Redhat

Codeready Linux Builder For Power Little Endian

13 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.4

CVE-2025-3155

Exploit
  • EPSS 0.13%
  • Published 03.04.2025 14:15:46
  • Last modified 12.08.2025 21:15:30

A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows malicious users to input help documents, which may exfiltrate user files to an external environment.

6.5

CVE-2025-2784

Exploit
  • EPSS 0.87%
  • Published 03.04.2025 03:15:18
  • Last modified 20.06.2025 15:26:29

A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_whitespace() function. Libsoup clients may read one byte out-of-bounds in response to a crafted HTTP response by an HTTP serv...

7.1

CVE-2023-3758

Exploit
  • EPSS 0.03%
  • Published 18.04.2024 19:15:08
  • Last modified 18.06.2025 19:44:10

A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately.

5.5

CVE-2023-4641

  • EPSS 0.02%
  • Published 27.12.2023 16:15:13
  • Last modified 21.11.2024 08:35:35

A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password fails on the second attempt, shadow-utils fails in cleaning the buffer used to store the first entry. This may allow an attacker w...

7.8

CVE-2023-5633

  • EPSS 0.02%
  • Published 23.10.2023 22:15:09
  • Last modified 21.11.2024 08:42:09

The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way memory objects were handled when they were being used to store a surface. When running inside a VMware guest with 3D acce...

7.8

CVE-2023-4911

Warning Exploit
  • EPSS 78.36%
  • Published 03.10.2023 18:15:10
  • Last modified 06.05.2025 21:02:34

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launch...

4.7

CVE-2023-4732

  • EPSS 0.01%
  • Published 03.10.2023 17:15:09
  • Last modified 21.11.2024 08:35:51

A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user privilege may cause a denial of service problem due to a BUG statement referencing pmd_t x.

5.5

CVE-2023-4042

  • EPSS 0.03%
  • Published 23.08.2023 13:15:07
  • Last modified 21.11.2024 08:34:17

A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed to be. This issue only affects the ghostscript package as shipped with Red Hat Enterprise Linux 8.

6.5

CVE-2021-3733

Exploit
  • EPSS 0.68%
  • Published 10.03.2022 17:42:59
  • Last modified 21.11.2024 06:22:16

There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication r...

7.5

CVE-2021-3737

Exploit
  • EPSS 0.21%
  • Published 04.03.2022 19:15:08
  • Last modified 21.11.2024 06:22:17

A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinite loop, consuming CPU time. The highest threat from...