Vulnerabilities > Redhat

DATE CVE VULNERABILITY TITLE RISK
2022-09-13 CVE-2022-2989 An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to execute a binary code in that container.
local
low complexity
podman-project redhat
7.1
7.1
2022-09-13 CVE-2022-2990 An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to execute a binary code in that container.
local
low complexity
buildah-project redhat
7.1
7.1
2022-09-09 CVE-2022-2905 An out-of-bounds memory read flaw was found in the Linux kernel's BPF subsystem in how a user calls the bpf_tail_call function with a key larger than the max_entries of the map.
local
low complexity
linux redhat debian
5.5
5.5
2022-09-09 CVE-2022-2964 A flaw was found in the Linux kernel’s driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices.
local
low complexity
linux redhat netapp
7.8
7.8
2022-09-09 CVE-2020-10735 Incorrect Type Conversion or Cast vulnerability in multiple products
A flaw was found in python.
network
low complexity
python redhat fedoraproject CWE-704
7.5
7.5
2022-09-06 CVE-2022-23451 An authorization flaw was found in openstack-barbican.
network
low complexity
openstack redhat
8.1
8.1
2022-09-06 CVE-2022-25308 A stack-based buffer overflow flaw was found in the Fribidi package.
local
low complexity
gnu redhat
7.8
7.8
2022-09-06 CVE-2022-25309 A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidi_cap_rtl_to_unicode() function of the fribidi-char-sets-cap-rtl.c file.
local
low complexity
gnu redhat
5.5
5.5
2022-09-06 CVE-2022-25310 NULL Pointer Dereference vulnerability in multiple products
A segmentation fault (SEGV) flaw was found in the Fribidi package and affects the fribidi_remove_bidi_marks() function of the lib/fribidi.c file.
local
low complexity
gnu redhat CWE-476
5.5
5.5
2022-09-01 CVE-2022-1632 An Improper Certificate Validation attack was found in Openshift.
network
low complexity
redhat fedoraproject
6.5
6.5