Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.19%
  • Veröffentlicht 23.08.2022 17:15:15
  • Zuletzt bearbeitet 21.11.2024 07:14:58

PowerDNS Recursor up to and including 4.5.9, 4.6.2 and 4.7.1, when protobuf logging is enabled, has Improper Cleanup upon a Thrown Exception, leading to a denial of service (daemon crash) via a DNS query that leads to an answer with specific properti...

Exploit
  • EPSS 0.5%
  • Veröffentlicht 23.08.2022 17:15:14
  • Zuletzt bearbeitet 21.11.2024 07:01:58

Use After Free in GitHub repository vim/vim prior to 9.0.0246.

  • EPSS 1.26%
  • Veröffentlicht 23.08.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:22:36

A flaw was found in the vhost library in DPDK. Function vhost_user_set_inflight_fd() does not validate `msg->payload.inflight.num_queues`, possibly causing out-of-bounds memory read/write. Any software using DPDK vhost library may crash as a result o...

Exploit
  • EPSS 1.58%
  • Veröffentlicht 23.08.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:22:44

A memory leak was found in Open vSwitch (OVS) during userspace IP fragmentation processing. An attacker could use this flaw to potentially exhaust available memory by keeping sending packet fragments.

  • EPSS 0.37%
  • Veröffentlicht 23.08.2022 16:15:09
  • Zuletzt bearbeitet 21.11.2024 05:51:19

An improper link resolution flaw while extracting an archive can lead to changing the access control list (ACL) of the target of the link. An attacker may provide a malicious archive to a victim user, who would trigger this flaw when trying to extrac...

  • EPSS 0.37%
  • Veröffentlicht 23.08.2022 16:15:09
  • Zuletzt bearbeitet 21.11.2024 06:05:55

An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of a file outside of the archive. An attacker may provide a malicious archive to a victim user, who would trigger...

  • EPSS 1.72%
  • Veröffentlicht 23.08.2022 16:15:09
  • Zuletzt bearbeitet 21.08.2025 17:57:42

MaxQueryDuration not honoured in Samba AD DC LDAP

  • EPSS 1.13%
  • Veröffentlicht 23.08.2022 05:15:08
  • Zuletzt bearbeitet 21.11.2024 06:52:57

The package open62541/open62541 before 1.2.5, from 1.3-rc1 and before 1.3.1 are vulnerable to Denial of Service (DoS) due to a missing limitation on the number of received chunks - per single session or in total for all concurrent sessions. An attack...

  • EPSS 1.99%
  • Veröffentlicht 23.08.2022 01:15:07
  • Zuletzt bearbeitet 17.12.2025 22:15:56

Python 3.x through 3.10 has an open redirection vulnerability in lib/http/server.py due to no protection against multiple (/) at the beginning of URI path which may leads to information disclosure. NOTE: this is disputed by a third party because the ...

Exploit
  • EPSS 0.47%
  • Veröffentlicht 22.08.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 07:01:55

NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0240.