Known Vulnerabilities for products from Redhat

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Redhat".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2022-21682 Flatpak is a Linux application sandboxing and distribution framework. A path traversal vulnerability affects versions of Flat... 6.5 - MEDIUM 2022-01-13 2022-01-26
CVE-2021-43860 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 8.6 - HIGH 2022-01-12 2022-01-25
CVE-2021-43389 An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr... 5.5 - MEDIUM 2021-11-04 2021-12-17
CVE-2021-42550 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 6.6 - MEDIUM 2021-12-16 2021-12-29
CVE-2021-41819 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 7.5 - HIGH 2022-01-01 2022-01-21
CVE-2021-41817 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 7.5 - HIGH 2022-01-01 2022-01-11
CVE-2021-40153 squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsqu... 8.1 - HIGH 2021-08-27 2021-10-07
CVE-2021-39251 A crafted NTFS image can cause a NULL pointer dereference in ntfs_extent_inode_open in NTFS-3G < 2021.8.22. 7.8 - HIGH 2021-09-07 2021-11-29
CVE-2021-39013 IBM Cloud Pak for Security (CP4S) 1.7.2.0, 1.7.1.0, and 1.7.0.0 could allow an authenticated user to obtain sensitive informa... 6.5 - MEDIUM 2021-12-22 2021-12-28
CVE-2021-38911 IBM Security Risk Manager on CP4S 1.7.0.0 stores user credentials in plain clear text which can be read by a an authenticated... 4.9 - MEDIUM 2021-10-19 2021-10-22
CVE-2021-38160 ** DISPUTED ** In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered b... 7.8 - HIGH 2021-08-07 2022-01-01
CVE-2021-33285 In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value... 7.8 - HIGH 2021-09-07 2021-11-29
CVE-2021-32672 Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malforme... 4.3 - MEDIUM 2021-10-04 2021-11-28
CVE-2021-32029 A flaw was found in postgresql. Using an UPDATE ... RETURNING command on a purpose-crafted table, an authenticated database u... 6.5 - MEDIUM 2021-10-08 2021-12-03
CVE-2021-32027 A flaw was found in postgresql in versions before 13.3, before 12.7, before 11.12, before 10.17 and before 9.6.22. While modi... 8.8 - HIGH 2021-06-01 2021-09-14
CVE-2021-31918 A flaw was found in tripleo-ansible version as shipped in Red Hat Openstack 16.1. The Ansible log file is readable to all use... 7.5 - HIGH 2021-05-06 2021-05-17
CVE-2021-31917 A flaw was found in Red Hat DataGrid 8.x (8.0.0, 8.0.1, 8.1.0 and 8.1.1) and Infinispan (10.0.0 through 12.0.0). An attacker ... 9.8 - CRITICAL 2021-09-21 2022-01-11
CVE-2021-31916 An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module... 6.7 - MEDIUM 2021-05-06 2022-01-01
CVE-2021-30501 An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a... 5.5 - MEDIUM 2021-05-27 2021-06-08
CVE-2021-30500 Null pointer dereference was found in upx PackLinuxElf::canUnpack() in p_lx_elf.cpp,in version UPX 4.0.0. That allow attacker... 7.8 - HIGH 2021-05-27 2021-06-08

Known software with vulnerabilities from Redhat

Type Vendor Product Version
Operating
System
Redhat389 Directory Server-
ApplicationRedhat3scale-
ApplicationRedhatAdvanced Cluster Management For Kubernetes2.0
ApplicationRedhatAeolus Conductor-
ApplicationRedhatAmq2.0
ApplicationRedhatAmq Online-
ApplicationRedhatAnalog Real-time Synthesizer-
ApplicationRedhatAnsible0.0.1
ApplicationRedhatAnsible Engine0.0.1
ApplicationRedhatAnsible Tower-
ApplicationRedhatApicast2.0.0
ApplicationRedhatApplication Server-
ApplicationRedhatAutomatic Bug Reporting Tool0.0.2
ApplicationRedhatAutomation Manager7.3.1
ApplicationRedhatBeaker0.3
ApplicationRedhatBigmem Kernel-
ApplicationRedhatBodhi0.2.0
ApplicationRedhatCairo-
ApplicationRedhatCeph0.1
ApplicationRedhatCeph Storage1.3

Popular searches for "Redhat"

Red Hat'American multinational software company

Red Hat, Inc. is an American multinational software company that provides open source software products to enterprises. Founded in 1993, Red Hat has its corporate headquarters in Raleigh, North Carolina, with other offices worldwide. It became a subsidiary of IBM on July 9, 2019.Red Hat has become associated to a large extent with its enterprise operating system Red Hat Enterprise Linux.

Red Hat events

apps.apple.com/us/app/red-hat-events/id1224277007 Search in App Store

App Store Red Hat events Business 14 N" 1224277007 :

© CVE.report 2022 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report