Fedoraproject

Fedora

5335 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2021-37622

  • EPSS 0.09%
  • Veröffentlicht 09.08.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:15:32

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify t...

5.5

CVE-2021-37616

  • EPSS 0.08%
  • Veröffentlicht 09.08.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:15:31

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A null pointer dereference was found in Exiv2 versions v0.27.4 and earlier. The null pointer dereference is triggered when Exiv...

5.5

CVE-2021-37618

  • EPSS 0.07%
  • Veröffentlicht 09.08.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:15:31

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.4 and earlier. The out-of-bounds read is triggered when Exiv2 is used t...

5.5

CVE-2021-37619

  • EPSS 0.07%
  • Veröffentlicht 09.08.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:15:32

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.4 and earlier. The out-of-bounds read is triggered when Exiv2 is used t...

5.5

CVE-2021-32815

  • EPSS 0.15%
  • Veröffentlicht 09.08.2021 18:15:07
  • Zuletzt bearbeitet 21.11.2024 06:07:48

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. The assertion failure is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacker could potenti...

5.5

CVE-2021-34334

  • EPSS 0.11%
  • Veröffentlicht 09.08.2021 18:15:07
  • Zuletzt bearbeitet 21.11.2024 06:10:11

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop is triggered when Exiv2 is used to read the metadata of a crafted image file. An attacker could potentially ex...

5.5

CVE-2021-37623

  • EPSS 0.09%
  • Veröffentlicht 09.08.2021 18:15:07
  • Zuletzt bearbeitet 21.11.2024 06:15:32

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify t...

5.9

CVE-2021-36221

  • EPSS 0.2%
  • Veröffentlicht 08.08.2021 06:15:08
  • Zuletzt bearbeitet 21.11.2024 06:13:20

Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort.

9.8

CVE-2021-38173

  • EPSS 0.2%
  • Veröffentlicht 07.08.2021 19:15:06
  • Zuletzt bearbeitet 21.11.2024 06:16:33

Btrbk before 0.31.2 allows command execution because of the mishandling of remote hosts filtering SSH commands using ssh_filter_btrbk.sh in authorized_keys.

7.8

CVE-2021-38166

  • EPSS 0.1%
  • Veröffentlicht 07.08.2021 18:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:32

In kernel/bpf/hashtab.c in the Linux kernel through 5.13.8, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket. NOTE: exploitation might be impractical without the CAP_SYS_ADMIN capability.