• CVE-2019-19234

    OL CVE Issue Summary:

    When an account is set for a non-login user in /etc/passwd, it is not considered disabled by sudo.

    The newly introduced runas_check_shell sudoers setting can be used to require that the run as user have a shell that's listed in /etc/shells. Users such as "bin", "nobody", etc, do not have a valid shell, and this option prevents commands from being run as those users.

    CVE-2019-19234
    CentOS 7
    sudo-1.8.23-10_ol003.el7_9.3
    7.5

  • CVE-2025-6021

    OL CVE Issue Summary :

    A flaw was found in xmlBuildQName(), where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. 
    This issue can result in memory corruption or a denial of service when processing crafted input.

    CVE-2025-6021
    CentOS 7
    libxml2-2.9.1-6_ol005.el7.6
    libxml2
    7.5

  • CVE-2021-3518

    OL CVE Issue Summary:

    xinclude.c:xmlXIncludeDoProcess() triggers a heap-use-after-free with a crafted XML payload.

    CVE-2021-3518
    CentOS 7
    libxml2-2.9.1-6_ol012.el7.6
    8.8