Fedoraproject

Fedora

5335 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2021-21229

  • EPSS 0.86%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Incorrect security UI in downloads in Google Chrome on Android prior to 90.0.4430.93 allowed a remote attacker to perform domain spoofing via a crafted HTML page.

8.8

CVE-2021-21230

  • EPSS 3.61%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Type confusion in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2021-21231

  • EPSS 1.95%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2021-21232

  • EPSS 1.71%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Use after free in Dev Tools in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8

CVE-2021-21233

  • EPSS 2.33%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

5.5

CVE-2021-29463

  • EPSS 0.1%
  • Veröffentlicht 30.04.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:01:09

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used t...

7.8

CVE-2021-29464

  • EPSS 0.16%
  • Veröffentlicht 30.04.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:01:10

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to wr...

4.9

CVE-2021-20266

  • EPSS 0.06%
  • Veröffentlicht 30.04.2021 12:15:07
  • Zuletzt bearbeitet 21.11.2024 05:46:14

A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.

6.5

CVE-2020-15225

  • EPSS 0.24%
  • Veröffentlicht 29.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:05:07

django-filter is a generic system for filtering Django QuerySets based on user selections. In django-filter before version 2.4.0, automatically generated `NumberFilter` instances, whose value was later converted to an integer, were subject to potenti...

7.8

CVE-2020-18032

Exploit
  • EPSS 0.41%
  • Veröffentlicht 29.04.2021 18:15:08
  • Zuletzt bearbeitet 21.11.2024 05:08:21

Buffer Overflow in Graphviz Graph Visualization Tools from commit ID f8b9e035 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by loading a crafted file into the "lib/common/shapes.c" comp...