Vulnerabilities > Redhat > Enterprise Linux EUS > 8.2

DATE	CVE	VULNERABILITY TITLE	RISK
2019-02-09	CVE-2019-7664	Out-of-bounds Write vulnerability in multiple products In elfutils 0.175, a negative-sized memcpy is attempted in elf_cvt_note in libelf/note_xlate.h because of an incorrect overflow check. local low complexity elfutils-project redhat CWE-787	5.5
2019-02-06	CVE-2019-7548	SQL Injection vulnerability in multiple products SQLAlchemy 1.2.17 has SQL Injection when the group_by parameter can be controlled. network sqlalchemy debian opensuse redhat oracle CWE-89	6.8
2019-02-05	CVE-2018-18506	When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Configuration (PAC) file or if a PAC file is loaded locally, this PAC file can specify that requests to the localhost are to be sent through the proxy to another server. network high complexity mozilla canonical debian redhat opensuse	5.9
2019-02-03	CVE-2019-7310	Incorrect Conversion between Numeric Types vulnerability in multiple products In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document, as demonstrated by pdftocairo. local low complexity freedesktop canonical debian fedoraproject redhat CWE-681	7.8
2019-01-31	CVE-2019-6111	Path Traversal vulnerability in multiple products An issue was discovered in OpenSSH 7.9. network high complexity openbsd winscp canonical debian redhat fedoraproject apache freebsd fujitsu siemens CWE-22	5.9
2019-01-31	CVE-2019-6109	Improper Encoding or Escaping of Output vulnerability in multiple products An issue was discovered in OpenSSH 7.9. network high complexity openbsd winscp canonical debian netapp fedoraproject redhat siemens fujitsu CWE-116	6.8
2019-01-29	CVE-2019-7150	Out-of-bounds Read vulnerability in multiple products An issue was discovered in elfutils 0.175. network elfutils-project debian canonical opensuse redhat CWE-125	4.3
2019-01-16	CVE-2019-2539	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection). network low complexity oracle netapp redhat	4.9
2019-01-16	CVE-2019-2537	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). network low complexity oracle canonical debian netapp mariadb redhat	4.0
2019-01-16	CVE-2019-2536	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). local high complexity oracle netapp redhat	5.0