The security audit functionality in Red Hat JBoss Enterprise Application Platform (EAP) 6.x before 6.2.1 logs request parameters in plaintext, which might allow local users to obtain passwords by reading the log files.
Source: CVE-2014-0058 (jboss_enterprise_application_platform)
Source: CVE-2014-0322 (internet_explorer)
CVE-2014-0019 (fedora, opensuse, socat)
Stack-based buffer overflow in socat 22.214.171.124 through 126.96.36.199 and 2.0.0-b1 through 2.0.0-b6 allows local users to cause a denial of service (segmentation fault) via a long server name in the PROXY-CONNECT address in the command line.
Source: CVE-2014-0019 (fedora, opensuse, socat)