Redhat

Codeready Linux Builder

40 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2022-0492

  • EPSS 6.99%
  • Published 03.03.2022 19:15:08
  • Last modified 21.11.2024 06:38:46

A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the...

9

CVE-2021-44142

  • EPSS 28.45%
  • Published 21.02.2022 15:15:07
  • Last modified 23.04.2025 19:15:51

The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fru...

6.5

CVE-2021-3930

  • EPSS 0.04%
  • Published 18.02.2022 18:15:09
  • Last modified 21.11.2024 06:22:47

An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_sense_page() if the 'page' argument was set to MODE_PAGE_ALLS (0x3f). A malicious guest could use this flaw to potentiall...

8.5

CVE-2020-25717

  • EPSS 0.2%
  • Published 18.02.2022 18:15:08
  • Last modified 21.11.2024 05:18:33

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

5.9

CVE-2016-2124

  • EPSS 0.79%
  • Published 18.02.2022 18:15:08
  • Last modified 21.11.2024 02:47:52

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

6.5

CVE-2020-14301

  • EPSS 0.26%
  • Published 27.05.2021 20:15:07
  • Last modified 21.11.2024 05:02:57

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive inform...

5.5

CVE-2020-27842

  • EPSS 0.07%
  • Published 05.01.2021 18:15:14
  • Last modified 21.11.2024 05:21:54

There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be processed by openjpeg could cause a null pointer dereference. The highest impact of this flaw is to application availability.

6.5

CVE-2019-11135

  • EPSS 0.24%
  • Published 14.11.2019 19:15:13
  • Last modified 21.11.2024 04:20:35

TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.

6.5

CVE-2019-3459

Exploit
  • EPSS 0.48%
  • Published 11.04.2019 16:29:02
  • Last modified 21.11.2024 04:42:05

A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel before 5.1-rc1.

6.5

CVE-2019-3460

Exploit
  • EPSS 0.48%
  • Published 11.04.2019 16:29:02
  • Last modified 21.11.2024 04:42:05

A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was found in the Linux kernel before 5.1-rc1.