Enterprise Linux Server

DATE	CVE	VULNERABILITY TITLE	RISK
2019-07-30	CVE-2019-11775	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products All builds of Eclipse OpenJ9 prior to 0.15 contain a bug where the loop versioner may fail to privatize a value that is pulled out of the loop by versioning - for example if there is a condition that is moved out of the loop that reads a field we may not privatize the value of that field in the modified copy of the loop allowing the test to see one value of the field and subsequently the loop to see a modified field value without retesting the condition moved out of the loop. network high complexity eclipse redhat CWE-367	7.4
2019-07-23	CVE-2019-2816	Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). network high complexity oracle debian opensuse hp mcafee canonical redhat	4.8
2019-07-23	CVE-2019-2805	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). network low complexity oracle mariadb canonical redhat fedoraproject opensuse	6.5
2019-07-23	CVE-2019-2786	Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). network high complexity oracle opensuse hp canonical redhat	3.4
2019-07-23	CVE-2019-2769	Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Utilities). network low complexity oracle debian canonical redhat hp mcafee opensuse	5.3
2019-07-23	CVE-2019-2762	Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Utilities). network low complexity oracle canonical opensuse debian redhat mcafee hp	5.3
2019-07-23	CVE-2019-2740	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: XML). network low complexity oracle canonical mariadb redhat fedoraproject opensuse	6.5
2019-07-19	CVE-2019-1010238	Out-of-bounds Write vulnerability in multiple products Gnome Pango 1.42 and later is affected by: Buffer Overflow. network low complexity gnome oracle fedoraproject debian canonical redhat CWE-787 critical	9.8
2019-07-16	CVE-2019-13616	Out-of-bounds Read vulnerability in multiple products SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c. network low complexity libsdl debian opensuse fedoraproject canonical redhat CWE-125	8.1
2019-06-19	CVE-2019-3896	A double-free can happen in idr_remove_all() in lib/idr.c in the Linux kernel 2.6 branch. local low complexity linux redhat	7.8