Linux Enterprise@15.0 Security Vulnerabilities and Issues — Linux Enterprise@15.0 CVE List

Lucene search

SuseLinux Enterprise15.0

3 matches found

CVE•added 2022/01/01 6:15 a.m.•432 views

CVE-2021-41819

CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affects the CGI gem through 0.3.0 for Ruby.

7.5CVSS7.5AI score0.00673EPSS

CVE•added 2022/01/01 5:15 a.m.•385 views

CVE-2021-41817

Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1.

7.5CVSS7.4AI score0.00422EPSS

CVE•added 2022/08/24 4:15 p.m.•257 views

CVE-2021-4028

A flaw in the Linux kernel's implementation of RDMA communications manager listener code allowed an attacker with local access to setup a socket to listen on a high port allowing for a list element to be used after free. Given the ability to execute code, a local attacker could leverage this use-af...

7.8CVSS7.8AI score0.00031EPSS