Redhat

Enterprise Linux

1730 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2022-3707

  • EPSS 0.01%
  • Veröffentlicht 06.03.2023 23:15:10
  • Zuletzt bearbeitet 07.03.2025 16:15:35

A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers VGA card system resource overload, causing a fail in the intel_gvt_dma_map_guest_page function. This issue could allow a local user to crash the system.

7

CVE-2023-27561

Exploit
  • EPSS 0.15%
  • Veröffentlicht 03.03.2023 19:15:11
  • Zuletzt bearbeitet 06.12.2024 14:15:19

runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to ru...

3.7

CVE-2022-41862

  • EPSS 0.32%
  • Veröffentlicht 03.03.2023 16:15:09
  • Zuletzt bearbeitet 07.03.2025 16:15:36

In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing u...

5.5

CVE-2023-1095

  • EPSS 0.02%
  • Veröffentlicht 28.02.2023 23:15:11
  • Zuletzt bearbeitet 18.03.2025 16:15:16

In nf_tables_updtable, if nf_tables_table_enable returns an error, nft_trans_destroy is called to free the transaction object. nft_trans_destroy() calls list_del(), but the transaction was never placed on a list -- the list head is all zeroes, this r...

7.4

CVE-2023-0361

Exploit
  • EPSS 3.62%
  • Veröffentlicht 15.02.2023 18:15:11
  • Zuletzt bearbeitet 19.03.2025 18:15:18

A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. This side-channel can be sufficient to recover the key encrypted in the RSA ciphertext across a network in a Bleichenbacher style attack. To achieve a s...

5.5

CVE-2022-3560

  • EPSS 0.04%
  • Veröffentlicht 02.02.2023 21:22:38
  • Zuletzt bearbeitet 26.03.2025 19:15:18

A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign'...

8.8

CVE-2022-4254

Exploit
  • EPSS 0.08%
  • Veröffentlicht 01.02.2023 17:15:09
  • Zuletzt bearbeitet 27.03.2025 15:15:41

sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters

5.5

CVE-2022-4285

Exploit
  • EPSS 0.06%
  • Veröffentlicht 27.01.2023 18:15:15
  • Zuletzt bearbeitet 28.03.2025 16:15:25

An illegal memory access flaw was found in the binutils package. Parsing an ELF file containing corrupt symbol version information may result in a denial of service. This issue is the result of an incomplete fix for CVE-2020-16599.

7.5

CVE-2022-4743

  • EPSS 0.04%
  • Veröffentlicht 12.01.2023 19:15:24
  • Zuletzt bearbeitet 25.11.2025 21:15:53

A potential memory leak issue was discovered in SDL2 in GLES_CreateTexture() function in SDL_render_gles.c. The vulnerability allows an attacker to cause a denial of service attack. The vulnerability affects SDL2 v2.0.4 and above. SDL-1.x are not aff...

7.8

CVE-2022-3715

Exploit
  • EPSS 0.05%
  • Veröffentlicht 05.01.2023 15:15:10
  • Zuletzt bearbeitet 03.11.2025 22:16:00

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.