Enterprise Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-04	CVE-2021-32672	Out-of-bounds Read vulnerability in multiple products Redis is an open source, in-memory database that persists on disk. network low complexity redis redhat debian fedoraproject netapp oracle CWE-125	4.3
2021-09-29	CVE-2021-3653	A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. local low complexity linux redhat debian	8.8
2021-09-07	CVE-2021-39251	NULL Pointer Dereference vulnerability in multiple products A crafted NTFS image can cause a NULL pointer dereference in ntfs_extent_inode_open in NTFS-3G < 2021.8.22. local low complexity tuxera debian redhat fedoraproject CWE-476	7.8
2021-09-07	CVE-2021-33285	Out-of-bounds Write vulnerability in multiple products In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap buffer overflow can occur allowing for memory disclosure or denial of service. local low complexity tuxera redhat fedoraproject debian CWE-787	7.8
2021-08-31	CVE-2021-3634	Out-of-bounds Write vulnerability in multiple products A flaw has been found in libssh in versions prior to 0.9.6. network low complexity libssh redhat debian fedoraproject oracle netapp CWE-787	6.5
2021-08-27	CVE-2021-40153	Path Traversal vulnerability in multiple products squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash. network low complexity squashfs-tools-project fedoraproject debian redhat CWE-22	8.1
2021-08-25	CVE-2021-3605	There's a flaw in OpenEXR's rleUncompress functionality in versions prior to 3.0.5. local low complexity openexr redhat debian	5.5
2021-08-13	CVE-2021-3573	A use-after-free in function hci_sock_bound_ioctl() of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hci_unregister_dev() together with one of the calls hci_sock_blacklist_add(), hci_sock_blacklist_del(), hci_get_conn_info(), hci_get_auth_info(). local high complexity linux redhat fedoraproject	6.4
2021-08-13	CVE-2021-3635	A flaw was found in the Linux kernel netfilter implementation in versions prior to 5.5-rc7. local low complexity linux redhat fedoraproject	4.4
2021-08-12	CVE-2021-20314	Out-of-bounds Write vulnerability in multiple products Stack buffer overflow in libspf2 versions below 1.2.11 when processing certain SPF macros can lead to Denial of service and potentially code execution via malicious crafted SPF explanation messages. network low complexity libspf2 redhat fedoraproject CWE-787 critical	9.8