The security audit functionality in Red Hat JBoss Enterprise Application Platform (EAP) 6.x before 6.2.1 logs request parameters in plaintext, which might allow local users to obtain passwords by reading the log files.
Source: CVE-2014-0058 (jboss_enterprise_application_platform)
Source: CVE-2014-0322 (internet_explorer)
CVE-2014-0019 (fedora, opensuse, socat)
Stack-based buffer overflow in socat 220.127.116.11 through 18.104.22.168 and 2.0.0-b1 through 2.0.0-b6 allows local users to cause a denial of service (segmentation fault) via a long server name in the PROXY-CONNECT address in the command line.
Source: CVE-2014-0019 (fedora, opensuse, socat)