Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 0.69%
  • Veröffentlicht 26.05.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:03:59

A flaw was found in PoDoFo 0.9.7. An uncontrolled recursive call among PdfTokenizer::ReadArray(), PdfTokenizer::GetNextVariant() and PdfTokenizer::ReadDataType() functions can lead to a stack overflow.

Exploit
  • EPSS 0.73%
  • Veröffentlicht 26.05.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:03:59

A flaw was found in PoDoFo 0.9.7. An uncontrolled recursive call in PdfNamesTree::AddToDictionary function in src/podofo/doc/PdfNamesTree.cpp can lead to a stack overflow.

Exploit
  • EPSS 1.35%
  • Veröffentlicht 26.05.2021 22:15:08
  • Zuletzt bearbeitet 03.11.2025 20:15:46

A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead to memory corruption and other potential consequences.

Exploit
  • EPSS 1.18%
  • Veröffentlicht 26.05.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:21:51

An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in read_objects() could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory corruption. The highest...

Exploit
  • EPSS 6.12%
  • Veröffentlicht 26.05.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:54:34

In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life (EOL) and no longer supported by ISC. From inspecti...

  • EPSS 0.25%
  • Veröffentlicht 26.05.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:46:18

A flaw was found in NetworkManager in versions before 1.30.0. Setting match.path and activating a profile crashes NetworkManager. The highest threat from this vulnerability is to system availability.

  • EPSS 7.29%
  • Veröffentlicht 26.05.2021 15:15:08
  • Zuletzt bearbeitet 21.11.2024 06:08:29

golang.org/x/net before v0.0.0-20210520170846-37e1c6afe023 allows attackers to cause a denial of service (infinite loop) via crafted ParseFragment input.

  • EPSS 0.34%
  • Veröffentlicht 26.05.2021 12:15:18
  • Zuletzt bearbeitet 21.11.2024 05:46:04

A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw allows an attacker to steal bitbucket_pipeline cre...

Exploit
  • EPSS 0.61%
  • Veröffentlicht 26.05.2021 11:15:08
  • Zuletzt bearbeitet 21.11.2024 05:18:25

A vulnerability was found in Linux Kernel where refcount leak in llcp_sock_bind() causing use-after-free which might lead to privilege escalations.

Exploit
  • EPSS 0.51%
  • Veröffentlicht 26.05.2021 11:15:08
  • Zuletzt bearbeitet 21.11.2024 05:18:25

A vulnerability was found in Linux Kernel, where a refcount leak in llcp_sock_connect() causing use-after-free which might lead to privilege escalations.