Redhat

Enterprise Linux Server

1891 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2016-0741

  • EPSS 4.95%
  • Veröffentlicht 19.04.2016 21:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

slapd/connection.c in 389 Directory Server (formerly Fedora Directory Server) 1.3.4.x before 1.3.4.7 allows remote attackers to cause a denial of service (infinite loop and connection blocking) by leveraging an abnormally closed connection.

9.8

CVE-2010-5325

  • EPSS 5.63%
  • Veröffentlicht 15.04.2016 14:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.6 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via a long job title.

8.8

CVE-2016-3069

  • EPSS 2.83%
  • Veröffentlicht 13.04.2016 16:59:17
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted name when converting a Git repository.

8.8

CVE-2016-3068

  • EPSS 5%
  • Veröffentlicht 13.04.2016 16:59:16
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted git ext:: URL when cloning a subrepository.

8.4

CVE-2016-2857

  • EPSS 0.06%
  • Veröffentlicht 12.04.2016 02:00:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet.

7.5

CVE-2015-5229

  • EPSS 1%
  • Veröffentlicht 08.04.2016 15:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The calloc function in the glibc package in Red Hat Enterprise Linux (RHEL) 6.7 and 7.2 does not properly initialize memory areas, which might allow context-dependent attackers to cause a denial of service (hang or crash) via unspecified vectors.

9.3

CVE-2016-1646

Warnung Exploit
  • EPSS 65.12%
  • Veröffentlicht 29.03.2016 10:59:00
  • Zuletzt bearbeitet 22.10.2025 00:15:49

The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or po...

9.3

CVE-2016-0636

  • EPSS 8.02%
  • Veröffentlicht 24.03.2016 18:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Java SE 7u97, 8u73, and 8u74 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to the Hotspot sub-component.

8.1

CVE-2016-1762

Exploit
  • EPSS 8.58%
  • Veröffentlicht 24.03.2016 01:59:30
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

8.1

CVE-2015-7547

  • EPSS 93.87%
  • Veröffentlicht 18.02.2016 21:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrar...