Codeready Linux Builder FOR IBM Z Systems

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-27	CVE-2023-4641	Improper Authentication vulnerability in multiple products A flaw was found in shadow-utils. local low complexity shadow-maint redhat CWE-287	5.5
2023-10-23	CVE-2023-5633	Use After Free vulnerability in multiple products The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way memory objects were handled when they were being used to store a surface. local low complexity linux redhat CWE-416	7.8
2023-09-18	CVE-2023-4527	Out-of-bounds Read vulnerability in multiple products A flaw was found in glibc. network high complexity gnu redhat fedoraproject netapp CWE-125	6.5
2023-09-18	CVE-2023-4806	Use After Free vulnerability in multiple products A flaw was found in glibc. network high complexity gnu redhat fedoraproject CWE-416	5.9
2023-08-23	CVE-2023-4042	Out-of-bounds Write vulnerability in multiple products A flaw was found in ghostscript. local low complexity artifex redhat CWE-787	5.5
2022-03-10	CVE-2021-3733	Resource Exhaustion vulnerability in multiple products There's a flaw in urllib's AbstractBasicAuthHandler class. network low complexity python redhat fedoraproject netapp CWE-400	6.5
2022-03-04	CVE-2021-3737	Infinite Loop vulnerability in multiple products A flaw was found in python. network low complexity python redhat fedoraproject canonical netapp oracle CWE-835	7.5
2022-02-18	CVE-2021-3930	Off-by-one Error vulnerability in multiple products An off-by-one error was found in the SCSI device emulation in QEMU. local low complexity qemu redhat debian CWE-193	6.5
2021-01-05	CVE-2020-27842	Out-of-bounds Read vulnerability in multiple products There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. local low complexity uclouvain fedoraproject debian redhat oracle CWE-125	5.5