Redhat

Enterprise Mrg

72 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2013-6460

Exploit
  • EPSS 2.52%
  • Veröffentlicht 05.11.2019 15:15:11
  • Zuletzt bearbeitet 21.11.2024 01:59:16

Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing XML documents

7.5

CVE-2019-11478

  • EPSS 31.33%
  • Veröffentlicht 19.06.2019 00:15:12
  • Zuletzt bearbeitet 21.11.2024 04:21:09

Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denia...

7.8

CVE-2019-11477

  • EPSS 71.15%
  • Veröffentlicht 19.06.2019 00:15:12
  • Zuletzt bearbeitet 21.11.2024 04:21:09

Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This ha...

6.5

CVE-2019-3459

Exploit
  • EPSS 0.48%
  • Veröffentlicht 11.04.2019 16:29:02
  • Zuletzt bearbeitet 21.11.2024 04:42:05

A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel before 5.1-rc1.

8

CVE-2018-16884

  • EPSS 0.13%
  • Veröffentlicht 18.12.2018 22:29:04
  • Zuletzt bearbeitet 21.11.2024 03:53:31

A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bc_svc_process() use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container ...

7.8

CVE-2017-7482

  • EPSS 0.16%
  • Veröffentlicht 30.07.2018 14:29:02
  • Zuletzt bearbeitet 21.11.2024 03:31:59

In the Linux kernel before version 4.12, Kerberos 5 tickets decoded when using the RXRPC keys incorrectly assumes the size of a field. This could lead to the size-remaining variable wrapping and the data pointer going over the end of the buffer. This...

5.5

CVE-2014-8171

  • EPSS 0.05%
  • Veröffentlicht 09.02.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 02:18:42

The memory resource controller (aka memcg) in the Linux kernel allows local users to cause a denial of service (deadlock) by spawning new processes within a memory-constrained cgroup.

5.5

CVE-2017-15128

  • EPSS 0.05%
  • Veröffentlicht 14.01.2018 06:29:00
  • Zuletzt bearbeitet 21.11.2024 03:14:07

A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb.c in the Linux kernel before 4.13.12. A lack of size check could cause a denial of service (BUG).

5.5

CVE-2017-15127

  • EPSS 0.04%
  • Veröffentlicht 14.01.2018 06:29:00
  • Zuletzt bearbeitet 21.11.2024 03:14:07

A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VM_SHARED hugetlbfs mapping could trigger a local denial of service (BUG).

5.5

CVE-2015-7837

  • EPSS 0.07%
  • Veröffentlicht 19.09.2017 16:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The Linux kernel, as used in Red Hat Enterprise Linux 7, kernel-rt, and Enterprise MRG 2 and when booted with UEFI Secure Boot enabled, allows local users to bypass intended securelevel/secureboot restrictions by leveraging improper handling of secur...