Vulnerabilities > Redhat > Enterprise Linux Workstation > 6.0

DATE	CVE	VULNERABILITY TITLE	RISK
2018-03-13	CVE-2018-1050	NULL Pointer Dereference vulnerability in multiple products All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. low complexity canonical samba debian redhat CWE-476	4.3
2018-03-12	CVE-2018-7858	Out-of-bounds Read vulnerability in multiple products Quick Emulator (aka QEMU), when built with the Cirrus CLGD 54xx VGA Emulator support, allows local guest OS privileged users to cause a denial of service (out-of-bounds access and QEMU process crash) by leveraging incorrect region calculation when updating VGA display. local low complexity qemu opensuse redhat canonical CWE-125	5.5
2018-03-12	CVE-2016-9600	NULL Pointer Dereference vulnerability in multiple products JasPer before version 2.0.10 is vulnerable to a null pointer dereference was found in the decoded creation of JPEG 2000 image files. network low complexity jasper-project canonical redhat CWE-476	6.5
2018-03-12	CVE-2014-8130	Divide By Zero vulnerability in multiple products The _TIFFmalloc function in tif_unix.c in LibTIFF 4.0.3 does not reject a zero size, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image that is mishandled by the TIFFWriteScanline function in tif_write.c, as demonstrated by tiffdither. network low complexity libtiff redhat apple CWE-369	6.5
2018-03-09	CVE-2016-9591	Use After Free vulnerability in multiple products JasPer before version 2.0.12 is vulnerable to a use-after-free in the way it decodes certain JPEG 2000 image files resulting in a crash on the application using JasPer. local low complexity jasper-project redhat debian CWE-416	5.5
2018-03-07	CVE-2018-1054	Out-of-bounds Read vulnerability in multiple products An out-of-bounds memory read flaw was found in the way 389-ds-base handled certain LDAP search filters, affecting all versions including 1.4.x. network low complexity fedoraproject redhat CWE-125	7.5
2018-02-09	CVE-2018-6871	LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function. network low complexity libreoffice debian canonical redhat critical	9.8
2018-02-06	CVE-2018-4878	Use After Free vulnerability in multiple products A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. network low complexity adobe redhat CWE-416 critical	9.8
2018-02-06	CVE-2018-4877	Use After Free vulnerability in multiple products A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. network low complexity adobe redhat CWE-416 critical	9.8
2018-01-25	CVE-2018-5748	Resource Exhaustion vulnerability in multiple products qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply. network low complexity redhat debian CWE-400	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.