Enterprise Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2019-10-16	CVE-2019-2945	Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). network high complexity oracle redhat netapp debian canonical opensuse	3.1
2019-10-14	CVE-2019-14823	A flaw was found in the "Leaf and Chain" OCSP policy implementation in JSS' CryptoManager versions after 4.4.6, 4.5.3, 4.6.0, where it implicitly trusted the root certificate of a certificate chain. network high complexity jss-cryptomanager-project redhat	7.4
2019-10-09	CVE-2019-6465	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products Controls for zone transfers may not be properly applied to Dynamically Loadable Zones (DLZs) if the zones are writable Versions affected: BIND 9.9.0 -> 9.10.8-P1, 9.11.0 -> 9.11.5-P2, 9.12.0 -> 9.12.3-P2, and versions 9.9.3-S1 -> 9.11.5-S3 of BIND 9 Supported Preview Edition. network low complexity isc redhat CWE-732	5.3
2019-10-03	CVE-2019-15166	Classic Buffer Overflow vulnerability in multiple products lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks. network low complexity tcpdump apple debian fedoraproject opensuse redhat netapp canonical CWE-120	7.5
2019-10-03	CVE-2018-16451	Out-of-bounds Read vulnerability in multiple products The SMB parser in tcpdump before 4.9.3 has buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN. network low complexity tcpdump redhat debian opensuse fedoraproject apple CWE-125	7.5
2019-10-03	CVE-2018-16230	Out-of-bounds Read vulnerability in multiple products The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_print() (MP_REACH_NLRI). network low complexity tcpdump redhat debian opensuse fedoraproject apple CWE-125	7.5
2019-10-03	CVE-2018-16229	Out-of-bounds Read vulnerability in multiple products The DCCP parser in tcpdump before 4.9.3 has a buffer over-read in print-dccp.c:dccp_print_option(). network low complexity tcpdump redhat debian opensuse fedoraproject f5 apple CWE-125	7.5
2019-10-03	CVE-2018-16228	Out-of-bounds Read vulnerability in multiple products The HNCP parser in tcpdump before 4.9.3 has a buffer over-read in print-hncp.c:print_prefix(). network low complexity tcpdump redhat debian opensuse fedoraproject apple CWE-125	7.5
2019-10-03	CVE-2018-16227	Out-of-bounds Read vulnerability in multiple products The IEEE 802.11 parser in tcpdump before 4.9.3 has a buffer over-read in print-802_11.c for the Mesh Flags subfield. network low complexity tcpdump redhat debian opensuse fedoraproject apple CWE-125	7.5
2019-10-03	CVE-2018-14882	Out-of-bounds Read vulnerability in multiple products The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c. network low complexity tcpdump redhat debian opensuse fedoraproject f5 apple CWE-125	7.5