|
581
|
6.8
4.9
|
MEDIUM
Network
|
A flaw was found in samba. The Samba smbd file server must map Windows group identities (SIDs) into unix group ids (gids). The code that performs this had a flaw that could allow it to read data beyo…
|
-
|
CVE-2021-20254
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 14:46
2021-05-5
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
582
|
7.8
7.2
|
HIGH
Local
|
A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is…
|
-
|
CVE-2021-3472
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 15:21
2021-04-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
583
|
6.1
4.9
|
MEDIUM
Local
|
A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vul…
|
CWE-269
Improper Privilege Management
|
CVE-2021-20208
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 14:46
2021-04-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
584
|
5.5
2.1
|
MEDIUM
Local
|
A flaw was found in libtpms in versions before 0.8.0. The TPM 2 implementation returns 2048 bit keys with ~1984 bit strength due to a bug in the TCG specification. The bug is in the key creation algo…
|
-
|
CVE-2021-3505
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:21
2021-04-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
585
|
7.8
6.8
|
HIGH
Local
|
GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-3498
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 15:21
2021-04-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
586
|
7.8
6.8
|
HIGH
Local
|
GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files.
|
CWE-416
Use After Free
|
CVE-2021-3497
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 15:21
2021-04-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
587
|
6.5
6.4
|
MEDIUM
Network
|
A flaw was found in Exiv2 in versions before and including 0.27.4-RC1. Improper input validation of the rawData.size property in Jp2Image::readMetadata() in jp2image.cpp can lead to a heap-based buff…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-3482
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:21
2021-04-9
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
588
|
4.0
4.3
|
MEDIUM
Network
|
A flaw was found in dnsmasq in versions before 2.85. When configured to use a specific server for a given network interface, dnsmasq uses a fixed port while forwarding queries. An attacker on the net…
|
NVD-CWE-Other
|
CVE-2021-3448
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 15:21
2021-04-9
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
589
|
8.1
6.8
|
HIGH
Network
|
A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply fun…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-20305
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 14:46
2021-04-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
590
|
6.5
7.1
|
MEDIUM
Network
|
A deadlock vulnerability was found in 'github.com/containers/storage' in versions before 1.28.1. When a container image is processed, each layer is unpacked using `tar`. If one of those layers is not…
|
-
|
CVE-2021-20291
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 14:46
2021-04-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|