|
361
|
5.5
-
|
MEDIUM
Local
|
A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this fla…
|
-
|
CVE-2022-0175
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:38
2022-08-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
362
|
5.5
-
|
MEDIUM
Local
|
A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a non-root (host) user-level application to crash the host kernel by creating a confidential guest VM in…
|
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer
|
CVE-2022-0171
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:38
2022-08-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
363
|
4.4
-
|
MEDIUM
Local
|
A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_u…
|
-
|
CVE-2022-0168
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:38
2022-08-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364
|
6.7
-
|
MEDIUM
Local
|
It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns ano…
|
-
|
CVE-2021-35939
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:12
2022-08-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
365
|
7.0
-
|
HIGH
Local
|
A flaw was found in the way the dumpable flag setting was handled when certain SUID binaries executed its descendants. The prerequisite is a SUID binary that sets real UID equal to effective UID, and…
|
-
|
CVE-2021-3864
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 15:22
2022-08-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
366
|
5.5
-
|
MEDIUM
Local
|
A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2021-3669
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 15:22
2022-08-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
367
|
6.7
-
|
MEDIUM
Local
|
A symbolic link issue was found in rpm. It occurs when rpm sets the desired permissions and credentials after installing a file. A local unprivileged user could use this flaw to exchange the original…
|
CWE-59
Link Following
|
CVE-2021-35938
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 15:12
2022-08-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
368
|
6.4
-
|
MEDIUM
Local
|
A race condition vulnerability was found in rpm. A local unprivileged user could use this flaw to bypass the checks that were introduced in response to CVE-2017-7500 and CVE-2017-7501, potentially ga…
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2021-35937
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 15:12
2022-08-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
369
|
7.8
-
|
HIGH
Local
|
An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer). This flaw allows a malicious guest to create a specially crafted virgil resource and then issue a VIRTGPU_…
|
-
|
CVE-2022-0135
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:37
2022-08-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
370
|
3.3
-
|
LOW
Local
|
A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. This flaw allows an attacker to input a specially crafte…
|
CWE-476
NULL Pointer Dereference
|
CVE-2021-4217
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 15:37
2022-08-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|