Redhat » Enterprise Linux : Security Vulnerabilities, CVEs, Published In 2008 (Denial of service) CVSS score >= 7
Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps.
Max CVSS
7.5
EPSS Score
1.47%
Published
2008-05-23
Updated
2017-09-29
The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV.
Max CVSS
7.1
EPSS Score
0.31%
Published
2008-05-08
Updated
2017-09-29
Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 and Fedora 6 through 8, and on Foresight Linux and rPath appliances, allows remote attackers to cause a denial of service (memory consumption) via a large number of CWD commands, as demonstrated by an attack on a daemon with the deny_file configuration option.
Max CVSS
7.1
EPSS Score
5.69%
Published
2008-05-22
Updated
2023-02-13
The Linux kernel 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64) does not properly handle page faults during NUMA memory access, which allows local users to cause a denial of service (panic) via invalid arguments to set_mempolicy in an MPOL_BIND operation.
Max CVSS
7.2
EPSS Score
0.04%
Published
2008-02-05
Updated
2017-09-29
4 vulnerabilities found