Fedoraproject

Fedora

5335 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-32793

  • EPSS 0.68%
  • Veröffentlicht 24.08.2022 20:15:08
  • Zuletzt bearbeitet 30.05.2025 17:15:25

Multiple out-of-bounds write issues were addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.5, watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6. An app may be able to disclose kernel memory.

3.3

CVE-2021-4217

Exploit
  • EPSS 0.17%
  • Veröffentlicht 24.08.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:37:10

A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution.

6.5

CVE-2021-3975

  • EPSS 0.4%
  • Veröffentlicht 23.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:23:17

A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAl...

5.5

CVE-2021-3995

Exploit
  • EPSS 0.27%
  • Veröffentlicht 23.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:23:20

A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows an unprivileged local attacker to unmount FUSE filesystems that belong to certain other user...

5.5

CVE-2021-3996

Exploit
  • EPSS 0.23%
  • Veröffentlicht 23.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:23:20

A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows a local user on a vulnerable system to unmount other users' filesystems that are either worl...

5.5

CVE-2021-3997

Exploit
  • EPSS 0.02%
  • Veröffentlicht 23.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:23:20

A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles may lead to a denial of service at boot time when too many nested directories are created in /tmp.

7.8

CVE-2022-2938

  • EPSS 0.03%
  • Veröffentlicht 23.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:57

A flaw was found in the Linux kernel's implementation of Pressure Stall Information. While the feature is disabled by default, it could allow an attacker to crash the system or have other memory-corruption side effects.

7.8

CVE-2022-31676

  • EPSS 0.07%
  • Veröffentlicht 23.08.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:05:06

VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability. A malicious actor with local non-administrative access to the Guest OS can escalate privileges as a root user in the virtual machine.

6.5

CVE-2022-37428

  • EPSS 0.04%
  • Veröffentlicht 23.08.2022 17:15:15
  • Zuletzt bearbeitet 21.11.2024 07:14:58

PowerDNS Recursor up to and including 4.5.9, 4.6.2 and 4.7.1, when protobuf logging is enabled, has Improper Cleanup upon a Thrown Exception, leading to a denial of service (daemon crash) via a DNS query that leads to an answer with specific properti...

7.8

CVE-2022-2946

Exploit
  • EPSS 0.04%
  • Veröffentlicht 23.08.2022 17:15:14
  • Zuletzt bearbeitet 21.11.2024 07:01:58

Use After Free in GitHub repository vim/vim prior to 9.0.0246.