Redhat

Enterprise Linux Workstation

1845 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2017-7000

  • EPSS 0.62%
  • Published 03.04.2018 06:29:01
  • Last modified 21.11.2024 03:30:56

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory c...

7.1

CVE-2018-1094

Exploit
  • EPSS 0.27%
  • Published 02.04.2018 03:29:00
  • Last modified 21.11.2024 03:59:10

The ext4_fill_super function in fs/ext4/super.c in the Linux kernel through 4.15.15 does not always initialize the crc32c checksum driver, which allows attackers to cause a denial of service (ext4_xattr_inode_hash NULL pointer dereference and system ...

7.8

CVE-2018-7566

  • EPSS 0.13%
  • Published 30.03.2018 21:29:02
  • Last modified 21.11.2024 04:12:22

The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl write operation to /dev/snd/seq by a local user.

7.8

CVE-2018-1083

  • EPSS 0.11%
  • Published 28.03.2018 13:29:00
  • Last modified 21.11.2024 03:59:08

Zsh before version 5.4.2-test-1 is vulnerable to a buffer overflow in the shell autocomplete functionality. A local unprivileged user can create a specially crafted directory path which leads to code execution in the context of the user who tries to ...

9.8

CVE-2018-1312

  • EPSS 8.66%
  • Published 26.03.2018 15:29:00
  • Last modified 21.11.2024 03:59:36

In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication con...

6.5

CVE-2018-8976

Exploit
  • EPSS 0.3%
  • Published 25.03.2018 03:29:00
  • Last modified 21.11.2024 04:14:43

In Exiv2 0.26, jpgimage.cpp allows remote attackers to cause a denial of service (image.cpp Exiv2::Internal::stringFormat out-of-bounds read) via a crafted file.

9.8

CVE-2018-1000140

Exploit
  • EPSS 42.51%
  • Published 23.03.2018 21:29:00
  • Last modified 21.11.2024 03:39:46

rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be exploitable a remote attacker that can connect to ...

5.5

CVE-2018-8945

Exploit
  • EPSS 0.17%
  • Published 22.03.2018 21:29:00
  • Last modified 21.11.2024 04:14:39

The bfd_section_from_shdr function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (segmentation fault) via a large attribute section.

8.8

CVE-2018-8905

Exploit
  • EPSS 1.14%
  • Published 22.03.2018 04:29:00
  • Last modified 21.11.2024 04:14:34

In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tif_lzw.c via a crafted TIFF file, as demonstrated by tiff2ps.

9.8

CVE-2018-8088

  • EPSS 0.84%
  • Published 20.03.2018 16:29:00
  • Last modified 21.11.2024 04:13:14

org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before 1.8.0-beta2 allows remote attackers to bypass intended access restrictions via crafted data. EventData in the slf4j-ext module in QOS.CH SLF4J, has been fixed in SLF4J versions 1....