Vulnerabilities (CVE)

Filtered by vendor Redhat Subscribe

Filtered by product Enterprise Linux For Power Big Endian

Total 44 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-16881	3 Debian, Redhat, Rsyslog	13 Debian Linux, Enterprise Linux, Enterprise Linux Desktop and 10 more	2024-11-21	5.0 MEDIUM	7.5 HIGH
A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash. Versions before 8.27.0 are vulnerable.
CVE-2018-16866	5 Canonical, Debian, Netapp and 2 more	21 Ubuntu Linux, Debian Linux, Active Iq Performance Analytics Services and 18 more	2024-11-21	2.1 LOW	3.3 LOW
An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable.
CVE-2017-15129	4 Canonical, Fedoraproject, Linux and 1 more	20 Ubuntu Linux, Fedora, Linux Kernel and 17 more	2024-11-21	4.9 MEDIUM	4.7 MEDIUM
A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.
CVE-2016-2124	5 Canonical, Debian, Fedoraproject and 2 more	24 Ubuntu Linux, Debian Linux, Fedora and 21 more	2024-11-21	4.3 MEDIUM	5.9 MEDIUM
A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.