Redhat

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2007-1007 2Ekiga Redhat 3Ekiga Enterprise LinuxEnterprise Linux Desktop Apr 23, 2026 Feb 20, 2007 N/A· v4 N/A· v3 10.0 HIGH· v2 Format string vulnerability in GnomeMeeting 1.0.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format strings in the name, which is not properly handled...Show more Format string vulnerability in GnomeMeeting 1.0.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format strings in the name, which is not properly handled in a call to the gnomemeeting_log_insert function.Show less
CVE-2006-5753 2Linux Redhat 3Enterprise Linux Enterprise Linux DesktopLinux Kernel Apr 23, 2026 Jan 30, 2007 N/A· v4 N/A· v3 7.2 HIGH· v2 Unspecified vulnerability in the listxattr system call in Linux kernel, when a "bad inode" is present, allows local users to cause a denial of service (data corruption) and possibly gain privileges via unknown vectors.
CVE-2007-0455 5Canonical FedoraprojectGd Graphics Library Project+2 more 7Enterprise Linux Desktop Enterprise Linux ServerEnterprise Linux Workstation+4 more Apr 23, 2026 Jan 30, 2007 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a cra...Show more Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted string with a JIS encoded font.Show less
CVE-2006-6235 6Gnu Gpg4winRedhat+3 more 9Enterprise Linux Enterprise Linux DesktopFedora Core+6 more Apr 23, 2026 Dec 7, 2006 N/A· v4 N/A· v3 10.0 HIGH· v2 A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to execute arbitrary code via crafted OpenPGP packets that cause GnuPG to dereference a funct...Show more A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to execute arbitrary code via crafted OpenPGP packets that cause GnuPG to dereference a function pointer from deallocated stack memory.Show less
CVE-2006-5701 2Linux Redhat 2Fedora Core Linux Kernel Apr 23, 2026 Nov 3, 2006 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Double free vulnerability in squashfs module in the Linux kernel 2.6.x, as used in Fedora Core 5 and possibly other distributions, allows local users to cause a denial of service by mounting a crafted squashfs filesystem...Show more Double free vulnerability in squashfs module in the Linux kernel 2.6.x, as used in Fedora Core 5 and possibly other distributions, allows local users to cause a denial of service by mounting a crafted squashfs filesystem.Show less
CVE-2006-4811 2Qt Redhat 2Kdelibs Qt Apr 23, 2026 Oct 18, 2006 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Integer overflow in Qt 3.3 before 3.3.7, 4.1 before 4.1.5, and 4.2 before 4.2.1, as used in the KDE khtml library, kdelibs 3.1.3, and possibly other packages, allows remote attackers to cause a denial of service (crash)...Show more Integer overflow in Qt 3.3 before 3.3.7, 4.1 before 4.1.5, and 4.2 before 4.2.1, as used in the KDE khtml library, kdelibs 3.1.3, and possibly other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted pixmap image.Show less
CVE-2006-4342 1Redhat 1Enterprise Linux Apr 23, 2026 Oct 17, 2006 N/A· v4 5.5 MEDIUM· v3 4.0 MEDIUM· v2 The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to cause a denial of service (deadlock) by running the shmat function on an shm at the same time that shmctl is removing that shm...Show more The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to cause a denial of service (deadlock) by running the shmat function on an shm at the same time that shmctl is removing that shm (IPC_RMID), which prevents a spinlock from being unlocked.Show less
CVE-2006-5170 3Debian FedoraprojectRedhat 8Debian Linux Enterprise LinuxEnterprise Linux Desktop+5 more Apr 23, 2026 Oct 10, 2006 N/A· v4 N/A· v3 7.5 HIGH· v2 pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other distributions does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse cont...Show more pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other distributions does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse control response, which causes the pam_authenticate function to return a success code even if authentication has failed, as originally reported for xscreensaver.Show less
CVE-2006-4997 3Canonical LinuxRedhat 3Enterprise Linux Linux KernelUbuntu Linux Apr 23, 2026 Oct 10, 2006 N/A· v4 7.5 HIGH· v3 7.1 HIGH· v2 The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket b...Show more The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (freed pointer dereference).Show less
CVE-2006-5158 3Canonical LinuxRedhat 6Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+3 more Apr 23, 2026 Oct 5, 2006 N/A· v4 7.5 HIGH· v3 3.3 LOW· v2 The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (process crash) and deny access to NFS exports via unspecified vectors that trigger a...Show more The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (process crash) and deny access to NFS exports via unspecified vectors that trigger a kernel oops (null dereference) and a deadlock.Show less
CVE-2006-3813 1Redhat 1Enterprise Linux Apr 16, 2026 Aug 11, 2006 N/A· v4 N/A· v3 2.1 LOW· v2 A regression error in the Perl package for Red Hat Enterprise Linux 4 omits the patch for CVE-2005-0155, which allows local users to overwrite arbitrary files with debugging information.
CVE-2006-3918 4Apache CanonicalDebian+1 more 5Debian Linux Enterprise Linux ServerEnterprise Linux Workstation+2 more Apr 16, 2026 Jul 28, 2006 N/A· v4 N/A· v3 4.3 MEDIUM· v2 http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apache HTTP Server 1.3 before 1.3.35, 2.0 before 2.0.58, and 2.2 before 2.2.2, does not sanitize the Expect header from an HTTP r...Show more http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apache HTTP Server 1.3 before 1.3.35, 2.0 before 2.0.58, and 2.2 before 2.2.2, does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which might allow cross-site scripting (XSS) style attacks using web client components that can send arbitrary headers in requests, as demonstrated using a Flash SWF file.Show less
CVE-2006-2933 2Kde Redhat 3Enterprise Linux Enterprise Linux DesktopKde Apr 16, 2026 Jul 27, 2006 N/A· v4 N/A· v3 4.6 MEDIUM· v2 kdesktop_lock in kdebase before 3.1.3-5.11 for KDE in Red Hat Enterprise Linux (RHEL) 3 does not properly terminate, which can prevent the screensaver from activating or prevent users from manually locking the desktop.
CVE-2006-0745 5Mandrakesoft RedhatSun+2 more 6Fedora Core Mandrake LinuxSolaris+3 more Apr 16, 2026 Mar 21, 2006 N/A· v4 N/A· v3 7.2 HIGH· v2 X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended r...Show more X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile.Show less
CVE-2006-0453 1Redhat 1Fedora Core Apr 16, 2026 Feb 14, 2006 N/A· v4 N/A· v3 7.8 HIGH· v2 The LDAP component in Fedora Directory Server 1.0 allow remote attackers to cause a denial of service (crash) via a certain "bad BER sequence" that results in a free of uninitialized memory, as demonstrated using the Pro...Show more The LDAP component in Fedora Directory Server 1.0 allow remote attackers to cause a denial of service (crash) via a certain "bad BER sequence" that results in a free of uninitialized memory, as demonstrated using the ProtoVer LDAP test suite.Show less
CVE-2006-0452 1Redhat 1Fedora Core Apr 16, 2026 Feb 14, 2006 N/A· v4 N/A· v3 5.0 MEDIUM· v2 dn2ancestor in the LDAP component in Fedora Directory Server 1.0 allows remote attackers to cause a denial of service (CPU and memory consumption) via a ModDN operation with a DN that contains a large number of "," (comm...Show more dn2ancestor in the LDAP component in Fedora Directory Server 1.0 allows remote attackers to cause a denial of service (CPU and memory consumption) via a ModDN operation with a DN that contains a large number of "," (comma) characters, which results in a large amount of recursion, as demonstrated using the ProtoVer LDAP test suite.Show less
CVE-2006-0451 1Redhat 1Fedora Core Apr 16, 2026 Feb 14, 2006 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Multiple memory leaks in the LDAP component in Fedora Directory Server 1.0 allow remote attackers to cause a denial of service (memory consumption) via invalid BER packets that trigger an error, which might prevent memor...Show more Multiple memory leaks in the LDAP component in Fedora Directory Server 1.0 allow remote attackers to cause a denial of service (memory consumption) via invalid BER packets that trigger an error, which might prevent memory from being freed if it was allocated during the ber_scanf call, as demonstrated using the ProtoVer LDAP test suite.Show less
CVE-2005-3630 1Redhat 1Fedora Core Apr 16, 2026 Dec 31, 2005 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Fedora Directory Server before 10 allows remote attackers to obtain sensitive information, such as the password from adm.conf via an IFRAME element, probably involving an Apache httpd.conf configuration that orders "allo...Show more Fedora Directory Server before 10 allows remote attackers to obtain sensitive information, such as the password from adm.conf via an IFRAME element, probably involving an Apache httpd.conf configuration that orders "allow" directives before "deny" directives.Show less
CVE-2005-3629 1Redhat 1Enterprise Linux Apr 16, 2026 Dec 31, 2005 N/A· v4 N/A· v3 7.2 HIGH· v2 initscripts in Red Hat Enterprise Linux 4 does not properly handle certain environment variables when /sbin/service is executed, which allows local users with sudo permissions for /sbin/service to gain root privileges vi...Show more initscripts in Red Hat Enterprise Linux 4 does not properly handle certain environment variables when /sbin/service is executed, which allows local users with sudo permissions for /sbin/service to gain root privileges via unknown vectors.Show less
CVE-2005-3626 18Conectiva DebianEasy Software Products+15 more 33Cups Debian LinuxEnterprise Linux+30 more Apr 16, 2026 Dec 31, 2005 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null derefer...Show more Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.Show less

Previous 1...263264265...283 Next