veröffentlicht 03.04.2025 03:15:18
  • Zuletzt bearbeitet 18.11.2025 09:15:50

A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_whitespace() function. Libsoup clients may read one byte out-of-bounds in response to a crafted HTTP response by an HTTP serv...

7.8

CVE-2025-0678

  • EPSS 0.04%
  • Veröffentlicht 03.03.2025 17:15:14
  • Zuletzt bearbeitet 25.03.2025 05:15:40

A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. ...