Vulnerabilities > Redhat > Enterprise Linux > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-31 | CVE-2023-5992 | A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. | 5.9 |
| 2024-01-31 | CVE-2024-0914 | Information Exposure Through Discrepancy vulnerability in multiple products A timing side-channel vulnerability has been discovered in the opencryptoki package while processing RSA PKCS#1 v1.5 padded ciphertexts. | 5.9 |
| 2024-01-30 | CVE-2024-0564 | Information Exposure Through Discrepancy vulnerability in multiple products A flaw was found in the Linux kernel's memory deduplication mechanism. | 6.5 |
| 2024-01-29 | CVE-2023-40546 | NULL Pointer Dereference vulnerability in multiple products A flaw was found in Shim when an error happened while creating a new ESL variable. | 5.5 |
| 2024-01-29 | CVE-2023-40549 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. | 5.5 |
| 2024-01-29 | CVE-2023-40550 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. | 5.5 |
| 2024-01-29 | CVE-2023-40551 | Out-of-bounds Read vulnerability in multiple products A flaw was found in the MZ binary format in Shim. | 5.1 |
| 2024-01-18 | CVE-2024-0408 | A flaw was found in the X.Org server. | 5.5 |
| 2024-01-18 | CVE-2024-0607 | A flaw was found in the Netfilter subsystem in the Linux kernel. | 6.6 |
| 2024-01-17 | CVE-2024-0639 | Improper Locking vulnerability in multiple products A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in net/sctp/socket.c in the Linux kernel’s SCTP subsystem. | 5.5 |