Computer vulnerabilities of Red Hat Enterprise Linux

QEMU: use after free via SLiRP Packet Reassembly
An attacker can force the usage of a freed memory area via SLiRP Packet Reassembly of QEMU, in order to trigger a denial of service, and possibly to run code...
CVE-2019-15890, DLA-1927-1, DSA-4616-1, JSA11110, openSUSE-SU-2019:2510-1, RHSA-2020:0775-01, RHSA-2020:0889-01, RHSA-2020:4676-01, SUSE-SU-2019:2783-1, SUSE-SU-2019:2955-1, SUSE-SU-2020:0388-1, USN-4191-1, USN-4191-2, VIGILANCE-VUL-30265

Simple DirectMedia Layer: out-of-bounds memory reading via BlitNtoN
An attacker can force a read at an invalid address via BlitNtoN() of Simple DirectMedia Layer, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2019-13616, FEDORA-2019-446ca9f695, FEDORA-2019-8ef33a69ca, FEDORA-2019-e08f78d4a6, FEDORA-2020-ff2fe47ba4, openSUSE-SU-2019:2070-1, openSUSE-SU-2019:2071-1, openSUSE-SU-2019:2108-1, openSUSE-SU-2019:2109-1, openSUSE-SU-2019:2224-1, openSUSE-SU-2019:2226-1, openSUSE-SU-2020:1916-1, openSUSE-SU-2020:1990-1, RHSA-2019:3950-01, RHSA-2019:3951-01, RHSA-2019:4024-01, RHSA-2020:0293-01, SUSE-SU-2019:2463-1, SUSE-SU-2019:2463-2, SUSE-SU-2020:3030-1, SUSE-SU-2020:3261-1, USN-4156-1, USN-4156-2, USN-4238-1, VIGILANCE-VUL-30252

Linux kernel: buffer overflow via i2c_smbus_xfer_emulated
An attacker can trigger a buffer overflow via i2c_smbus_xfer_emulated() of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
CERTFR-2019-AVI-455, CERTFR-2019-AVI-502, CERTFR-2019-AVI-503, CERTFR-2019-AVI-530, CERTFR-2019-AVI-561, CERTFR-2020-AVI-281, CERTFR-2020-AVI-612, CERTFR-2020-AVI-770, CERTFR-2020-AVI-823, CERTFR-2020-AVI-841, CVE-2017-18551, CVE-2019-9454, K48073202, openSUSE-SU-2019:2173-1, openSUSE-SU-2019:2181-1, RHSA-2020:2104-01, RHSA-2020:4060-01, RHSA-2020:4062-01, RHSA-2020:5206-01, RHSA-2020:5430-01, RHSA-2020:5656-01, SSB-439005, SUSE-SU-2019:14218-1, SUSE-SU-2019:2299-1, SUSE-SU-2019:2412-1, SUSE-SU-2019:2424-1, SUSE-SU-2019:2648-1, SUSE-SU-2019:2651-1, SUSE-SU-2019:2658-1, SUSE-SU-2019:2738-1, SUSE-SU-2019:2949-1, SUSE-SU-2019:2950-1, VIGILANCE-VUL-30250

WebKitGTK: multiple vulnerabilities
An attacker can use several vulnerabilities of WebKitGTK...
CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8666, CVE-2019-8669, CVE-2019-8671, CVE-2019-8672, CVE-2019-8673, CVE-2019-8676, CVE-2019-8677, CVE-2019-8678, CVE-2019-8679, CVE-2019-8680, CVE-2019-8681, CVE-2019-8683, CVE-2019-8684, CVE-2019-8686, CVE-2019-8687, CVE-2019-8688, CVE-2019-8689, CVE-2019-8690, DSA-4515-1, HT210346, HT210348, openSUSE-SU-2019:2207-1, openSUSE-SU-2019:2208-1, openSUSE-SU-2019:2587-1, openSUSE-SU-2019:2591-1, RHSA-2020:4035-01, SUSE-SU-2019:2345-1, SUSE-SU-2019:2345-2, SUSE-SU-2019:2428-1, SUSE-SU-2019:3044-1, USN-4130-1, VIGILANCE-VUL-30245, WSA-2019-0004

FreeType: three vulnerabilities
An attacker can use several vulnerabilities of FreeType...
bulletinjul2019, CVE-2015-9381, CVE-2015-9382, CVE-2015-9383, DLA-1909-1, JSA11110, K46641512, RHSA-2019:4254-01, USN-4126-1, USN-4126-2, VIGILANCE-VUL-30244

systemd: information disclosure via DNS Settings Change
An attacker can bypass access restrictions to data via DNS Settings Change of systemd, in order to obtain sensitive information...
CVE-2019-15718, RHSA-2019:3592-01, USN-4120-1, USN-4120-2, VIGILANCE-VUL-30239

libosinfo: information disclosure via osinfo-install-script
An attacker can bypass access restrictions to data via osinfo-install-script of libosinfo, in order to obtain sensitive information...
CVE-2019-13313, RHSA-2019:3387-01, RHSA-2020:1051-01, SUSE-SU-2019:2273-1, VIGILANCE-VUL-30237

Skia: out-of-bounds memory reading
An attacker can force a read at an invalid address of Skia, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2019-5849, DSA-4500-1, MFSA-2019-25, MFSA-2019-26, openSUSE-SU-2019:1848-1, openSUSE-SU-2019:1849-1, openSUSE-SU-2019:1853-1, openSUSE-SU-2019:1901-1, RHSA-2019:2427-01, USN-4122-1, VIGILANCE-VUL-30234

Varnish Cache: assertion error via HTTP/1 Keepalive
An attacker can force an assertion error via HTTP/1 Keepalive of Varnish Cache, in order to trigger a denial of service...
CVE-2019-15892, DSA-4514-1, openSUSE-SU-2019:2184-1, openSUSE-SU-2019:2221-1, RHSA-2020:4756-01, VIGILANCE-VUL-30231, VSV00003

Samba: read-write access via Root Filesystem Access
An attacker can bypass access restrictions via Root Filesystem Access of Samba, in order to read or alter data...
14035, CERTFR-2019-AVI-420, CVE-2019-10197, DSA-4513-1, FEDORA-2019-e3e521e5b3, FEDORA-2019-eb1e982800, HPESBUX04029, openSUSE-SU-2019:2142-1, RHSA-2019:4023-01, RHSA-2020:1084-01, RHSA-2020:1878-01, SUSE-SU-2020:2673-1, USN-4121-1, VIGILANCE-VUL-30228

Our database contains other pages. You can request a free trial to read them.

Display information about Red Hat Enterprise Linux:

https://www.redhat.com/en/technologies/linux-platforms/enterprise-linux