Redhat

Enterprise Linux

1857 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.6%
  • Veröffentlicht 28.05.2021 11:15:07
  • Zuletzt bearbeitet 21.11.2024 05:46:11

A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vul...

  • EPSS 1.2%
  • Veröffentlicht 27.05.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 05:02:57

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive inform...

  • EPSS 0.69%
  • Veröffentlicht 27.05.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 05:11:12

A malicious container image can consume an unbounded amount of memory when being pulled to a container runtime host, such as Red Hat Enterprise Linux using podman, or OpenShift Container Platform. An attacker can use this flaw to trick a user, with p...

Exploit
  • EPSS 1.23%
  • Veröffentlicht 27.05.2021 00:15:08
  • Zuletzt bearbeitet 11.04.2025 12:27:55

Null pointer dereference was found in upx PackLinuxElf::canUnpack() in p_lx_elf.cpp,in version UPX 4.0.0. That allow attackers to execute arbitrary code and cause a denial of service via a crafted file.

Exploit
  • EPSS 1.04%
  • Veröffentlicht 27.05.2021 00:15:08
  • Zuletzt bearbeitet 11.04.2025 12:27:55

An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service (abort) via a crafted file.

Exploit
  • EPSS 0.7%
  • Veröffentlicht 26.05.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:03:58

A flaw was found in PoDoFo 0.9.7. An use-after-free in PoDoFo::PdfVecObjects::Clear() function can cause a denial of service via a crafted PDF file.

Exploit
  • EPSS 0.69%
  • Veröffentlicht 26.05.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:03:59

A flaw was found in PoDoFo 0.9.7. An uncontrolled recursive call among PdfTokenizer::ReadArray(), PdfTokenizer::GetNextVariant() and PdfTokenizer::ReadDataType() functions can lead to a stack overflow.

Exploit
  • EPSS 0.73%
  • Veröffentlicht 26.05.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:03:59

A flaw was found in PoDoFo 0.9.7. An uncontrolled recursive call in PdfNamesTree::AddToDictionary function in src/podofo/doc/PdfNamesTree.cpp can lead to a stack overflow.

  • EPSS 0.37%
  • Veröffentlicht 26.05.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:21:45

A flaw was found in the USB redirector device (usb-redir) of QEMU. Small USB packets are combined into a single, large transfer request, to reduce the overhead and improve performance. The combined size of the bulk transfer is used to dynamically all...

  • EPSS 0.25%
  • Veröffentlicht 26.05.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:46:18

A flaw was found in NetworkManager in versions before 1.30.0. Setting match.path and activating a profile crashes NetworkManager. The highest threat from this vulnerability is to system availability.