|Max CVSS||7.2||Min CVSS||4.3||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
When handling a SSLv2-compatible ClientHello request, the server doesn't generate a new random value but sends an all-zero value instead. This results in full malleability of the ClientHello for SSLv2 used for TLS 1.2 in all versions prior to NSS 3.3
|16-10-2019 - 18:15||29-04-2019 - 15:29|
A flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. An attacker could use this flaw to read memory from other locations into the stored dict value.
|02-04-2019 - 07:29||04-09-2018 - 14:29|
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6
|21-03-2019 - 16:00||25-09-2018 - 21:29|