Redhat

Enterprise Linux Server

1890 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2016-9579

Exploit
  • EPSS 18.59%
  • Veröffentlicht 01.08.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:01:25

A flaw was found in the way Ceph Object Gateway would process cross-origin HTTP requests if the CORS policy was set to allow origin on a bucket. A remote unauthenticated attacker could use this flaw to cause denial of service by sending a specially-c...

5.9

CVE-2016-8635

  • EPSS 0.44%
  • Veröffentlicht 01.08.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 02:59:43

It was found that Diffie Hellman Client key exchange handling in NSS 3.21.x was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired g...

8.1

CVE-2016-9573

Exploit
  • EPSS 1.41%
  • Veröffentlicht 01.08.2018 06:29:00
  • Zuletzt bearbeitet 21.11.2024 03:01:25

An out-of-bounds read vulnerability was found in OpenJPEG 2.1.2, in the j2k_to_image tool. Converting a specially crafted JPEG2000 file to another format could cause the application to crash or, potentially, disclose some data from the heap.

6.8

CVE-2016-8626

  • EPSS 2.87%
  • Veröffentlicht 31.07.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 02:59:42

A flaw was found in Red Hat Ceph before 0.94.9-8. The way Ceph Object Gateway handles POST object requests permits an authenticated attacker to launch a denial of service attack by sending null or specially crafted POST object requests.

5.5

CVE-2018-10883

  • EPSS 0.04%
  • Veröffentlicht 30.07.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:13

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.

7.8

CVE-2017-7518

  • EPSS 0.09%
  • Veröffentlicht 30.07.2018 15:29:00
  • Zuletzt bearbeitet 21.11.2024 03:32:03

A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. A user/pr...

6.5

CVE-2018-14679

  • EPSS 1.11%
  • Veröffentlicht 28.07.2018 23:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:34

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).

6.5

CVE-2018-14680

  • EPSS 1.24%
  • Veröffentlicht 28.07.2018 23:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:34

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames.

8.8

CVE-2018-14681

  • EPSS 1.6%
  • Veröffentlicht 28.07.2018 23:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:34

An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite.

8.8

CVE-2018-14682

  • EPSS 1.6%
  • Veröffentlicht 28.07.2018 23:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:34

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression.