Fedoraproject

Fedora

5335 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2021-32792

  • EPSS 0.36%
  • Veröffentlicht 26.07.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:07:45

mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In mod_auth_openidc before version 2.4.9, there is a...

7.5

CVE-2021-31292

Exploit
  • EPSS 0.55%
  • Veröffentlicht 26.07.2021 17:15:07
  • Zuletzt bearbeitet 21.11.2024 06:05:24

An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service (DOS) via crafted metadata.

6.1

CVE-2021-32786

Exploit
  • EPSS 0.16%
  • Veröffentlicht 22.07.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:07:44

mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In versions prior to 2.4.9, `oidc_validate_redirect_...

7.5

CVE-2021-35063

  • EPSS 1.08%
  • Veröffentlicht 22.07.2021 18:15:23
  • Zuletzt bearbeitet 21.11.2024 06:11:46

Suricata before 5.0.7 and 6.x before 6.0.3 has a "critical evasion."

5.5

CVE-2021-37220

Exploit
  • EPSS 0.25%
  • Veröffentlicht 21.07.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:14:53

MuPDF through 1.18.1 has an out-of-bounds write because the cached color converter does not properly consider the maximum key size of a hash table. This can, for example, be seen with crafted "mutool draw" input.

7.5

CVE-2021-32761

  • EPSS 0.63%
  • Veröffentlicht 21.07.2021 21:15:07
  • Zuletzt bearbeitet 21.11.2024 06:07:41

Redis is an in-memory database that persists on disk. A vulnerability involving out-of-bounds read and integer overflow to buffer overflow exists starting with version 2.2 and prior to versions 5.0.13, 6.0.15, and 6.2.5. On 32-bit systems, Redis `*BI...

7.1

CVE-2021-2389

  • EPSS 0.51%
  • Veröffentlicht 21.07.2021 15:15:41
  • Zuletzt bearbeitet 21.11.2024 06:03:01

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via ...

4.9

CVE-2021-2385

  • EPSS 0.4%
  • Veröffentlicht 21.07.2021 15:15:39
  • Zuletzt bearbeitet 21.11.2024 06:03:00

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows high privileged attacker with networ...

4

CVE-2021-2383

  • EPSS 0.44%
  • Veröffentlicht 21.07.2021 15:15:38
  • Zuletzt bearbeitet 21.11.2024 06:03:00

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...

4

CVE-2021-2384

  • EPSS 0.44%
  • Veröffentlicht 21.07.2021 15:15:38
  • Zuletzt bearbeitet 21.11.2024 06:03:00

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...