CVE's linked by advisories.rhsa.id

Max CVSS

10.0

Min CVSS

2.1

Total Count

ID	CVSS	Summary	Last (major) update	Published
CVE-2020-10757	6.9	A flaw was found in the Linux Kernel in versions after 4.5-rc1 in the way mremap handled DAX Huge Pages. This flaw allows a local attacker with access to a DAX enabled storage to escalate their privileges on the system.	19-01-2024 - 17:51	09-06-2020 - 13:15
CVE-2012-5639	4.3	LibreOffice and OpenOffice automatically open embedded content	04-01-2024 - 00:15	20-12-2019 - 14:15
CVE-2014-3585	10.0	redhat-upgrade-tool: Does not check GPG signatures when upgrading versions	13-02-2023 - 00:40	22-11-2019 - 15:15
CVE-2019-18388	2.1	A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via malformed commands.	03-02-2023 - 18:52	23-12-2019 - 16:15
CVE-2019-18390	3.6	An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_BLIT commands.	03-02-2023 - 18:42	23-12-2019 - 16:15
CVE-2019-18389	4.6	A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service, or QEMU guest-to-host escape and code execution, via VIRGL_CCMD_RESO	02-02-2023 - 18:52	23-12-2019 - 16:15
CVE-2019-18391	2.1	A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_RESOURCE_INLINE_WRITE commands.	02-02-2023 - 18:50	23-12-2019 - 16:15
CVE-2014-3643	5.0	jersey: XXE via parameter entities not disabled by the jersey SAX parser	25-07-2022 - 18:15	15-12-2019 - 22:15
CVE-2014-4650	7.5	The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path separators, which allows remote attackers to read script source code or conduct directory traversal attacks and execute unintended	27-06-2022 - 16:20	20-02-2020 - 17:15
CVE-2012-6094	6.8	cups (Common Unix Printing System) 'Listen localhost:631' option not honored correctly which could provide unauthorized access to the system	16-11-2020 - 20:46	20-12-2019 - 15:15
CVE-2012-3409	4.6	ecryptfs-utils: suid helper does not restrict mounting filesystems with nosuid,nodev which creates a possible privilege escalation	03-01-2020 - 15:36	20-12-2019 - 14:15
CVE-2012-6111	5.0	gnome-keyring does not discard stored secrets when using gnome_keyring_lock_all_sync function	02-01-2020 - 15:24	20-12-2019 - 15:15
CVE-2014-3701	9.3	eDeploy has tmp file race condition flaws	19-12-2019 - 20:51	15-12-2019 - 22:15
CVE-2014-3699	7.5	eDeploy has RCE via cPickle deserialization of untrusted data	19-12-2019 - 14:35	15-12-2019 - 22:15
CVE-2012-5640	2.1	thttpd has a local DoS vulnerability via specially-crafted .htpasswd files	04-12-2019 - 16:18	25-11-2019 - 15:15
CVE-2012-5578	2.1	Python keyring has insecure permissions on new databases allowing world-readable files to be created	04-12-2019 - 15:55	25-11-2019 - 13:15
CVE-2012-5644	4.9	libuser has information disclosure when moving user's home directory	04-12-2019 - 15:47	25-11-2019 - 15:15
CVE-2012-5630	3.3	libuser 0.56 and 0.57 has a TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees.	04-12-2019 - 15:43	25-11-2019 - 14:15
CVE-2014-8167	4.3	vdsm and vdsclient does not validate certficate hostname from another vdsm which could facilitate a man-in-the-middle attack	15-11-2019 - 16:10	13-11-2019 - 17:15
CVE-2011-3618	4.6	atop: symlink attack possible due to insecure tempfile handling	14-11-2019 - 18:37	12-11-2019 - 15:15
CVE-2011-2935	4.3	Elgg through 1.7.10 has XSS	13-11-2019 - 19:29	12-11-2019 - 14:15
CVE-2011-2936	7.5	Elgg through 1.7.10 has a SQL injection vulnerability	12-11-2019 - 21:53	12-11-2019 - 14:15
CVE-2011-3370	4.3	statusnet before 0.9.9 has XSS	12-11-2019 - 21:16	12-11-2019 - 14:15