Linux Security Vulnerabilities and Issues — Linux CVE List

Lucene search

RedhatLinux

93 matches found

CVE•added 2000/02/04 5:0 a.m.•423 views

CVE-1999-0502

A Unix account has a default, null, blank, or missing password.

7.5CVSS6.4AI score0.35822EPSS

CVE•added 2018/10/09 10:29 p.m.•133 views

CVE-2018-17962

Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c because an incorrect integer data type is used.

7.5CVSS8.5AI score0.00711EPSS

CVE•added 2004/11/23 5:0 a.m.•108 views

CVE-2004-0079

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.

7.5CVSS7.1AI score0.02058EPSS

CVE•added 2016/10/07 2:59 p.m.•101 views

CVE-2016-3699

The Linux kernel, as used in Red Hat Enterprise Linux 7.2 and Red Hat Enterprise MRG 2 and when booted with UEFI Secure Boot enabled, allows local users to bypass intended Secure Boot restrictions and execute untrusted code by appending ACPI tables to the initrd.

7.4CVSS8.2AI score0.00038EPSS

CVE•added 2005/04/03 5:0 a.m.•95 views

CVE-2005-0750

The bluez_sock_create function in the Bluetooth stack for Linux kernel 2.4.6 through 2.4.30-rc1 and 2.6 through 2.6.11.5 allows local users to gain privileges via (1) socket or (2) socketpair call with a negative protocol value.

7.2CVSS5.3AI score0.002EPSS

CVE•added 2000/03/22 5:0 a.m.•84 views

CVE-2000-0219

Red Hat 6.0 allows local users to gain root access by booting single user and hitting ^C at the password prompt.

7.2CVSS6.7AI score0.00416EPSS

CVE•added 2005/04/27 4:0 a.m.•81 views

CVE-2005-0206

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

7.5CVSS6.7AI score0.06529EPSS

CVE•added 2000/01/04 5:0 a.m.•75 views

CVE-1999-0710

The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to other systems.

7.5CVSS6.2AI score0.12632EPSS

CVE•added 2002/06/25 4:0 a.m.•69 views

CVE-2001-0872

OpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment variables such as LD_PRELOAD, which allows local users to gain root privileges.

7.2CVSS9.1AI score0.00213EPSS

CVE•added 2003/04/02 5:0 a.m.•68 views

CVE-2002-0062

Buffer overflow in ncurses 5.0, and the ncurses4 compatibility package as used in Red Hat Linux, allows local users to gain privileges, related to "routines for moving the physical cursor and scrolling."

7.2CVSS6.5AI score0.00194EPSS

CVE•added 2003/07/24 4:0 a.m.•66 views

CVE-2003-0434

Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink.

7.5CVSS7.5AI score0.25515EPSS

CVE•added 1999/09/29 4:0 a.m.•63 views

CVE-1999-0405

A buffer overflow in lsof allows local users to obtain root privilege.

7.2CVSS7.1AI score0.0018EPSS

CVE•added 2001/01/22 5:0 a.m.•63 views

CVE-2000-1095

modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary commands via shell metacharacters.

7.2CVSS7.2AI score0.00211EPSS

CVE•added 2001/01/22 5:0 a.m.•57 views

CVE-2000-0867

Kernel logging daemon (klogd) in Linux does not properly cleanse user-injected format strings, which allows local users to gain root privileges by triggering malformed kernel messages.

7.2CVSS6.5AI score0.00071EPSS

CVE•added 2003/06/16 4:0 a.m.•57 views

CVE-2003-0370

Konqueror Embedded and KDE 2.2.2 and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates via a man-in-the-middle attack.

7.5CVSS6.3AI score0.00942EPSS

CVE•added 1999/09/29 4:0 a.m.•56 views

CVE-1999-0041

Buffer overflow in NLS (Natural Language Service).

7.5CVSS7.7AI score0.07175EPSS

CVE•added 1999/09/29 4:0 a.m.•55 views

CVE-1999-0034

Buffer overflow in suidperl (sperl), Perl 4.x and 5.x.

7.2CVSS7.7AI score0.00233EPSS

CVE•added 2000/02/04 5:0 a.m.•55 views

CVE-1999-0434

XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.

7.5CVSS7.1AI score0.00429EPSS

CVE•added 2000/01/18 5:0 a.m.•55 views

CVE-1999-0768

Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable.

7.5CVSS7.3AI score0.04911EPSS

CVE•added 2000/06/02 4:0 a.m.•55 views

CVE-2000-0229

gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root.

7.2CVSS6.5AI score0.00113EPSS

CVE•added 2000/10/13 4:0 a.m.•55 views

CVE-2000-0566

makewhatis in Linux man package allows local users to overwrite files via a symlink attack.

7.2CVSS6.2AI score0.00083EPSS

CVE•added 1999/09/29 4:0 a.m.•54 views

CVE-1999-0131

Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.

7.2CVSS6.8AI score0.00096EPSS

CVE•added 2000/01/04 5:0 a.m.•54 views

CVE-1999-0769

Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.

7.2CVSS6.9AI score0.00148EPSS

CVE•added 2001/01/09 5:0 a.m.•54 views

CVE-2000-1134

Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.

7.2CVSS6.2AI score0.00177EPSS

CVE•added 2004/12/06 5:0 a.m.•54 views

CVE-2004-0619

Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a negative add_dsa_buf_bytes variable, which leads to a buffer overflow.

7.2CVSS7.6AI score0.00068EPSS

CVE•added 2000/04/25 4:0 a.m.•53 views

CVE-1999-0997

wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.

7.5CVSS6.6AI score0.03822EPSS

CVE•added 2000/04/18 4:0 a.m.•53 views

CVE-2000-0052

Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.

7.2CVSS6.9AI score0.00311EPSS

CVE•added 2002/03/09 5:0 a.m.•53 views

CVE-2001-0690

Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers.

7.5CVSS7.5AI score0.19934EPSS

CVE•added 2002/06/25 4:0 a.m.•53 views

CVE-2001-1030

Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.

7.5CVSS6.5AI score0.00184EPSS

CVE•added 2000/01/04 5:0 a.m.•52 views

CVE-1999-0705

Buffer overflow in INN inews program.

7.5CVSS6.9AI score0.06629EPSS

CVE•added 2000/07/12 4:0 a.m.•52 views

CVE-2000-0392

Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges.

7.2CVSS6.8AI score0.00114EPSS

CVE•added 2000/02/04 5:0 a.m.•51 views

CVE-1999-0872

Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.

7.2CVSS7.2AI score0.00063EPSS

CVE•added 2002/06/25 4:0 a.m.•51 views

CVE-2002-0004

Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice.

7.2CVSS7.2AI score0.00274EPSS

CVE•added 2004/02/17 5:0 a.m.•51 views

CVE-2003-0989

tcpdump before 3.8.1 allows remote attackers to cause a denial of service (infinite loop) via certain ISAKMP packets, a different vulnerability than CVE-2004-0057.

7.5CVSS6.2AI score0.25252EPSS

CVE•added 2000/01/04 5:0 a.m.•50 views

CVE-1999-0297

Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.

7.2CVSS7.2AI score0.00063EPSS

CVE•added 2000/04/27 4:0 a.m.•50 views

CVE-1999-0706

Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables.

7.5CVSS7AI score0.00862EPSS

CVE•added 2000/01/04 5:0 a.m.•50 views

CVE-1999-0868

ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN.

7.2CVSS8.2AI score0.00168EPSS

CVE•added 2001/06/27 4:0 a.m.•50 views

CVE-2001-0441

Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header.

7.5CVSS7.8AI score0.01437EPSS

CVE•added 2003/04/02 5:0 a.m.•50 views

CVE-2002-0506

Buffer overflow in newt.c of newt windowing library (libnewt) 0.50.33 and earlier may allow attackers to cause a denial of service or execute arbitrary code in setuid programs that use libnewt.

7.2CVSS8.2AI score0.0006EPSS

CVE•added 1999/09/29 4:0 a.m.•49 views

CVE-1999-0130

Local users can start Sendmail in daemon mode and gain root privileges.

7.2CVSS7AI score0.00886EPSS

CVE•added 2000/07/19 4:0 a.m.•49 views

CVE-2000-0606

Buffer overflow in kon program in Kanji on Console (KON) package on Linux may allow local users to gain root privileges via a long -StartupMessage parameter.

7.2CVSS7.2AI score0.00063EPSS

CVE•added 2001/09/18 4:0 a.m.•49 views

CVE-2001-0473

Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands.

7.5CVSS7.3AI score0.00811EPSS

CVE•added 2002/06/25 4:0 a.m.•49 views

CVE-2002-0002

Format string vulnerability in stunnel before 3.22 when used in client mode for (1) smtp, (2) pop, or (3) nntp allows remote malicious servers to execute arbitrary code.

7.5CVSS7.4AI score0.14916EPSS

CVE•added 2002/06/25 4:0 a.m.•49 views

CVE-2002-0045

slapd in OpenLDAP 2.0 through 2.0.19 allows local users, and anonymous users before 2.0.8, to conduct a "replace" action on access controls without any values, which causes OpenLDAP to delete non-mandatory attributes that would otherwise be protected by ACLs.

7.5CVSS6.3AI score0.03236EPSS

CVE•added 2004/09/01 4:0 a.m.•49 views

CVE-2002-0836

dvips converter for Postscript files in the tetex package calls the system() function insecurely, which allows remote attackers to execute arbitrary commands via certain print jobs, possibly involving fonts.

7.5CVSS7.4AI score0.12437EPSS

CVE•added 2000/04/10 4:0 a.m.•48 views

CVE-2000-0196

Buffer overflow in mhshow in the Linux nmh package allows remote attackers to execute commands via malformed MIME headers in an email message.

7.5CVSS7.9AI score0.01316EPSS

CVE•added 2001/05/07 4:0 a.m.•48 views

CVE-2001-0128

Zope before 2.2.4 does not properly compute local roles, which could allow users to bypass specified access restrictions and gain privileges.

7.2CVSS6.6AI score0.00055EPSS

CVE•added 2003/06/16 4:0 a.m.•48 views

CVE-2002-1155

Buffer overflow in KON kon2 0.3.9b and earlier allows local users to execute arbitrary code via a long -Coding command line argument.