Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 0.48%
  • Veröffentlicht 26.05.2021 11:15:08
  • Zuletzt bearbeitet 21.11.2024 05:18:25

A vulnerability was found in Linux kernel where non-blocking socket in llcp_sock_connect() leads to leak and eventually hanging-up the system.

Exploit
  • EPSS 0.66%
  • Veröffentlicht 26.05.2021 11:15:08
  • Zuletzt bearbeitet 21.11.2024 05:50:18

An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allows users with the ability to start and control...

  • EPSS 0.33%
  • Veröffentlicht 26.05.2021 00:15:08
  • Zuletzt bearbeitet 21.11.2024 06:06:31

Yubico pam-u2f before 1.1.1 has a logic issue that, depending on the pam-u2f configuration and the application used, could lead to a local PIN bypass. This issue does not allow user presence (touch) or cryptographic signature verification to be bypas...

Exploit
  • EPSS 2.9%
  • Veröffentlicht 25.05.2021 22:15:10
  • Zuletzt bearbeitet 21.11.2024 06:09:07

The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to...

  • EPSS 3.26%
  • Veröffentlicht 25.05.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 05:18:25

A memory leak vulnerability was found in Linux kernel in llcp_sock_connect

  • EPSS 0.89%
  • Veröffentlicht 24.05.2021 18:15:07
  • Zuletzt bearbeitet 04.11.2025 20:15:57

Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN.

  • EPSS 0.87%
  • Veröffentlicht 24.05.2021 18:15:07
  • Zuletzt bearbeitet 04.11.2025 20:15:58

Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (in the Passkey authentication procedure) by reflection of the public ke...

Exploit
  • EPSS 4.01%
  • Veröffentlicht 20.05.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:08:54

rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code execution because of improper handling of certain escape sequences (ESC G Q). A response is terminated by a newline.

  • EPSS 1.86%
  • Veröffentlicht 20.05.2021 13:15:07
  • Zuletzt bearbeitet 18.12.2025 12:15:54

There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to start a pydoc server could access the server and use it to disclose sensitive information belonging to the other u...

  • EPSS 1.7%
  • Veröffentlicht 20.05.2021 13:15:07
  • Zuletzt bearbeitet 21.11.2024 06:21:38

A flaw was found in slapi-nis in versions before 0.56.7. A NULL pointer dereference during the parsing of the Binding DN could allow an unauthenticated attacker to crash the 389-ds-base directory server. The highest threat from this vulnerability is ...