Versions
17:7.2.0-14.el9_2.14
0:1.19.13-7.el9_2
0:8.7p1-30.el9_2.4
0:1.2.14-6.el9_2
0:2.2.4-9.el9_2
0:2.8.2-5.el9_2.4
7:5.5-5.el9_2.3
0:3.7.6-21.el9_2.2
0:5.14.0-284.55.1.rt14.340.el9_2
1:1.29.4-1.el9_2
17:7.2.0-14.el9_2.11
0:3.19.0-3.el9_2
0:5.14.0-284.40.1.el9_2
0:4.17.5-105.el9_2
0:5.14.0-284.59.1.el9_2
0:1.12.0-14.el9_2.5
0:4.17.5-104.el9_2
0:11.3.0-2.el9_2
0:6.0.1-6.el9_2
0:5.14.0-284.52.1.rt14.337.el9_2
0:8.7p1-30.el9_2.7
0:5.14.0-284.69.1.el9_2
0:5.14.0-284.48.1.el9_2
0:5.14.0-284.52.1.el9_2
0:13.13-1.el9_2
2:22.11-4.el9_2
0:1.16.2-3.el9_2.4
2:4.4.1-21.el9_2
0:5.14.0-284.48.1.rt14.333.el9_2
0:1.12.0-14.el9_2.2
0:5.14.0-284.69.1.rt14.354.el9_2
0:5.14.0-284.75.1.el9_2
2:4.4.1-16.el9_2
0:9.0.0-10.7.el9_2
0:5.14.0-284.62.1.rt14.347.el9_2
0:5.14.0-284.75.1.rt14.360.el9_2
0:5.14.0-284.62.1.el9_2
0:1.12.0-14.el9_2.8
0:3.7.6-21.el9_2.1
0:3.1.2-4.el9_2
0:5.14.0-284.40.1.rt14.325.el9_2
2:4.4.1-20.el9_2
1:1.29.3-1.el9_2
0:1.12.0-14.el9_2.9
0:5.14.0-284.55.1.el9_2
0:1.12.0-14.el9_2
1:2.06-61.el9_2.2
0:4.10.1-10.el9_2
0:2023.3-2.el9_2
0:1.0-283.1.9d4029a.git.el9_2.1
9020020231115020618.rhel9
0:1.8-5.el9_2
0:6.0.1-8.el9_2
0:5.14.0-284.59.1.rt14.344.el9_2
0:4.4.0-8.el9_2.1
0:15.8-3.el9_2
0:3.7.6-21.el9_2.3
0:4.10.1-12.el9_2.2
Recent CVEs
CVE-2024-11614
An out-of-bounds read vulnerability was found in DPDK's Vhost library checksum offload feature. This issue enables an untrusted or compromised guest to crash the hypervisor's vSwitch by forging Virtio descriptors to cause out-of-bounds reads. This flaw allows an attacker with a malicious VM using a virtio driver to cause the vhost-user side to crash by sending a packet with a Tx checksum offload request and an invalid csum_start offset.
CVE-2024-9632
A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a local attacker may be able to trigger a buffer overflow condition via a specially crafted payload, leading to denial of service or local privilege escalation in distributions where the X.org server is run with root privileges.
CVE-2024-9050
A flaw was found in the libreswan client plugin for NetworkManager (NetkworkManager-libreswan), where it fails to properly sanitize the VPN configuration from the local unprivileged user. In this configuration, composed by a key-value format, the plugin fails to escape special characters, leading the application to interpret values as keys. One of the most critical parameters that could be abused by a malicious user is the `leftupdown`key. This key takes an executable command as a value and is used to specify what executes as a callback in NetworkManager-libreswan to retrieve configuration settings back to NetworkManager. As NetworkManager uses Polkit to allow an unprivileged user to control the system's network configuration, a malicious actor could achieve local privilege escalation and potential code execution as root in the targeted machine by creating a malicious configuration.
CVE-2024-9675
A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to mount an arbitrary directory from the host (read/write) into the container as long as those files can be accessed by the user running Buildah.
CVE-2024-45770
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an attacker has access to a compromised PCP system account. The issue is related to the pmpost tool, which is used to log messages in the system. Under certain conditions, it runs with high-level privileges.
CVE-2024-45769
A vulnerability was found in Performance Co-Pilot (PCP). This flaw allows an attacker to send specially crafted data to the system, which could cause the program to misbehave or crash.
CVE-2024-7006
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service.
CVE-2024-7409
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server is taken offline.