redhat enterprise linux 8.0 vulnerabilities and exploits

(subscribe to this query)

In the Linux kernel prior to 5.1.13, there is a memory leak in drivers/scsi/libsas/sas_expander.c when SAS expander discovery fails. This will cause a BUG and denial of service.

Linux Linux Kernel Debian Debian Linux 8.0 Redhat Enterprise Linux 7.0 Redhat Enterprise Linux 8.0

An information disclosure flaw was found in Buildah, when building containers using chroot isolation. Running processes in container builds (e.g. Dockerfile RUN commands) can access environment variables from parent and grandparent processes. When run in a container in a CI/CD en...

* Buildah Buildah Project Buildah Redhat Enterprise Linux 8.0 Redhat Enterprise Linux For Ibm Z Systems 8.0 Redhat Enterprise Linux For Power Little Endian 8.0

A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user privilege may cause a denial of service problem due to a BUG statement referencing pmd_t x.

Red Hat Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 8.6 Extended Update Support Red Hat Red Hat Enterprise Linux 8.8 Extended Update Support Red Hat Red Hat Virtualization 4 For Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 9 Linux Linux Kernel Redhat Codeready Linux Builder 8.0 Redhat Codeready Linux Builder For Arm64 8.0 Aarch64 Redhat Codeready Linux Builder For Power Little Endian 8.0 Ppc64le Redhat Enterprise Linux 8.0

A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed to be. This issue only affects the ghostscript package as shipped with Red Hat Enterprise Linux 8.

Red Hat Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 9 Artifex Ghostscript Redhat Codeready Linux Builder 8.0 Redhat Codeready Linux Builder For Arm64 8.0 Aarch64 Redhat Codeready Linux Builder For Ibm Z Systems 8.0 S390x Redhat Codeready Linux Builder For Power Little Endian 8.0 Ppc64le Redhat Enterprise Linux 8.0 Redhat Enterprise Linux For Arm 64 8.0 Aarch64 Redhat Enterprise Linux For Ibm Z Systems 8.0 S390x

A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practical because the Linux Vendor Firmware Service (LVFS) is either not implemented or...

* Fwupd Redhat Enterprise Linux 7.0 Redhat Enterprise Linux 8.0

1 Github repository

A vulnerability was found in GNU Nano that allows a possible privilege escalation through an insecure temporary file. If Nano is killed while editing, a file it saves to an emergency file with the permissions of the running user provides a window of opportunity for malicious user...

Gnu Nano Redhat Enterprise Linux 6.0 Redhat Enterprise Linux 7.0 Redhat Enterprise Linux 8.0 Redhat Enterprise Linux 9.0

1 Github repository

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via...

Oracle Corporation Mysql Server Oracle Mysql Debian Debian Linux 8.0 Canonical Ubuntu Linux 16.04 Canonical Ubuntu Linux 18.04 Canonical Ubuntu Linux 18.10 Netapp Oncommand Unified Manager Netapp Oncommand Workflow Automation -Netapp Snapcenter -Netapp Storage Automation Store -Mariadb Mariadb Redhat Enterprise Linux 7.0

A flaw was found in the Linux kernels memory deduplication mechanism. Previous work has shown that memory deduplication can be attacked via a local exploitation mechanism. The same technique can be used if an attacker can upload page sized files and detect the change in access ti...

* Kernel Linux Linux Kernel -Redhat Enterprise Linux 6.0 Redhat Enterprise Linux 7.0 Redhat Enterprise Linux 8.0

An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_sense_page() if the 'page' argument was set to MODE_PAGE_ALLS (0x3f). A malicious guest could use this flaw to potentially crash QEMU, result...

* Qemu Qemu Qemu Redhat Codeready Linux Builder 8.0 Redhat Codeready Linux Builder For Ibm Z Systems 8.0 Redhat Codeready Linux Builder For Power Little Endian 8.0 Redhat Openstack 10 Redhat Openstack 13 Redhat Enterprise Linux 8.0 Redhat Enterprise Linux Advanced Virtualization Eus 8.4 Redhat Enterprise Linux For Ibm Z Systems 8.0 Redhat Enterprise Linux For Power Little Endian 8.0 Debian Debian Linux 9.0

The Linux kernel prior to 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device.

Linux Linux Kernel Redhat Enterprise Linux 8.0 Redhat Enterprise Linux 9.0

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook