Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.3%
  • Veröffentlicht 08.12.2021 00:15:07
  • Zuletzt bearbeitet 21.11.2024 06:30:56

In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3.2.10, HTTP requests for URLs with trailing newlines could bypass upstream access control based on URL paths.

Exploit
  • EPSS 4.99%
  • Veröffentlicht 07.12.2021 00:15:08
  • Zuletzt bearbeitet 04.11.2025 16:15:45

calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service) in html_preprocess_rules in ebooks/conversion/preprocess.py.

Exploit
  • EPSS 1.29%
  • Veröffentlicht 06.12.2021 12:15:07
  • Zuletzt bearbeitet 21.11.2024 06:36:50

vim is vulnerable to Use After Free

Exploit
  • EPSS 1.46%
  • Veröffentlicht 01.12.2021 11:15:07
  • Zuletzt bearbeitet 21.11.2024 06:23:18

vim is vulnerable to Heap-based Buffer Overflow

Exploit
  • EPSS 1.79%
  • Veröffentlicht 01.12.2021 10:15:07
  • Zuletzt bearbeitet 29.05.2026 20:09:37

vim is vulnerable to Heap-based Buffer Overflow

Exploit
  • EPSS 0.81%
  • Veröffentlicht 29.11.2021 16:15:07
  • Zuletzt bearbeitet 21.11.2024 06:22:28

A vulnerability found in udisks2. This flaw allows an attacker to input a specially crafted image file/USB leading to kernel panic. The highest threat from this vulnerability is to system availability.

  • EPSS 1.16%
  • Veröffentlicht 26.11.2021 00:15:10
  • Zuletzt bearbeitet 21.11.2024 06:30:37

In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This leads to access-control bypass in some situations in which an unrelated D-Bus system ...

  • EPSS 1.36%
  • Veröffentlicht 24.11.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:25:56

Symfony/Serializer handles serializing and deserializing data structures for Symfony, a PHP framework for web and console applications and a set of reusable PHP components. Symfony versions 4.1.0 before 4.4.35 and versions 5.0.0 before 5.3.12 are vul...

  • EPSS 0.33%
  • Veröffentlicht 24.11.2021 02:15:06
  • Zuletzt bearbeitet 21.11.2024 06:00:10

issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mod...

  • EPSS 0.34%
  • Veröffentlicht 24.11.2021 02:15:06
  • Zuletzt bearbeitet 21.11.2024 06:00:11

issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mod...