|
671
|
7.2
7.5
|
HIGH
Network
|
A flaw was found in the HDLC_PPP module of the Linux kernel in versions before 5.9-rc7. Memory corruption and a read overflow is caused by improper input validation in the ppp_cp_parse_cr function wh…
|
-
|
CVE-2020-25643
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 14:18
2020-10-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
672
|
5.5
4.9
|
MEDIUM
Local
|
A flaw was found in the Linux kernel's implementation of biovecs in versions before 5.9-rc7. A zero-length biovec request issued by the block subsystem could cause the kernel to enter an infinite loo…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2020-25641
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 14:18
2020-10-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
673
|
5.3
4.0
|
MEDIUM
Network
|
An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink API or the Docker-compatible REST API, if multiple containers are cr…
|
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer
|
CVE-2020-14370
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 14:03
2020-09-23
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
674
|
7.8
6.8
|
HIGH
Local
|
A vulnerability was found in upstream release cryptsetup-2.2.0 where, there's a bug in LUKS2 format validation code, that is effectively invoked on every device/image presenting itself as LUKS2 conta…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-14382
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 14:03
2020-09-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
675
|
7.8
4.6
|
HIGH
Local
|
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vul…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2020-14362
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 14:03
2020-09-16
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
676
|
7.8
4.6
|
HIGH
Local
|
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vul…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2020-14361
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 14:03
2020-09-16
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
677
|
7.8
4.6
|
HIGH
Local
|
A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat …
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2020-14346
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 14:03
2020-09-16
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
678
|
6.0
3.3
|
MEDIUM
Local
|
A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As per upstream, a signature bypass is theoretically possible, but not practi…
|
-
|
CVE-2020-10759
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:56
2020-09-16
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
679
|
6.6
7.2
|
MEDIUM
Physics
|
A flaw was found in the Linux kernel’s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console, calling an ioctl VT_RESIZE, which causes an out-of…
|
-
|
CVE-2020-14331
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 14:03
2020-09-16
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
680
|
7.3
4.4
|
HIGH
Local
|
Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.
|
CWE-426
Untrusted Search Path
|
CVE-2020-0570
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 13:53
2020-09-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|