|
401
|
8.2
4.6
|
HIGH
Local
|
A set of pre-production kernel packages of Red Hat Enterprise Linux for IBM Power architecture can be booted by the grub in Secure Boot mode even though it shouldn't. These kernel builds don't have t…
|
NVD-CWE-Other
|
CVE-2022-1665
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:41
2022-06-22
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
402
|
7.8
6.8
|
HIGH
Local
|
In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte alignment and for type 'float', which requires 4 byte alignment at MagickCore/property.c. Whenever crafted…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2022-32547
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 16:06
2022-06-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
403
|
7.8
6.8
|
HIGH
Local
|
A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned long' at coders/pcl.c, when crafted or untrusted input is processed. This leads to a n…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2022-32546
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 16:06
2022-06-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
404
|
7.8
6.8
|
HIGH
Local
|
A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, when crafted or untrusted input is processed. This leads to a n…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2022-32545
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 16:06
2022-06-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
405
|
7.8
7.2
|
HIGH
Local
|
A use after free in the Linux kernel File System notify functionality was found in the way user triggers copy_info_records_to_user() call to fail in copy_event_to_user(). A local user could use this …
|
CWE-416
Use After Free
|
CVE-2022-1998
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 15:41
2022-06-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
406
|
7.5
7.8
|
HIGH
Network
|
A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyone with access to the Kube API. The ExecSync request runs commands in a container and logs the outpu…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2022-1708
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 15:41
2022-06-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
407
|
6.8
6.9
|
MEDIUM
Physics
|
With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva. If INVPCID is executed with CR0.PG=0, the invlpg callback is not set and the result is a NULL pointer der…
|
CWE-476
NULL Pointer Dereference
|
CVE-2022-1789
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 15:41
2022-06-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
408
|
7.5
5.0
|
HIGH
Network
|
An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an ac…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2022-1949
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:41
2022-06-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
409
|
7.8
7.2
|
HIGH
Local
|
Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the bad_flp_intr function. By executing a specially-crafted program, …
|
CWE-416
Use After Free
|
CVE-2022-1652
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 15:41
2022-06-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
410
|
6.3
3.3
|
MEDIUM
Local
|
An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC …
|
-
|
CVE-2022-1462
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:40
2022-06-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|