dracut (SUSE:Linux Enterprise Server 12 SP2) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 12 SP2 package dracut, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2017-9445 — CVSS 7.5 (high): In systemd through 233, certain sizes passed to dns_packet_new in systemd-resolved can cause it to allocate a buffer that's too small. A…
CVE-2016-8637 — CVSS 5.0 (medium): A local information disclosure issue was found in dracut before 045 when generating initramfs images with world-readable permissions when…