Vulnerabilities > Redhat
|2023-03-06||CVE-2019-8720|| Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products |
A vulnerability was found in WebKit.
| 8.8 |
|2023-03-06||CVE-2022-3277|| Resource Exhaustion vulnerability in multiple products |
An uncontrolled resource consumption flaw was found in openstack-neutron.
| 6.5 |
|2023-03-06||CVE-2022-3424|| Use After Free vulnerability in multiple products |
A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function.
| 7.8 |
|2023-03-06||CVE-2022-3707|| Double Free vulnerability in multiple products |
A double-free memory flaw was found in the Linux kernel.
| 5.5 |
|2023-03-06||CVE-2022-3854|| Unspecified vulnerability in Redhat Ceph Storage 3.0/4.0/5.0 |
A flaw was found in Ceph, relating to the URL processing on RGW backends.
| 6.5 |
|2023-03-06||CVE-2022-4134|| Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products |
A flaw was found in openstack-glance.
| 2.8 |
|2023-03-06||CVE-2022-4904|| Improper Input Validation vulnerability in multiple products |
A flaw was found in the c-ares package.
low complexityc-ares-project redhat fedoraproject CWE-20
| 8.6 |
|2023-03-03||CVE-2023-27561|| Use of Incorrectly-Resolved Name or Reference vulnerability in multiple products |
runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go.
high complexitylinuxfoundation redhat CWE-706
| 7.0 |
|2023-03-03||CVE-2022-41862|| In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. |
high complexitypostgresql fedoraproject redhat
| 3.7 |
|2023-02-28||CVE-2023-1095|| NULL Pointer Dereference vulnerability in multiple products |
In nf_tables_updtable, if nf_tables_table_enable returns an error, nft_trans_destroy is called to free the transaction object.
| 5.5 |