Codeready Linux Builder Eus Security Vulnerabilities and Issues — Codeready Linux Builder Eus CVE List

Lucene search

RedhatCodeready Linux Builder Eus

10 matches found

CVE•added 2023/10/03 6:15 p.m.•1184 views

CVE-2023-4911

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS8.2AI score0.80512EPSS

CVE•added 2019/11/25 11:15 a.m.•439 views

CVE-2019-14815

A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Driver.

7.8CVSS8.6AI score0.00118EPSS

CVE•added 2022/03/25 7:15 p.m.•399 views

CVE-2022-0330

A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or escalate their privileges on the system.

7.8CVSS7.7AI score0.0005EPSS

CVE•added 2022/03/03 7:15 p.m.•270 views

CVE-2021-3609

.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root.

7CVSS7.2AI score0.00059EPSS

CVE•added 2024/02/07 9:15 p.m.•242 views

CVE-2023-6535

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, causing kernel panic and a denial of service.

7.5CVSS6.9AI score0.00035EPSS

CVE•added 2024/02/07 9:15 p.m.•232 views

CVE-2023-6536

7.5CVSS6.9AI score0.00029EPSS

CVE•added 2023/10/23 10:15 p.m.•228 views

CVE-2023-5633

The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way memory objects were handled when they were being used to store a surface. When running inside a VMware guest with 3D acceleration enabled, a local, unprivileged user coul...

7.8CVSS6.8AI score0.00015EPSS

CVE•added 2024/02/07 9:15 p.m.•220 views

CVE-2023-6356

7.5CVSS7AI score0.00031EPSS

CVE•added 2024/04/18 7:15 p.m.•169 views

CVE-2023-3758

A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately.

7.1CVSS5.9AI score0.00024EPSS

CVE•added 2025/02/27 4:15 p.m.•41 views

CVE-2025-1756

mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a user's system with elevated privilege, when a crafted file is stored in C:\node_modules. This issue affects mongosh prior to 2.3.0

7.8CVSS7.5AI score0.00019EPSS