Fedoraproject

Fedora

5335 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2021-20314

  • EPSS 0.17%
  • Veröffentlicht 12.08.2021 15:15:07
  • Zuletzt bearbeitet 21.11.2024 05:46:21

Stack buffer overflow in libspf2 versions below 1.2.11 when processing certain SPF macros can lead to Denial of service and potentially code execution via malicious crafted SPF explanation messages.

7.5

CVE-2021-38593

  • EPSS 0.83%
  • Veröffentlicht 12.08.2021 02:15:06
  • Zuletzt bearbeitet 21.11.2024 06:17:36

Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke).

7.8

CVE-2021-36770

  • EPSS 0.21%
  • Veröffentlicht 11.08.2021 23:15:07
  • Zuletzt bearbeitet 03.11.2025 22:15:49

Encode.pm, as distributed in Perl through 5.34.0, allows local users to gain privileges via a Trojan horse Encode::ConfigLocal library (in the current working directory) that preempts dynamic module loading. Exploitation requires an unusual configura...

7.1

CVE-2021-0002

  • EPSS 0.07%
  • Veröffentlicht 11.08.2021 13:15:15
  • Zuletzt bearbeitet 21.11.2024 05:41:40

Improper conditions check in some Intel(R) Ethernet Controllers 800 series Linux drivers before version 1.4.11 may allow an authenticated user to potentially enable information disclosure or denial of service via local access.

4.4

CVE-2021-0004

  • EPSS 0.06%
  • Veröffentlicht 11.08.2021 13:15:15
  • Zuletzt bearbeitet 21.11.2024 05:41:40

Improper buffer restrictions in the firmware of Intel(R) Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0 may allow a privileged user to potentially enable denial of service via local access.

7.5

CVE-2021-38512

Exploit
  • EPSS 0.42%
  • Veröffentlicht 10.08.2021 23:15:07
  • Zuletzt bearbeitet 21.11.2024 06:17:17

An issue was discovered in the actix-http crate before 3.0.0-beta.9 for Rust. HTTP/1 request smuggling (aka HRS) can occur, potentially leading to credential disclosure.

5.5

CVE-2021-34335

  • EPSS 0.08%
  • Veröffentlicht 09.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:10:11

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A floating point exception (FPE) due to an integer divide by zero was found in Exiv2 versions v0.27.4 and earlier. The FPE is t...

5.5

CVE-2021-37615

  • EPSS 0.08%
  • Veröffentlicht 09.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:15:31

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A null pointer dereference was found in Exiv2 versions v0.27.4 and earlier. The null pointer dereference is triggered when Exiv...

5.5

CVE-2021-37620

  • EPSS 0.09%
  • Veröffentlicht 09.08.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:15:32

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.4 and earlier. The out-of-bounds read is triggered when Exiv2 is used t...

5.5

CVE-2021-37621

  • EPSS 0.09%
  • Veröffentlicht 09.08.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:15:32

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to print th...