Enterprise Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-16	CVE-2022-32546	Integer Overflow or Wraparound vulnerability in multiple products A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned long' at coders/pcl.c, when crafted or untrusted input is processed. local low complexity imagemagick redhat fedoraproject CWE-190	7.8
2022-06-16	CVE-2022-32547	Incorrect Type Conversion or Cast vulnerability in multiple products In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte alignment and for type 'float', which requires 4 byte alignment at MagickCore/property.c. local low complexity imagemagick redhat fedoraproject CWE-704	7.8
2022-06-09	CVE-2022-1998	Use After Free vulnerability in multiple products A use after free in the Linux kernel File System notify functionality was found in the way user triggers copy_info_records_to_user() call to fail in copy_event_to_user(). local low complexity linux fedoraproject redhat netapp CWE-416	7.8
2022-06-07	CVE-2022-1708	Allocation of Resources Without Limits or Throttling vulnerability in multiple products A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyone with access to the Kube API. network low complexity kubernetes fedoraproject redhat CWE-770	7.5
2022-06-02	CVE-2022-1462	An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem. local high complexity linux redhat debian	6.3
2022-06-02	CVE-2022-1652	Use After Free vulnerability in multiple products Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the bad_flp_intr function. local low complexity linux redhat debian netapp CWE-416	7.8
2022-06-02	CVE-2022-1789	NULL Pointer Dereference vulnerability in multiple products With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva. low complexity linux fedoraproject redhat debian CWE-476	6.8
2022-06-02	CVE-2022-1949	Authorization Bypass Through User-Controlled Key vulnerability in multiple products An access control bypass vulnerability found in 389-ds-base. network low complexity redhat fedoraproject CWE-639	7.5
2022-05-18	CVE-2022-30597	A flaw was found in moodle where the description user field was not hidden when being set as a hidden user field. network low complexity moodle redhat fedoraproject	5.3
2022-05-18	CVE-2022-30598	A flaw was found in moodle where global search results could include author information on some activities where a user may not otherwise have access to it. network low complexity moodle redhat fedoraproject	4.3