Lucene search
+L
RedhatFedora

9 matches found

CVE
CVE
added 2018/11/09 9:0 p.m.194 views

CVE-2018-19139

CVE-2018-19139 affects JasPer 2.0.14 with a memory leak in jas_malloc.c (called from jpc_unk_getparms in jpc_cs.c). Public details in the initial document confirm the memory leak, while connected entries corroborate that multiple vendors/distributions have published fixes or mitigations. Practica...

5.5CVSS6.1AI score0.01661EPSS
CVE
CVE
added 2009/11/20 5:0 p.m.134 views

CVE-2009-3080

CVE-2009-3080 affects the Linux kernel gdth driver (gdth_read_event in drivers/scsi/gdth.c). In kernels before 2.6.32-rc8, a negative event index in an IOCTL can allow local users to cause a denial of service or potentially gain privileges. MiracleLinux advisories cite this CVE as part of affecte...

7.2CVSS7AI score0.00417EPSS
CVE
CVE
added 2008/05/22 10:0 a.m.85 views

CVE-2007-5962

CVE-2007-5962 describes a memory-leak vulnerability in vsftpd triggered by a large number of CWD commands when the deny_file option is set. The issue affects vsftpd 2.0.5 on Red Hat Enterprise Linux 5 and Fedora 6–8, as well as Foresight Linux and rPath appliances. Remote attackers could cause de...

7.1CVSS6.2AI score0.12061EPSS
CVE
CVE
added 2008/01/12 2:0 a.m.81 views

CVE-2007-6284

CVE-2007-6284 describes a denial-of-service vulnerability in libxml2 where the function xmlCurrentChar() mishandles certain UTF-8 sequences, allowing context-dependent attackers to cause an infinite loop or high CPU consumption when parsing XML. The issue is triggered by malformed XML content and...

5CVSS5.9AI score0.02566EPSS
CVE
CVE
added 2011/02/24 8:0 p.m.75 views

CVE-2011-1011

CVE-2011-1011 affects the seunshare_mount path in the policycoreutils seunshare sandbox. The vulnerability arises when seunshare mounts a new /tmp directory without root ownership and the sticky bit, allowing a local user to overwrite or delete arbitrary /tmp files and potentially escalate privil...

6.9CVSS6.7AI score0.00368EPSS
CVE
CVE
added 2008/09/29 5:0 p.m.74 views

CVE-2008-3524

CVE-2008-3524 : The initscripts package (rc.sysinit) vulnerability allows local users to delete arbitrary files via a symlink attack on files under /var/lock or /var/run. Affected: initscripts before 8.76.3-1 on Fedora 9 and other Linux platforms. Root cause implied: race/symlink handling in rc.s...

4.7CVSS6AI score0.00349EPSS
Web
CVE
CVE
added 2009/05/06 5:0 p.m.66 views

CVE-2009-1573

What is affected. xvfb-run 1.6.1 (Debian/Ubuntu/Fedora and possibly other OSes) has the flaw. The root cause described in the CVE context is that the X11 magic cookie (MCOOKIE) is exposed on the command line, which can be discovered by local users. Impact. Local privilege escalation by listing th...

4.6CVSS6.5AI score0.00456EPSS
CVE
CVE
added 2007/08/30 10:0 p.m.60 views

CVE-2007-4134

CVE-2007-4134 affects the Star archiver. A directory traversal defect in extract.c (Star) before version 1.5a84 lets remote users craft tar archives containing //.. sequences in directory symlinks, enabling overwriting of arbitrary files on the host with the permissions of the user running Star. ...

6.8CVSS6.4AI score0.03009EPSS
CVE
CVE
added 2008/10/03 5:18 p.m.59 views

CVE-2008-3832

CVE-2008-3832 affects Fedora 8/9 Linux kernels patched for the utrace subsystem: a NULL pointer dereference in the utrace_control path can be triggered locally, causing a denial of service (kernel crash/hang). The vulnerable configurations are Fedora 8 before 2.6.26.5-28 and Fedora 9 before 2.6.2...

4.9CVSS6.2AI score0.00782EPSS