Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Linux
(Redhat)| Repositories | https://github.com/mjg59/linux |
| #Vulnerabilities | 232 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2000-10-20 | CVE-2000-0031 | The initscripts package in Red Hat Linux allows local users to gain privileges via a symlink attack. | Linux | N/A | ||
| 2004-11-23 | CVE-2004-0081 | OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool. | Webstar, Mac_os_x, Mac_os_x_server, Converged_communications_server, Intuity_audix, S8300, S8500, S8700, Sg200, Sg203, Sg208, Sg5, Vsu, Cacheos_ca_sa, Proxysg, Firewall\-1, Provider\-1, Vpn\-1, Access_registrar, Application_and_content_networking_software, Call_manager, Ciscoworks_common_management_foundation, Ciscoworks_common_services, Content_services_switch_11500, Css11000_content_services_switch, Css_secure_content_accelerator, Firewall_services_module, Gss_4480_global_site_selector, Gss_4490_global_site_selector, Ios, Mds_9000, Okena_stormwatch, Pix_firewall, Pix_firewall_software, Secure_content_accelerator, Threat_response, Webns, Bsafe_ssl\-J, Freebsd, Aaa_server, Apache\-Based_web_server, Hp\-Ux, Wbem, Speed_technologies_litespeed_web_server, Instant_virtual_extranet, Edirectory, Imanager, Openbsd, Openssl, Enterprise_linux, Enterprise_linux_desktop, Linux, Openssl, Openserver, Sidewinder, Propack, Servercluster, Stonebeat_fullcluster, Stonebeat_securitycluster, Stonebeat_webcluster, Stonegate, Stonegate_vpn_client, Crypto_accelerator_4000, Clientless_vpn_gateway_4400, Tarantella_enterprise, Gsx_server | N/A | ||
| 2002-03-15 | CVE-2002-0080 | rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed. | Linux, Rsync | N/A | ||
| 2018-10-09 | CVE-2018-17962 | Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c because an incorrect integer data type is used. | Ubuntu_linux, Debian_linux, Linux, Qemu, Linux, Linux_enterprise_server | 7.5 | ||
| 2000-05-16 | CVE-2000-0392 | Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 2000-05-16 | CVE-2000-0391 | Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 2000-05-16 | CVE-2000-0390 | Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 2000-05-16 | CVE-2000-0389 | Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 2018-12-21 | CVE-2018-20346 | SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries that occur after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases), aka Magellan. | Debian_linux, Chrome, Leap, Linux, Sqlite | 8.1 | ||
| 2017-12-11 | CVE-2014-3250 | The default vhost configuration file in Puppet before 3.6.2 does not include the SSLCARevocationCheck directive, which might allow remote attackers to obtain sensitive information via a revoked certificate when a Puppet master runs with Apache 2.4. | Puppet, Linux | 6.5 |