Fedoraproject

Fedora

5319 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2024-32658

  • EPSS 0.73%
  • Published 23.04.2024 18:15:15
  • Last modified 04.02.2025 17:41:35

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

6.5

CVE-2024-31208

  • EPSS 2.3%
  • Published 23.04.2024 18:15:14
  • Last modified 26.08.2025 18:45:47

Synapse is an open-source Matrix homeserver. A remote Matrix user with malicious intent, sharing a room with Synapse instances before 1.105.1, can dispatch specially crafted events to exploit a weakness in the V2 state resolution algorithm. This can ...

9.8

CVE-2024-32459

  • EPSS 4.64%
  • Published 22.04.2024 22:15:07
  • Last modified 04.02.2025 17:57:52

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known workar...

9.8

CVE-2024-32460

  • EPSS 0.57%
  • Published 22.04.2024 22:15:07
  • Last modified 04.02.2025 17:58:52

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using `/bpp:32` legacy `GDI` drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 ...

9.8

CVE-2024-32039

  • EPSS 0.57%
  • Published 22.04.2024 21:15:49
  • Last modified 04.02.2025 18:03:30

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients using a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to integer overflow and out-of-bounds write. Versions 3.5.0 and 2.11.6 patch the issue. As a wor...

9.8

CVE-2024-32040

  • EPSS 0.57%
  • Published 22.04.2024 21:15:49
  • Last modified 04.02.2025 17:54:59

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 and have connections to servers using the `NSC` codec are vulnerable to integer underflow. Versions 3.5.0 an...

9.8

CVE-2024-32041

Exploit
  • EPSS 0.59%
  • Published 22.04.2024 21:15:49
  • Last modified 04.02.2025 17:56:13

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate...

9.8

CVE-2024-32458

  • EPSS 0.57%
  • Published 22.04.2024 21:15:49
  • Last modified 04.02.2025 17:57:21

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use `/gfx`...

7.8

CVE-2023-50008

Exploit
  • EPSS 0.03%
  • Published 19.04.2024 17:15:52
  • Last modified 06.06.2025 13:15:23

FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the colorcorrect filter, in the av_malloc function in libavutil/mem.c:105:9 component.

8

CVE-2023-50009

Exploit
  • EPSS 0.02%
  • Published 19.04.2024 17:15:52
  • Last modified 09.06.2025 16:15:34

FFmpeg v.n6.1-3-g466799d4f5 allows a heap-based buffer overflow via the ff_gaussian_blur_8 function in libavfilter/edge_template.c:116:5 component.