|
661
|
4.1
1.9
|
MEDIUM
Local
|
A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access …
|
-
|
CVE-2020-25656
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 14:18
2020-12-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
662
|
6.5
4.0
|
MEDIUM
Network
|
A flaw was found in samba's DNS server. An authenticated user could use this flaw to the RPC server to crash. This RPC server, which also serves protocols other than dnsserver, will be restarted afte…
|
NVD-CWE-Other
|
CVE-2020-14383
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 14:03
2020-12-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
663
|
7.5
5.0
|
HIGH
Network
|
A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that, when processed by the VNC server, would lead to a fl…
|
CWE-369
Divide By Zero
|
CVE-2020-25708
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 14:18
2020-11-28
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
664
|
5.5
2.1
|
MEDIUM
Local
|
An information-disclosure flaw was found in the way Heketi before 10.1.0 logs sensitive information. This flaw allows an attacker with local access to the Heketi server to read potentially sensitive …
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-10763
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:56
2020-11-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
665
|
7.4
5.8
|
HIGH
Network
|
A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. This flaw allows an off-path remote attacker to effectively bypass source port UDP randomization. Soft…
|
-
|
CVE-2020-25705
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 14:18
2020-11-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
666
|
6.5
3.3
|
MEDIUM
Adjacent
|
A Red Hat only CVE-2020-12352 regression issue was found in the way the Linux kernel's Bluetooth stack implementation handled the initialization of stack memory when handling certain AMP packets. Thi…
|
-
|
CVE-2020-25662
|
cpe:2.3:o:redhat:enterprise_linux:8.3:*
|
|
|
|
|
2024-11-21 14:18
2020-11-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
667
|
8.8
8.3
|
HIGH
Adjacent
|
A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernel's Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent …
|
-
|
CVE-2020-25661
|
cpe:2.3:o:redhat:enterprise_linux:8.3:*
|
|
|
|
|
2024-11-21 14:18
2020-11-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
668
|
7.5
5.0
|
HIGH
Network
|
A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3. This flaw allows a remote attacker to send multiple CCS messages, causing a denial of service for servers compiled …
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2020-25648
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 14:18
2020-10-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
669
|
6.6
6.5
|
MEDIUM
Network
|
Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE client (spice-gtk) and server are affe…
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-14355
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 14:03
2020-10-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
670
|
3.2
2.1
|
LOW
Local
|
hw/ide/pci.c in QEMU before 5.1.1 can trigger a NULL pointer dereference because it lacks a pointer check before an ide_cancel_dma_sync call.
|
CWE-476
NULL Pointer Dereference
|
CVE-2020-25743
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 14:18
2020-10-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|