Redhat

Enterprise Linux

1730 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.9

CVE-2024-8443

  • EPSS 0.19%
  • Veröffentlicht 10.09.2024 14:15:13
  • Zuletzt bearbeitet 03.11.2025 23:17:32

A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with malicious responses to the APDUs during the card enrollment process using the `pkcs15-init` tool may lead to out-of-bound ri...

3.9

CVE-2024-45617

  • EPSS 0.16%
  • Veröffentlicht 03.09.2024 22:15:05
  • Zuletzt bearbeitet 03.11.2025 23:15:51

A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient or missing che...

3.9

CVE-2024-45618

  • EPSS 0.13%
  • Veröffentlicht 03.09.2024 22:15:05
  • Zuletzt bearbeitet 03.11.2025 23:15:51

A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient or missing checking of return values of functions ...

4.3

CVE-2024-45619

  • EPSS 0.1%
  • Veröffentlicht 03.09.2024 22:15:05
  • Zuletzt bearbeitet 03.11.2025 23:15:52

A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. When buffers are partially fi...

3.9

CVE-2024-45620

  • EPSS 0.1%
  • Veröffentlicht 03.09.2024 22:15:05
  • Zuletzt bearbeitet 03.11.2025 23:15:52

A vulnerability was found in the pkcs15-init tool in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. When buffers are partially filled with data, initialized...

3.9

CVE-2024-45615

  • EPSS 0.1%
  • Veröffentlicht 03.09.2024 22:15:04
  • Zuletzt bearbeitet 03.11.2025 23:15:51

A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. The problem is missing initialization of variables expected to be initialized (as arguments to other functions, etc.).

3.9

CVE-2024-45616

  • EPSS 0.1%
  • Veröffentlicht 03.09.2024 22:15:04
  • Zuletzt bearbeitet 03.11.2025 23:15:51

A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. The following problems were...

7.5

CVE-2024-44070

  • EPSS 0.13%
  • Veröffentlicht 19.08.2024 02:15:04
  • Zuletzt bearbeitet 04.11.2025 17:16:05

An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.

7.5

CVE-2024-7006

  • EPSS 0.62%
  • Veröffentlicht 12.08.2024 13:38:40
  • Zuletzt bearbeitet 03.11.2025 21:18:47

A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentatio...

7.7

CVE-2024-3056

  • EPSS 0.36%
  • Veröffentlicht 02.08.2024 21:16:30
  • Zuletzt bearbeitet 27.12.2024 16:15:24

A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the same IPC with at least one other container, can create a large number of IPC resources in /dev/shm. The malicious ...