|
261
|
5.5
-
|
MEDIUM
Local
|
A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where the contents of the file could be written to a new file whose…
|
CWE-22
Path Traversal
|
CVE-2023-1183
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 16:38
2023-07-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
262
|
5.7
-
|
MEDIUM
Adjacent
|
A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or w…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2023-1206
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 16:38
2023-07-1
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263
|
7.5
-
|
HIGH
Network
|
A vulnerability was found in libX11. The security flaw occurs because the functions in src/InitExt.c in libX11 do not check that the values provided for the Request, Event, or Error IDs are within th…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-3138
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:16
2023-06-29
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264
|
4.4
-
|
MEDIUM
Local
|
A NULL pointer dereference issue was found in the gfs2 file system in the Linux kernel. It occurs on corrupt gfs2 file systems when the evict code tries to reference the journal descriptor structure …
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-3212
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:16
2023-06-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265
|
8.8
-
|
HIGH
Network
|
A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS…
|
CWE-416
Use After Free
|
CVE-2023-32373
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2025-02-28 23:53
2023-06-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266
|
5.5
-
|
MEDIUM
Local
|
A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out…
|
CWE-682
Incorrect Calculation
|
CVE-2023-3161
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:16
2023-06-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267
|
7.2
-
|
HIGH
Network
|
schema_element defeats protective search_path changes; It was found that certain database calls in PostgreSQL could permit an authed attacker with elevated database-level privileges to execute arbitr…
|
NVD-CWE-noinfo
|
CVE-2023-2454
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 16:58
2023-06-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268
|
5.4
-
|
MEDIUM
Network
|
Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases where role-specific policies are used and a given query is pl…
|
NVD-CWE-noinfo
|
CVE-2023-2455
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 16:58
2023-06-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269
|
7.8
-
|
HIGH
Local
|
A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-2603
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 16:58
2023-06-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270
|
3.3
-
|
LOW
Local
|
A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to return an error, which can exhaust the process mem…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2023-2602
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 16:58
2023-06-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|