Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 0.79%
  • Veröffentlicht 13.09.2022 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:13:50

In certain Moodle products after creating a course, it is possible to add in a arbitrary "Topic" a resource, in this case a "Database" with the type "Text" where its values "Field name" and "Field description" are vulnerable to Cross Site Scripting S...

  • EPSS 3.07%
  • Veröffentlicht 13.09.2022 19:15:12
  • Zuletzt bearbeitet 27.05.2026 14:16:39

.NET Core and Visual Studio Denial of Service Vulnerability

Exploit
  • EPSS 1.75%
  • Veröffentlicht 13.09.2022 15:15:09
  • Zuletzt bearbeitet 03.11.2025 22:15:59

Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file

Exploit
  • EPSS 1.32%
  • Veröffentlicht 09.09.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 07:12:21

OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker providing malicious redirect uri can cause denial of service. An attacker can also leverage usage of `uri_validate` ...

Exploit
  • EPSS 1.12%
  • Veröffentlicht 09.09.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 07:21:18

cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read.

  • EPSS 0.84%
  • Veröffentlicht 09.09.2022 18:15:10
  • Zuletzt bearbeitet 17.01.2025 13:15:19

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their su...

  • EPSS 0.23%
  • Veröffentlicht 09.09.2022 15:15:15
  • Zuletzt bearbeitet 21.11.2024 07:18:58

A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the NVME_IOCTL_SUBSYS_RESET through the device file of the driver, resulting in a PCIe link disconnect.

  • EPSS 3.5%
  • Veröffentlicht 09.09.2022 14:15:08
  • Zuletzt bearbeitet 03.11.2025 22:15:46

A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int("text"), a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits (float, decimal, int.from_bytes()...

Exploit
  • EPSS 39.39%
  • Veröffentlicht 09.09.2022 05:15:07
  • Zuletzt bearbeitet 21.11.2024 06:52:57

The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized.

  • EPSS 2.61%
  • Veröffentlicht 06.09.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 06:56:07

In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.