Fedoraproject

Fedora

5319 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2022-3640

Exploit
  • EPSS 0.02%
  • Veröffentlicht 21.10.2022 15:15:09
  • Zuletzt bearbeitet 21.11.2024 07:19:56

A vulnerability, which was classified as critical, was found in Linux Kernel. Affected is the function l2cap_conn_del of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to ap...

9.8

CVE-2022-37454

Exploit
  • EPSS 1.5%
  • Veröffentlicht 21.10.2022 06:15:09
  • Zuletzt bearbeitet 08.05.2025 15:15:47

The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function int...

9.8

CVE-2022-3620

  • EPSS 0.34%
  • Veröffentlicht 20.10.2022 20:15:09
  • Zuletzt bearbeitet 23.05.2025 18:29:51

A vulnerability was found in Exim and classified as problematic. This issue affects the function dmarc_dns_lookup of the file dmarc.c of the component DMARC Handler. The manipulation leads to use after free. The attack may be initiated remotely. The ...

7.8

CVE-2022-41741

  • EPSS 0.83%
  • Veröffentlicht 19.10.2022 22:15:12
  • Zuletzt bearbeitet 21.11.2024 07:23:46

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local atta...

7.1

CVE-2022-41742

  • EPSS 0.07%
  • Veröffentlicht 19.10.2022 22:15:12
  • Zuletzt bearbeitet 21.11.2024 07:23:46

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local atta...

8.8

CVE-2022-39260

  • EPSS 1.19%
  • Veröffentlicht 19.10.2022 12:15:10
  • Zuletzt bearbeitet 21.11.2024 07:17:54

Git is an open source, scalable, distributed revision control system. `git shell` is a restricted login shell that can be used to implement Git's push/pull functionality via SSH. In versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2....

5.5

CVE-2022-39253

  • EPSS 3%
  • Veröffentlicht 19.10.2022 11:15:11
  • Zuletzt bearbeitet 21.11.2024 07:17:53

Git is an open source, scalable, distributed revision control system. Versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4 are subject to exposure of sensitive information to a malicious actor. When performing a local ...

3.7

CVE-2022-39399

  • EPSS 0.22%
  • Veröffentlicht 18.10.2022 21:15:14
  • Zuletzt bearbeitet 21.11.2024 07:18:12

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21....

3.7

CVE-2022-21624

  • EPSS 0.13%
  • Veröffentlicht 18.10.2022 21:15:13
  • Zuletzt bearbeitet 21.11.2024 06:45:05

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition...

5.3

CVE-2022-21626

  • EPSS 0.1%
  • Veröffentlicht 18.10.2022 21:15:13
  • Zuletzt bearbeitet 21.11.2024 06:45:06

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, ...