Vulnerabilities (CVE)

Filtered by vendor Redhat Subscribe
Filtered by product Fedora 8
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-2376 2 Redhat, Ruby-lang 2 Fedora 8, Ruby 2024-11-21 7.5 HIGH N/A
Integer overflow in the rb_ary_fill function in array.c in Ruby before revision 17756 allows context-dependent attackers to cause a denial of service (crash) or possibly have unspecified other impact via a call to the Array#fill method with a start (aka beg) argument greater than ARY_MAX_SIZE. NOTE: this issue exists because of an incomplete fix for other closely related integer overflows.
CVE-2008-2359 2 Fedora 8, Redhat 2 Consolehelper, Fedora 8 2024-11-21 7.2 HIGH N/A
The default configuration of consolehelper in system-config-network before 1.5.10-1 on Fedora 8 lacks the USER=root directive, which allows local users of the workstation console to gain privileges and change the network configuration.