Redhat

Enterprise Linux

1857 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 0.39%
  • Veröffentlicht 05.08.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:40:09

A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host ...

  • EPSS 1.49%
  • Veröffentlicht 01.08.2022 14:15:09
  • Zuletzt bearbeitet 02.12.2025 21:15:49

A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.

  • EPSS 0.88%
  • Veröffentlicht 25.07.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 07:11:26

A stored XSS and blind SSRF vulnerability was found in Moodle, occurs due to insufficient sanitization of user-supplied data in the SCORM track details. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary H...

  • EPSS 3.75%
  • Veröffentlicht 25.07.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 07:11:26

A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute...

  • EPSS 0.23%
  • Veröffentlicht 14.07.2022 15:15:08
  • Zuletzt bearbeitet 21.11.2024 07:00:54

A flaw was found in pki-core, which could allow a user to get a certificate for another user identity when directory-based authentication is enabled. This flaw allows an authenticated attacker on the adjacent network to impersonate another user withi...

  • EPSS 0.88%
  • Veröffentlicht 12.07.2022 21:15:09
  • Zuletzt bearbeitet 21.11.2024 07:00:32

A vulnerability was found in libguestfs. This issue occurs while calculating the greatest possible number of matching keys in the get_keys() function. This flaw leads to a denial of service, either by mistake or malicious actor.

  • EPSS 0.46%
  • Veröffentlicht 06.07.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 06:22:10

A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue ha...

  • EPSS 0.47%
  • Veröffentlicht 06.07.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 06:22:10

A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in the heap space. Confidentiality, Integrity and Availablity impact may be considered Low as it's very complex to an atta...

  • EPSS 0.46%
  • Veröffentlicht 06.07.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 06:22:10

A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap. To a successful to be performed the attacker needs to perform some triage over the heap layout and craft an image with a...

  • EPSS 0.3%
  • Veröffentlicht 30.06.2022 13:15:08
  • Zuletzt bearbeitet 21.11.2024 06:41:36

A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU.