red hat enterprise linux 7 vulnerabilities and exploits

(subscribe to this query)

A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` op...

Red Hat Fast Datapath For Red Hat Enterprise Linux 8 Red Hat Fast Datapath For Red Hat Enterprise Linux 9 Red Hat Red Hat Enterprise Linux 9 Red Hat Fast Datapath For Rhel 7 Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 8

A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_whitespace() function. Libsoup clients may read one byte out-of-bounds in response to a crafted HTTP response by an HTTP server.

Red Hat Red Hat Enterprise Linux 10 Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 9

A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service (DoS).

Red Hat Red Hat Enterprise Linux 10 Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 9

A flaw was found in libsoup, where SoupAuthDigest is vulnerable to a NULL pointer dereference. The HTTP server may cause the libsoup client to crash.

Red Hat Red Hat Enterprise Linux 10 Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 9

A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-bounds read. This flaw allows a malicious HTTP client to induce the libsoup server to read out of bounds.

Red Hat Red Hat Enterprise Linux 10 Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 9

A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause libsoup to allocate memory and lead to a denial of service (DoS).

Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 9

A flaw was found in libsoup. The libsoup soup_uri_decode_data_uri() function may crash when processing malformed data URI. This flaw allows an malicious user to cause a denial of service (DoS).

Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 9

A flaw was found in libsoup. When handling cookies, libsoup clients mistakenly allow cookies to be set for public suffix domains if the domain contains at least two components and includes an uppercase character. This bypasses public suffix protections and could allow a malicious...

Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 9

A flaw was found in the OpenJPEG project. A heap buffer overflow condition may be triggered when certain options are specified while using the opj_decompress utility. This can lead to an application crash or other undefined behavior.

Red Hat Red Hat Enterprise Linux 9 Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 8

A flaw was found in the OpenJPEG project. A heap buffer overflow condition may be triggered when certain options are specified while using the opj_decompress utility. This can lead to an application crash or other undefined behavior.

Red Hat Red Hat Enterprise Linux 9 Red Hat Red Hat Enterprise Linux 6 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Enterprise Linux 8

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook