Fedoraproject

Fedora

5319 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2024-1283

  • EPSS 1.73%
  • Veröffentlicht 07.02.2024 00:15:56
  • Zuletzt bearbeitet 17.06.2025 15:15:38

Heap buffer overflow in Skia in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

9.8

CVE-2024-1284

  • EPSS 0.92%
  • Veröffentlicht 07.02.2024 00:15:56
  • Zuletzt bearbeitet 15.05.2025 20:15:40

Use after free in Mojo in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

3.3

CVE-2024-1048

  • EPSS 0.01%
  • Veröffentlicht 06.02.2024 18:15:59
  • Zuletzt bearbeitet 21.11.2024 08:49:40

A flaw was found in the grub2-set-bootflag utility of grub2. After the fix of CVE-2019-14865, grub2-set-bootflag will create a temporary file with the new grubenv content and rename it to the original grubenv file. If the program is killed before the...

5.5

CVE-2024-0690

  • EPSS 0.06%
  • Veröffentlicht 06.02.2024 12:15:55
  • Zuletzt bearbeitet 17.01.2025 20:15:27

An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. Information is still included in the output in certain tasks, such as loop items. Depending on the task, this iss...

7.8

CVE-2024-22667

Medienbericht Exploit
  • EPSS 0.18%
  • Veröffentlicht 05.02.2024 08:15:44
  • Zuletzt bearbeitet 15.05.2025 20:15:43

Vim before 9.0.2142 has a stack-based buffer overflow because did_set_langmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback functions.

8.6

CVE-2024-21626

Exploit
  • EPSS 3.88%
  • Veröffentlicht 31.01.2024 22:15:53
  • Zuletzt bearbeitet 21.11.2024 08:54:45

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc exec) to hav...

7.8

CVE-2023-6246

Exploit
  • EPSS 25.08%
  • Veröffentlicht 31.01.2024 14:15:48
  • Zuletzt bearbeitet 21.11.2024 08:43:27

A heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when the openlog function was not called, or called with the ident argument...

7.5

CVE-2023-6779

Exploit
  • EPSS 0.71%
  • Veröffentlicht 31.01.2024 14:15:48
  • Zuletzt bearbeitet 21.11.2024 08:44:32

An off-by-one heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when these functions are called with a message bigger than INT_...

5.3

CVE-2023-6780

Exploit
  • EPSS 0.27%
  • Veröffentlicht 31.01.2024 14:15:48
  • Zuletzt bearbeitet 07.02.2025 17:15:29

An integer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when these functions are called with a very long message, leading to an incorrect ca...

7.8

CVE-2024-1086

Warnung Exploit
  • EPSS 85.85%
  • Veröffentlicht 31.01.2024 13:15:10
  • Zuletzt bearbeitet 02.04.2025 20:32:33

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the n...