Redhat Enterprise Linux vulnerabilities
1,738 known vulnerabilities affecting redhat/enterprise_linux.
Total CVEs
1,738
CISA KEV
20
actively exploited
Public exploits
88
Exploited in wild
26
Severity breakdown
CRITICAL157HIGH589MEDIUM839LOW153
Vulnerabilities
Page 29 of 87
CVE-2021-3594LOWCVSS 3.8v8.02021-06-15
CVE-2021-3594 [LOW] CWE-824 CVE-2021-3594: An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. Th
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp_input() function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest t
nvd
CVE-2021-3592LOWCVSS 3.8v8.02021-06-15
CVE-2021-3592 [LOW] CWE-824 CVE-2021-3592: An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. Th
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the bootp_input() function and could occur while processing a udp packet that is smaller than the size of the 'bootp_t' structure. A malicious guest could use this flaw to leak 10 bytes of uninitialized heap memory from the host. The highe
nvd
CVE-2021-3595LOWCVSS 3.8v8.02021-06-15
CVE-2021-3595 [LOW] CWE-824 CVE-2021-3595: An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. Th
An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the tftp_input() function and could occur while processing a udp packet that is smaller than the size of the 'tftp_t' structure. This issue may lead to out-of-bounds read access or indirect host memory disclosure to the guest. The highest
nvd
CVE-2021-0129MEDIUMCVSS 5.7v7.0v8.02021-06-09
CVE-2021-0129 [MEDIUM] CVE-2021-0129: Improper access control in BlueZ may allow an authenticated user to potentially enable information d
Improper access control in BlueZ may allow an authenticated user to potentially enable information disclosure via adjacent access.
nvd
CVE-2021-3565MEDIUMCVSS 5.9v8.02021-06-04
CVE-2021-3565 [MEDIUM] CWE-665 CVE-2021-3565: A flaw was found in tpm2-tools in versions before 5.1.1 and before 4.3.2. tpm2_import used a fixed A
A flaw was found in tpm2-tools in versions before 5.1.1 and before 4.3.2. tpm2_import used a fixed AES key for the inner wrapper, potentially allowing a MITM attacker to unwrap the inner portion and reveal the key being imported. The highest threat from this vulnerability is to data confidentiality.
nvd
CVE-2021-3569MEDIUMCVSS 5.5v8.02021-06-03
CVE-2021-3569 [MEDIUM] CWE-120 CVE-2021-3569: A stack corruption bug was found in libtpms in versions before 0.7.2 and before 0.8.0 while decrypti
A stack corruption bug was found in libtpms in versions before 0.7.2 and before 0.8.0 while decrypting data using RSA. This flaw could result in a SIGBUS (bad memory access) and termination of swtpm. The highest threat from this vulnerability is to system availability.
nvd
CVE-2019-12067MEDIUMCVSS 6.5v8.02021-06-02
CVE-2019-12067 [MEDIUM] CWE-476 CVE-2019-12067: The ahci_commit_buf function in ide/ahci.c in QEMU allows attackers to cause a denial of service (NU
The ahci_commit_buf function in ide/ahci.c in QEMU allows attackers to cause a denial of service (NULL dereference) when the command header 'ad->cur_cmd' is null.
nvd
CVE-2020-10742MEDIUMCVSS 6.0v6.02021-06-02
CVE-2020-10742 [MEDIUM] CWE-787 CVE-2020-10742: A flaw was found in the Linux kernel. An index buffer overflow during Direct IO write leading to the
A flaw was found in the Linux kernel. An index buffer overflow during Direct IO write leading to the NFS client to crash. In some cases, a reach out of the index after one memory allocation by kmalloc will cause a kernel panic. The highest threat from this vulnerability is to data confidentiality and system availability.
nvd
CVE-2021-3516HIGHCVSS 7.8v6.0v7.0+1 more2021-06-01
CVE-2021-3516 [HIGH] CWE-416 CVE-2021-3516: There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a c
There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability.
nvd
CVE-2021-32027HIGHCVSS 8.8v7.0v8.02021-06-01
CVE-2021-32027 [HIGH] CWE-190 CVE-2021-32027: A flaw was found in postgresql in versions before 13.3, before 12.7, before 11.12, before 10.17 and
A flaw was found in postgresql in versions before 13.3, before 12.7, before 11.12, before 10.17 and before 9.6.22. While modifying certain SQL array values, missing bounds checks let authenticated database users write arbitrary bytes to a wide area of server memory. The highest threat from this vulnerability is to data confidentiality and integrity as
nvd
CVE-2021-3543MEDIUMCVSS 6.7v8.02021-06-01
CVE-2021-3543 [MEDIUM] CWE-416 CVE-2021-3543: A flaw null pointer dereference in the Nitro Enclaves kernel driver was found in the way that Enclav
A flaw null pointer dereference in the Nitro Enclaves kernel driver was found in the way that Enclaves VMs forces closures on the enclave file descriptor. A local user of a host machine could use this flaw to crash the system or escalate their privileges on the system.
nvd
CVE-2021-20236CRITICALCVSS 9.8v7.02021-05-28
CVE-2021-20236 [CRITICAL] CWE-120 CVE-2021-20236: A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
nvd
CVE-2020-25710HIGHCVSS 7.5v5.0v6.0+1 more2021-05-28
CVE-2020-25710 [HIGH] CWE-617 CVE-2020-25710: A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a mal
A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest threat from this vulnerability is to system availability.
nvd
CVE-2021-20292MEDIUMCVSS 6.7v6.0v7.02021-05-28
CVE-2021-20292 [MEDIUM] CWE-416 CVE-2021-20292: There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouve
There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker with a local account with a root privilege, can leverag
nvd
CVE-2021-20201MEDIUMCVSS 5.3v6.0v7.0+1 more2021-05-28
CVE-2021-20201 [MEDIUM] CWE-400 CVE-2021-20201: A flaw was found in spice in versions before 0.14.92. A DoS tool might make it easier for remote att
A flaw was found in spice in versions before 0.14.92. A DoS tool might make it easier for remote attackers to cause a denial of service (CPU consumption) by performing many renegotiations within a single connection.
nvd
CVE-2021-20239LOWCVSS 3.3v5.0v6.0+1 more2021-05-28
CVE-2021-20239 [LOW] CWE-822 CVE-2021-20239: A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw allows
A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw allows an attacker with a local account to leak information about kernel internal addresses. The highest threat from this vulnerability is to confidentiality.
nvd
CVE-2021-30500HIGHCVSS 7.8v7.02021-05-27
CVE-2021-30500 [HIGH] CWE-476 CVE-2021-30500: Null pointer dereference was found in upx PackLinuxElf::canUnpack() in p_lx_elf.cpp,in version UPX 4
Null pointer dereference was found in upx PackLinuxElf::canUnpack() in p_lx_elf.cpp,in version UPX 4.0.0. That allow attackers to execute arbitrary code and cause a denial of service via a crafted file.
nvd
CVE-2021-30501MEDIUMCVSS 5.5v7.02021-05-27
CVE-2021-30501 [MEDIUM] CWE-20 CVE-2021-30501: An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow al
An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service (abort) via a crafted file.
nvd
CVE-2020-14301MEDIUMCVSS 6.5v8.02021-05-27
CVE-2020-14301 [MEDIUM] CWE-212 CVE-2020-14301: An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies
An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive information in the domain configuration via the `dumpxml` command.
nvd
CVE-2020-1702LOWCVSS 3.3v8.02021-05-27
CVE-2020-1702 [LOW] CWE-400 CVE-2020-1702: A malicious container image can consume an unbounded amount of memory when being pulled to a contain
A malicious container image can consume an unbounded amount of memory when being pulled to a container runtime host, such as Red Hat Enterprise Linux using podman, or OpenShift Container Platform. An attacker can use this flaw to trick a user, with privileges to pull container images, into crashing the process responsible for pulling the image. This flaw
nvd