Enterprise_linux - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Enterprise_linux
(Redhat)

Repositories

• https://github.com/torvalds/linux
• https://github.com/Perl/perl5
• https://github.com/ceph/ceph
• https://github.com/ClusterLabs/pcs
• https://github.com/mjg59/linux

• https://github.com/apache/httpd
• https://github.com/opencontainers/runc
• https://github.com/bonzini/qemu
• https://github.com/codehaus-plexus/plexus-archiver
• https://github.com/openssh/openssh-portable
• https://github.com/kyz/libmspack
• https://github.com/git/git
• https://github.com/mysql/mysql-server
• https://github.com/neomutt/neomutt
• https://github.com/php/php-src
• https://github.com/vadz/libtiff
• https://github.com/numpy/numpy
• https://github.com/bagder/curl
• https://github.com/ClusterLabs/pacemaker
• https://github.com/hercules-team/augeas

#Vulnerabilities

1687

Date	Id	Summary	Products	Score	Patch	Annotated
2019-01-01	CVE-2018-20650	A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach.	Ubuntu_linux, Debian_linux, Poppler, Enterprise_linux, Enterprise_linux_desktop, Enterprise_linux_eus, Enterprise_linux_server, Enterprise_linux_server_aus, Enterprise_linux_server_tus, Enterprise_linux_workstation	6.5
2016-12-22	CVE-2016-9675	openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.	Enterprise_linux, Enterprise_linux_for_ibm_z_systems, Enterprise_linux_for_power_big_endian, Enterprise_linux_for_scientific_computing, Openjpeg	7.8
2021-05-21	CVE-2018-25010	A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ApplyFilter().	Enterprise_linux, Libwebp	9.1
2021-05-21	CVE-2018-25011	A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().	Enterprise_linux, Libwebp	9.8
2021-05-21	CVE-2018-25013	A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes().	Enterprise_linux, Libwebp	9.1
2021-05-21	CVE-2018-25014	A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().	Enterprise_linux, Libwebp	9.8
2019-12-23	CVE-2019-18390	An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_BLIT commands.	Debian_linux, Leap, Enterprise_linux, Virglrenderer	7.1
2019-05-16	CVE-2019-0820	A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework and .NET Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0980, CVE-2019-0981.	\.net_core, \.net_framework, Enterprise_linux, Enterprise_linux_eus, Enterprise_linux_server_aus, Enterprise_linux_server_tus	7.5
2019-07-30	CVE-2019-10153	A flaw was discovered in fence-agents, prior to version 4.3.4, where using non-ASCII characters in a guest VM's comment or other fields would cause fence_rhevm to exit with an exception. In cluster environments, this could lead to preventing automated recovery or otherwise denying service to clusters of which that VM is a member.	Fence\-Agents, Enterprise_linux, Enterprise_linux_server, Enterprise_linux_workstation	5.0
2019-12-23	CVE-2019-18389	A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service, or QEMU guest-to-host escape and code execution, via VIRGL_CCMD_RESOURCE_INLINE_WRITE commands.	Debian_linux, Leap, Enterprise_linux, Virglrenderer	7.8