Vulnerabilities > Redhat > Enterprise Linux Server EUS
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-01-28 | CVE-2017-5205 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in print-isakmp.c:ikev2_e_print(). | 9.8 |
| 2017-01-28 | CVE-2017-5204 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print(). | 9.8 |
| 2017-01-28 | CVE-2017-5203 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print(). | 9.8 |
| 2017-01-28 | CVE-2017-5202 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print(). | 9.8 |
| 2017-01-27 | CVE-2016-5824 | Use After Free vulnerability in multiple products libical 1.0 allows remote attackers to cause a denial of service (use-after-free) via a crafted ics file. | 5.5 |
| 2017-01-23 | CVE-2016-9401 | Use After Free vulnerability in multiple products popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address. | 5.5 |
| 2017-01-13 | CVE-2016-7426 | Resource Exhaustion vulnerability in multiple products NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote attackers to cause a denial of service (prevent responses from the sources) by sending responses with a spoofed source address. | 7.5 |
| 2016-09-21 | CVE-2016-7166 | Resource Management Errors vulnerability in multiple products libarchive before 3.2.0 does not limit the number of recursive decompressions, which allows remote attackers to cause a denial of service (memory consumption and application crash) via a crafted gzip file. | 5.5 |
| 2016-09-21 | CVE-2016-5844 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a crafted ISO file. | 6.5 |
| 2016-09-21 | CVE-2016-5418 | Data Processing Errors vulnerability in multiple products The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow remote attackers to write to arbitrary files via a crafted archive file. | 7.5 |