Redhat » Enterprise Linux : Security Vulnerabilities, CVEs, Published In 2014 (Information Leak)
The rd_build_device_space function in drivers/target/target_core_rd.c in the Linux kernel before 3.14 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from ramdisk_mcp memory by leveraging access to a SCSI initiator.
Max CVSS
2.3
EPSS Score
0.04%
Published
2014-06-23
Updated
2020-08-21
kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIG_AUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service (OOPS) via a large value of a syscall number.
Max CVSS
3.3
EPSS Score
0.04%
Published
2014-06-05
Updated
2021-07-15
Red Hat Directory Server 8 and 389 Directory Server, when debugging is enabled, allows remote attackers to obtain sensitive replicated metadata by searching the directory.
Max CVSS
5.0
EPSS Score
0.31%
Published
2014-08-21
Updated
2023-02-13
3 vulnerabilities found