threat
engine
.sh
Back
·
··:··
Home
/
Product
/
redhat codeready linux builder
Product
redhat codeready linux builder
41 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-13601
all versions
A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string(
7.7
HIGH
CVE-2025-3155
all versions
A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerabilit
7.4
HIGH
CVE-2025-2784
all versions
A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_white
7.0
HIGH
CVE-2023-3758
all versions
A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to
7.1
HIGH
CVE-2024-1488
all versions
A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modif
8.0
HIGH
CVE-2023-5455
all versions
A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows
6.5
MEDIUM
CVE-2023-4641
all versions
A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password fails on t
4.7
MEDIUM
CVE-2023-5633
all versions
The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way m
7.8
HIGH
CVE-2023-4911
all versions
A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment varia
7.8
HIGH
CVE-2023-4732
all versions
A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a lo
4.7
MEDIUM
CVE-2023-4042
all versions
A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it wa
5.5
MEDIUM
CVE-2023-0179
all versions
A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel. This issue could allow the leakage of bo
7.8
HIGH
CVE-2019-8720
all versions
A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitr
8.8
HIGH
CVE-2021-3669
all versions
A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts
5.5
MEDIUM
CVE-2021-3975
all versions
A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using mu
6.5
MEDIUM
CVE-2021-31566
all versions
An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and
7.8
HIGH
CVE-2021-23177
all versions
An improper link resolution flaw while extracting an archive can lead to changing the access control list (ACL) of the target of t
7.8
HIGH
CVE-2021-3659
all versions
A NULL pointer dereference flaw was found in the Linux kernel’s IEEE 802.15.4 wireless networking subsystem in the way the user
5.5
MEDIUM
CVE-2021-3697
all versions
A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap.
7.0
HIGH
CVE-2021-3696
all versions
A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in
4.5
MEDIUM
CVE-2021-3695
all versions
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to
4.5
MEDIUM
CVE-2022-0435
all versions
A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious
8.8
HIGH
CVE-2022-0330
all versions
A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicio
7.8
HIGH
CVE-2022-1011
all versions
A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). This flaw allows a loc
7.8
HIGH
CVE-2021-20257
all versions
An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descripto
6.5
MEDIUM
CVE-2022-0847
all versions
A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_
7.8
HIGH
CVE-2022-0516
all versions
A vulnerability was found in kvm_s390_guest_sida_op in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel.
7.8
HIGH
CVE-2021-3733
all versions
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (s
6.5
MEDIUM
CVE-2021-3737
all versions
A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who
7.5
HIGH
CVE-2021-3656
all versions
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual
8.8
HIGH
CVE-2021-3744
all versions
A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allo
5.5
MEDIUM
CVE-2022-0492
all versions
A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw,
7.8
HIGH
CVE-2021-44142
all versions
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients
8.8
HIGH
CVE-2021-3930
all versions
An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_s
6.5
MEDIUM
CVE-2020-25717
all versions
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possibl
8.1
HIGH
CVE-2016-2124
all versions
A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext passw
5.9
MEDIUM
CVE-2020-14301
all versions
An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based d
6.5
MEDIUM
CVE-2020-27842
all versions
There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be process
5.5
MEDIUM
CVE-2019-11135
all versions
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enabl
6.5
MEDIUM
CVE-2019-3460
all versions
A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was found in the Linux kernel before 5.1-rc1.
6.5
MEDIUM
CVE-2019-3459
all versions
A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel before 5.1-rc1.
6.5
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin