Enterprise Linux Server

DATE	CVE	VULNERABILITY TITLE	RISK
2016-05-05	CVE-2016-2105	Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data. network low complexity redhat opensuse oracle apple openssl debian canonical nodejs CWE-190	7.5
2016-04-21	CVE-2016-3427	Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. network low complexity oracle canonical debian netapp apache redhat suse opensuse critical	9.8
2016-04-21	CVE-2016-0695	Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality via vectors related to Security. network high complexity oracle redhat	5.9
2016-04-21	CVE-2016-0651	Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier allows local users to affect availability via vectors related to Optimizer. local low complexity oracle mariadb suse opensuse redhat	5.5
2016-04-21	CVE-2016-0642	Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect integrity and availability via vectors related to Federated. local high complexity oracle suse opensuse redhat mariadb debian canonical	4.7
2016-04-19	CVE-2016-0741	Resource Management Errors vulnerability in multiple products slapd/connection.c in 389 Directory Server (formerly Fedora Directory Server) 1.3.4.x before 1.3.4.7 allows remote attackers to cause a denial of service (infinite loop and connection blocking) by leveraging an abnormally closed connection. network low complexity redhat fedoraproject CWE-399	7.5
2016-04-15	CVE-2010-5325	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.6 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via a long job title. network low complexity redhat linuxfoundation oracle CWE-119 critical	9.8
2016-04-13	CVE-2016-3069	Improper Input Validation vulnerability in multiple products Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted name when converting a Git repository. network low complexity mercurial debian suse opensuse fedoraproject redhat CWE-20	8.8
2016-04-13	CVE-2016-3068	Improper Input Validation vulnerability in multiple products Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a crafted git ext:: URL when cloning a subrepository. network low complexity debian mercurial fedoraproject redhat suse opensuse CWE-20	8.8
2016-04-12	CVE-2016-2857	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet. local low complexity qemu canonical debian redhat CWE-119	8.4