|
270861
|
- |
|
redhat
|
openshift_origin
|
The API server in OpenShift Origin 1.0.5 allows remote attackers to cause a denial of service (master process crash) via crafted JSON data.
|
CWE-20
Improper Input Validation
|
CVE-2015-5250
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270862
|
- |
|
libvdpau_project
canonical
|
libvdpau
ubuntu_linux
|
The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2015-5200
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270863
|
- |
|
canonical
libvdpau_project
|
ubuntu_linux
libvdpau
|
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAU_DRIVER environment variable.
|
CWE-22
Path Traversal
|
CVE-2015-5199
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270864
|
- |
|
libvdpau_project
canonical
|
libvdpau
ubuntu_linux
|
libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAU_DRIVER_PATH environment variable.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-5198
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270865
|
- |
|
pacemaker\/corosync_configuration_system_project
|
pacemaker\/corosync_configuration_system
|
The pcsd web UI in PCS 0.9.139 and earlier allows remote authenticated users to execute arbitrary commands via "escape characters" in a URL.
|
CWE-77
Command Injection
|
CVE-2015-5190
|
2024-11-21 11:32 |
2015-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270866
|
- |
|
pacemaker\/corosync_configuration_system_project
|
pacemaker\/corosync_configuration_system
|
Race condition in pcsd in PCS 0.9.139 and earlier uses a global variable to validate usernames, which allows remote authenticated users to gain privileges by sending a command that is checked for sec…
|
CWE-362
Race Condition
|
CVE-2015-5189
|
2024-11-21 11:32 |
2015-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270867
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux_server_aus
|
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 provide inappropriate -EAGAIN return values, which allows remote attackers to cause a denial of service (EPOLLET e…
|
CWE-399
Resource Management Errors
|
CVE-2015-5366
|
2024-11-21 11:32 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270868
|
- |
|
linux
redhat
debian
canonical
|
linux_kernel
enterprise_linux_server_aus
debian_linux
ubuntu_linux
|
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 do not properly consider yielding a processor, which allows remote attackers to cause a denial of service (system …
|
CWE-399
Resource Management Errors
|
CVE-2015-5364
|
2024-11-21 11:32 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270869
|
- |
|
redhat
linux
|
enterprise_linux_server_eus
enterprise_linux_hpc_node
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
linux_kernel
|
arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_64 platform mishandles IRET faults in processing NMIs that occurred during userspace execution, which might allow local users to …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-5157
|
2024-11-21 11:32 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270870
|
- |
|
hp
|
virtual_connect_enterprise_manager_sdk
|
HP Virtual Connect Enterprise Manager (VCEM) SDK before 7.5.0, as used in HP Matrix Operating Environment before 7.5.0 and other products, allows remote attackers to obtain sensitive information or m…
|
NVD-CWE-noinfo
|
CVE-2015-5432
|
2024-11-21 11:32 |
2015-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
