Redhat Enterprise Linux vulnerabilities

1,738 known vulnerabilities affecting redhat/enterprise_linux.

Total CVEs

1,738

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL157HIGH589MEDIUM839LOW153

Vulnerabilities

Page 80 of 87

CVE-2008-2944MEDIUMCVSS 4.9v5.02008-06-30

CVE-2008-2944 [MEDIUM] CVE-2008-2944: Double free vulnerability in the utrace support in the Linux kernel, probably 2.6.18, in Red Hat Ent Double free vulnerability in the utrace support in the Linux kernel, probably 2.6.18, in Red Hat Enterprise Linux (RHEL) 5 and Fedora Core 6 (FC6) allows local users to cause a denial of service (oops), as demonstrated by a crash when running the GNU GDB testsuite, a different vulnerability than CVE-2008-2365.

nvd

CVE-2008-2365MEDIUMCVSS 4.7PoCv4.02008-06-30

CVE-2008-2365 [MEDIUM] CWE-362 CVE-2008-2365: Race condition in the ptrace and utrace support in the Linux kernel 2.6.9 through 2.6.25, as used in Race condition in the ptrace and utrace support in the Linux kernel 2.6.9 through 2.6.25, as used in Red Hat Enterprise Linux (RHEL) 4, allows local users to cause a denial of service (oops) via a long series of PTRACE_ATTACH ptrace calls to another user's process that trigger a conflict between utrace_detach and report_quiescent, related to "late ptr

nvd

CVE-2008-1951MEDIUMCVSS 4.6v4v52008-06-25

CVE-2008-1951 [MEDIUM] CWE-264 CVE-2008-1951: Untrusted search path vulnerability in a certain Red Hat build script for Standards Based Linux Inst Untrusted search path vulnerability in a certain Red Hat build script for Standards Based Linux Instrumentation for Manageability (sblim) libraries before 1-13a.el4_6.1 in Red Hat Enterprise Linux (RHEL) 4, and before 1-31.el5_2.1 in RHEL 5, allows local users to gain privileges via a malicious library in a certain subdirectory of /var/tmp, related to

nvd

CVE-2008-1036MEDIUMCVSS 4.3v52008-06-02

CVE-2008-1036 [MEDIUM] CWE-79 CVE-2008-1036: The International Components for Unicode (ICU) library in Apple Mac OS X before 10.5.3, Red Hat Ente The International Components for Unicode (ICU) library in Apple Mac OS X before 10.5.3, Red Hat Enterprise Linux 5, and other operating systems omits some invalid character sequences during conversion of some character encodings, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.

nvd

CVE-2008-1767HIGHCVSS 7.5PoCv2.1v3.0+2 more2008-05-23

CVE-2008-1767 [HIGH] CWE-119 CVE-2008-1767: Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps.

nvd

CVE-2007-5962HIGHCVSS 7.1PoCv5.02008-05-22

CVE-2007-5962 [HIGH] CWE-399 CVE-2007-5962: Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 and Fedora 6 through 8, and on Foresight Linux and rPath appliances, allows remote attackers to cause a denial of service (memory consumption) via a large number of CWD commands, as demonstrated by an attack on a daemon with the deny_file configuration o

nvd

CVE-2007-6282HIGHCVSS 7.1vas_4ves_4+1 more2008-05-08

CVE-2007-6282 [HIGH] CWE-16 CVE-2007-6282: The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of se The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV.

nvd

CVE-2007-5001MEDIUMCVSS 4.9vas_3ves_3+1 more2008-05-08

CVE-2007-5001 [MEDIUM] CWE-399 CVE-2007-5001: Linux kernel before 2.4.21 allows local users to cause a denial of service (kernel panic) via asynch Linux kernel before 2.4.21 allows local users to cause a denial of service (kernel panic) via asynchronous input or output on a FIFO special file.

nvd

CVE-2008-1615MEDIUMCVSS 4.9vas_4ves_4+1 more2008-05-08

CVE-2008-1615 [MEDIUM] CWE-399 CVE-2008-1615: Linux kernel 2.6.18, and possibly other versions, when running on AMD64 architectures, allows local Linux kernel 2.6.18, and possibly other versions, when running on AMD64 architectures, allows local users to cause a denial of service (crash) via certain ptrace calls.

nvd

CVE-2008-0884MEDIUMCVSS 6.9v5.02008-04-04

CVE-2008-0884 [MEDIUM] CWE-732 CVE-2008-0884: The Replace function in the capp-lspp-config script in the (1) lspp-eal4-config-ibm and (2) capp-lsp The Replace function in the capp-lspp-config script in the (1) lspp-eal4-config-ibm and (2) capp-lspp-eal4-config-hp packages before 0.65-2 in Red Hat Enterprise Linux (RHEL) 5 uses lstat instead of stat to determine the /etc/pam.d/system-auth file permissions, leading to a change to world-writable permissions for the /etc/pam.d/system-auth-ac file, w

nvd

CVE-2008-1198HIGHCVSS 7.1v4.0v3.0+1 more2008-03-06

CVE-2008-1198 [HIGH] CVE-2008-1198: The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggre The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key (PSK) hash.

nvd

CVE-2008-0595MEDIUMCVSS 4.6v5v5.02008-02-29

CVE-2008-0595 [MEDIUM] CWE-863 CVE-2008-0595: dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface.

nvd

CVE-2007-4130HIGHCVSS 7.2v4.02008-02-05

CVE-2007-4130 [HIGH] CWE-20 CVE-2007-4130: The Linux kernel 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64) does n The Linux kernel 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64) does not properly handle page faults during NUMA memory access, which allows local users to cause a denial of service (panic) via invalid arguments to set_mempolicy in an MPOL_BIND operation.

nvd

CVE-2007-6285MEDIUMCVSS 6.2v4.0v5.02007-12-20

CVE-2007-6285 [MEDIUM] CWE-16 CVE-2007-6285: The default configuration for autofs 5 (autofs5) in some Linux distributions, such as Red Hat Enterp The default configuration for autofs 5 (autofs5) in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 4 and 5, does not specify the nodev mount option for the -hosts map, which allows local users to access "important devices" by operating a remote NFS server and creating special device files on that server, as demonstrated by the /dev/m

nvd

CVE-2007-6283MEDIUMCVSS 4.9v5.02007-12-18

CVE-2007-6283 [MEDIUM] CWE-200 CVE-2007-6283: Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable permis Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable permissions, which allows local users to perform unauthorized named commands, such as causing a denial of service by stopping named.

nvd

CVE-2007-5964MEDIUMCVSS 6.9v5.02007-12-13

CVE-2007-5964 [MEDIUM] CWE-16 CVE-2007-5964: The default configuration of autofs 5 in some Linux distributions, such as Red Hat Enterprise Linux The default configuration of autofs 5 in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 5, omits the nosuid option for the hosts (/net filesystem) map, which allows local users to gain privileges via a setuid program on a remote NFS server.

nvd

CVE-2006-7226MEDIUMCVSS 4.3v4.02007-12-03

CVE-2006-7226 [MEDIUM] CVE-2006-7226: Perl-Compatible Regular Expression (PCRE) library before 6.7 does not properly calculate the compile Perl-Compatible Regular Expression (PCRE) library before 6.7 does not properly calculate the compiled memory allocation for regular expressions that involve a quantified "subpattern containing a named recursion or subroutine reference," which allows context-dependent attackers to cause a denial of service (error or crash).

nvd

CVE-2007-5494MEDIUMCVSS 4.9v4.0v5.02007-11-30

CVE-2007-5494 [MEDIUM] CWE-399 CVE-2007-5494: Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux (RHEL) 4 and Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux (RHEL) 4 and 5 allows local users to cause a denial of service (memory consumption) via a large number of open requests involving O_ATOMICLOOKUP.

nvd

CVE-2007-5116HIGHCVSS 7.5v1.02007-11-07

CVE-2007-5116 [HIGH] CWE-119 CVE-2007-5116: Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Pe Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.

nvd

CVE-2007-4574MEDIUMCVSS 4.7v5.02007-10-23

CVE-2007-4574 [MEDIUM] CVE-2007-4574: Unspecified vulnerability in the "stack unwinder fixes" in kernel in Red Hat Enterprise Linux 5, whe Unspecified vulnerability in the "stack unwinder fixes" in kernel in Red Hat Enterprise Linux 5, when running on AMD64 and Intel 64, allows local users to cause a denial of service via unknown vectors.

nvd

← Previous80 / 87Next →