Redhat

Enterprise Linux Workstation

1845 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.9

CVE-2015-5287

Exploit
  • EPSS 12.9%
  • Published 07.12.2015 18:59:02
  • Last modified 12.04.2025 10:46:40

The abrt-hook-ccpp help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users with certain permissions to gain privileges via a symlink attack on a file with a predictable name, as demonstrated by /var/tmp/abrt/abrt-hax-cored...

3.6

CVE-2015-5273

Exploit
  • EPSS 0.33%
  • Published 07.12.2015 18:59:00
  • Last modified 12.04.2025 10:46:40

The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users to write to arbitrary files via a symlink attack on unpacked.cpio in a pre-created directory with a predictable name i...

4.3

CVE-2015-3196

  • EPSS 6.31%
  • Published 06.12.2015 20:59:06
  • Last modified 12.04.2025 10:46:40

ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service (...

5.3

CVE-2015-3195

  • EPSS 3.48%
  • Published 06.12.2015 20:59:05
  • Last modified 12.04.2025 10:46:40

The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to ob...

9.8

CVE-2015-8391

  • EPSS 7.68%
  • Published 02.12.2015 01:59:15
  • Last modified 12.04.2025 10:46:40

The pcre_compile function in pcre_compile.c in PCRE before 8.38 mishandles certain [: nesting, which allows remote attackers to cause a denial of service (CPU consumption) or possibly have unspecified other impact via a crafted regular expression, as...

5

CVE-2015-7981

Exploit
  • EPSS 0.93%
  • Published 24.11.2015 20:59:15
  • Last modified 12.04.2025 10:46:40

The png_convert_to_rfc1123 function in png.c in libpng 1.0.x before 1.0.64, 1.2.x before 1.2.54, and 1.4.x before 1.4.17 allows remote attackers to obtain sensitive process memory information via crafted tIME chunk data in an image file, which trigge...

7.5

CVE-2015-8126

  • EPSS 4.95%
  • Published 13.11.2015 03:59:05
  • Last modified 12.04.2025 10:46:40

Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng before 1.0.64, 1.1.x and 1.2.x before 1.2.54, 1.3.x and 1.4.x before 1.4.17, 1.5.x before 1.5.24, and 1.6.x before 1.6.19 allow remote attackers to cause a den...

3.5

CVE-2015-4913

  • EPSS 0.39%
  • Published 22.10.2015 00:00:16
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858.

5

CVE-2015-4902

Warning
  • EPSS 9.38%
  • Published 22.10.2015 00:00:03
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60 allows remote attackers to affect integrity via unknown vectors related to Deployment.

4.6

CVE-2015-4879

  • EPSS 0.58%
  • Published 21.10.2015 23:59:42
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier, and 5.6.25 and earlier, allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to DML.