Fedoraproject

Fedora

5319 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2014-8124

  • EPSS 0.78%
  • Published 12.12.2014 15:59:09
  • Last modified 12.04.2025 10:46:40

OpenStack Dashboard (Horizon) before 2014.1.3 and 2014.2.x before 2014.2.1 does not properly handle session records when using a db or memcached session engine, which allows remote attackers to cause a denial of service via a large number of requests...

4.3

CVE-2014-8488

Exploit
  • EPSS 0.26%
  • Published 10.12.2014 01:59:00
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the administrator panel in Yourls 1.7 allows remote attackers to inject arbitrary web script or HTML via a URL that is processed by the Shorten functionality.

7.5

CVE-2014-9274

Exploit
  • EPSS 5.94%
  • Published 09.12.2014 23:59:10
  • Last modified 12.04.2025 10:46:40

UnRTF allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code as demonstrated by a file containing the string "{\cb-999999999".

3.6

CVE-2014-8737

Exploit
  • EPSS 0.06%
  • Published 09.12.2014 23:59:07
  • Last modified 12.04.2025 10:46:40

Multiple directory traversal vulnerabilities in GNU binutils 2.24 and earlier allow local users to delete arbitrary files via a .. (dot dot) or full path name in an archive to (1) strip or (2) objcopy or create arbitrary files via (3) a .. (dot dot) ...

7.5

CVE-2014-8504

Exploit
  • EPSS 4.45%
  • Published 09.12.2014 23:59:06
  • Last modified 12.04.2025 10:46:40

Stack-based buffer overflow in the srec_scan function in bfd/srec.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a crafted file.

7.5

CVE-2014-8503

Exploit
  • EPSS 9.96%
  • Published 09.12.2014 23:59:05
  • Last modified 12.04.2025 10:46:40

Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a crafted ihex file.

7.5

CVE-2014-8502

Exploit
  • EPSS 8.37%
  • Published 09.12.2014 23:59:04
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in the pe_print_edata function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a truncated export table in a PE ...

7.5

CVE-2014-8501

Exploit
  • EPSS 6.12%
  • Published 09.12.2014 23:59:03
  • Last modified 12.04.2025 10:46:40

The _bfd_XXi_swap_aouthdr_in function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) and possibly have other unspecified impact via a crafted NumberOfRvaAndSizes field in ...

7.5

CVE-2014-8485

Media report Exploit
  • EPSS 5.87%
  • Published 09.12.2014 23:59:01
  • Last modified 12.04.2025 10:46:40

The setup_group function in bfd/elf.c in libbfd in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted section group headers in an ELF file.

5

CVE-2014-8484

  • EPSS 2.77%
  • Published 09.12.2014 23:59:00
  • Last modified 12.04.2025 10:46:40

The srec_scan function in bfd/srec.c in libdbfd in GNU binutils before 2.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a small S-record.