Fedoraproject

Fedora

5319 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2021-4056

  • EPSS 1.6%
  • Published 23.12.2021 01:15:08
  • Last modified 21.11.2024 06:36:48

Type confusion in loader in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2021-4057

  • EPSS 2.63%
  • Published 23.12.2021 01:15:08
  • Last modified 21.11.2024 06:36:49

Use after free in file API in Google Chrome prior to 96.0.4664.93 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2021-4058

  • EPSS 2.44%
  • Published 23.12.2021 01:15:08
  • Last modified 21.11.2024 06:36:49

Heap buffer overflow in ANGLE in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

6.5

CVE-2021-4059

  • EPSS 1.98%
  • Published 23.12.2021 01:15:08
  • Last modified 21.11.2024 06:36:49

Insufficient data validation in loader in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

8.8

CVE-2021-4061

  • EPSS 1.61%
  • Published 23.12.2021 01:15:08
  • Last modified 21.11.2024 06:36:49

Type confusion in V8 in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2021-38005

  • EPSS 1.42%
  • Published 23.12.2021 01:15:07
  • Last modified 21.11.2024 06:16:15

Use after free in loader in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2021-38006

  • EPSS 1.21%
  • Published 23.12.2021 01:15:07
  • Last modified 21.11.2024 06:16:15

Use after free in storage foundation in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2021-38007

  • EPSS 0.48%
  • Published 23.12.2021 01:15:07
  • Last modified 21.11.2024 06:16:15

Type confusion in V8 in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2021-38008

Exploit
  • EPSS 1.99%
  • Published 23.12.2021 01:15:07
  • Last modified 21.11.2024 06:16:15

Use after free in media in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

7

CVE-2021-44733

Exploit
  • EPSS 0.28%
  • Published 22.12.2021 17:15:09
  • Last modified 21.11.2024 06:31:28

A use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem in the Linux kernel through 5.15.11. This occurs because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object.