Enterprise_linux - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Enterprise_linux
(Redhat)

Repositories

• https://github.com/torvalds/linux
• https://github.com/Perl/perl5
• https://github.com/ceph/ceph
• https://github.com/ClusterLabs/pcs
• https://github.com/mjg59/linux

• https://github.com/opencontainers/runc
• https://github.com/bonzini/qemu
• https://github.com/apache/httpd
• https://github.com/codehaus-plexus/plexus-archiver
• https://github.com/openssh/openssh-portable
• https://github.com/kyz/libmspack
• https://github.com/git/git
• https://github.com/mysql/mysql-server
• https://github.com/neomutt/neomutt
• https://github.com/php/php-src
• https://github.com/vadz/libtiff
• https://github.com/numpy/numpy
• https://github.com/bagder/curl
• https://github.com/ClusterLabs/pacemaker
• https://github.com/hercules-team/augeas

#Vulnerabilities

1618

Date	Id	Summary	Products	Score	Patch	Annotated
2019-11-05	CVE-2013-5661	Cache Poisoning issue exists in DNS Response Rate Limiting.	Bind, Knot_resolver, Nsd, Enterprise_linux	N/A
2019-11-04	CVE-2013-4409	An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag Review Board before 1.7.15 when parsing JSON requests.	Fedora, Enterprise_linux, Djblets, Review_board	N/A
2019-11-04	CVE-2013-4251	The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories.	Debian_linux, Fedora, Enterprise_linux, Scipy	N/A
2019-11-04	CVE-2017-5333	Integer overflow in the extract_group_icon_cursor_resource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) or execute arbitrary code via a crafted executable file.	Ubuntu_linux, Debian_linux, Icoutils, Leap, Opensuse, Enterprise_linux, Enterprise_linux_desktop, Enterprise_linux_server_aus, Enterprise_linux_server_eus, Enterprise_linux_server_tus, Enterprise_linux_workstation	N/A
2019-11-05	CVE-2016-4983	A postinstall script in the dovecot rpm allows local users to read the contents of newly created SSL/TLS key files.	Dovecot, Leap, Opensuse, Enterprise_linux	N/A
2019-11-04	CVE-2017-5332	The extract_group_icon_cursor_resource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable.	Ubuntu_linux, Debian_linux, Icoutils, Leap, Opensuse, Enterprise_linux, Enterprise_linux_desktop, Enterprise_linux_server_aus, Enterprise_linux_server_eus, Enterprise_linux_server_tus, Enterprise_linux_workstation	N/A
2019-11-04	CVE-2015-8980	The plural form formula in ngettext family of calls in php-gettext before 1.0.12 allows remote attackers to execute arbitrary code.	Fedora, Leap, Php\-Gettext, Enterprise_linux	N/A
2019-11-01	CVE-2013-4751	php-symfony2-Validator has loss of information during serialization	Fedora, Enterprise_linux, Symfony	N/A
2019-11-01	CVE-2013-3718	evince is missing a check on number of pages which can lead to a segmentation fault	Debian_linux, Evince, Opensuse, Enterprise_linux	N/A
2019-09-17	CVE-2019-14826	A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this flaw if they obtain previously valid session cookies and can use this to gain access to the session.	Freeipa, Enterprise_linux	N/A