Search Results (Refine Search)
- CPE Product Version: cpe:/o:redhat:enterprise_linux_desktop:4
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2011-4517 |
The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file. Published: December 14, 2011; 10:57:34 PM -0500 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2008-3844 |
Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known. Published: August 27, 2008; 4:41:00 PM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |
CVE-2008-1767 |
Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps. Published: May 23, 2008; 11:32:00 AM -0400 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2007-6282 |
The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV. Published: May 07, 2008; 8:20:00 PM -0400 |
V3.x:(not available) V2.0: 7.1 HIGH |
CVE-2008-1615 |
Linux kernel 2.6.18, and possibly other versions, when running on AMD64 architectures, allows local users to cause a denial of service (crash) via certain ptrace calls. Published: May 07, 2008; 8:20:00 PM -0400 |
V3.x:(not available) V2.0: 4.9 MEDIUM |
CVE-2007-4130 |
The Linux kernel 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64) does not properly handle page faults during NUMA memory access, which allows local users to cause a denial of service (panic) via invalid arguments to set_mempolicy in an MPOL_BIND operation. Published: February 04, 2008; 7:00:00 PM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |