Redhat

Enterprise Linux Workstation

1845 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2017-5333

  • EPSS 0.23%
  • Veröffentlicht 04.11.2019 21:15:11
  • Zuletzt bearbeitet 21.11.2024 03:27:24

Integer overflow in the extract_group_icon_cursor_resource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) or execute arbitrary code via a crafted executable file.

7.5

CVE-2019-6470

Exploit
  • EPSS 0.27%
  • Veröffentlicht 01.11.2019 23:15:10
  • Zuletzt bearbeitet 11.04.2025 14:55:14

There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also a bug in dhcpd relating to the use of this function per its documentation, but the bug in the library function...

9.8

CVE-2019-11043

Warnung Exploit
  • EPSS 94.11%
  • Veröffentlicht 28.10.2019 15:15:13
  • Zuletzt bearbeitet 14.02.2025 16:43:36

In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the p...

9

CVE-2019-14287

Exploit
  • EPSS 86.13%
  • Veröffentlicht 17.10.2019 18:15:12
  • Zuletzt bearbeitet 21.11.2024 04:26:22

In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !r...

9.1

CVE-2019-17631

  • EPSS 0.5%
  • Veröffentlicht 17.10.2019 18:15:12
  • Zuletzt bearbeitet 21.11.2024 04:32:39

From Eclipse OpenJ9 0.15 to 0.16, access to diagnostic operations such as causing a GC or creating a diagnostic file are permitted without any privilege checks.

6.8

CVE-2019-2989

  • EPSS 2.34%
  • Veröffentlicht 16.10.2019 18:15:33
  • Zuletzt bearbeitet 21.11.2024 04:41:56

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauth...

4.3

CVE-2019-2992

  • EPSS 0.82%
  • Veröffentlicht 16.10.2019 18:15:33
  • Zuletzt bearbeitet 21.11.2024 04:41:56

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticate...

4.2

CVE-2019-2996

  • EPSS 2.89%
  • Veröffentlicht 16.10.2019 18:15:33
  • Zuletzt bearbeitet 21.11.2024 04:41:57

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Deployment). The supported version that is affected is Java SE: 8u221; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker wi...

4.7

CVE-2019-2999

  • EPSS 2.66%
  • Veröffentlicht 16.10.2019 18:15:33
  • Zuletzt bearbeitet 21.11.2024 04:41:57

Vulnerability in the Java SE product of Oracle Java SE (component: Javadoc). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via mul...

5.8

CVE-2019-2975

  • EPSS 0.34%
  • Veröffentlicht 16.10.2019 18:15:32
  • Zuletzt bearbeitet 21.11.2024 04:41:54

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting). Supported versions that are affected are Java SE: 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticate...