Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.19%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • EPSS 1.06%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Insufficient policy enforcement in extensions in Google Chrome prior to 90.0.4430.93 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.

  • EPSS 0.85%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Incorrect security UI in downloads in Google Chrome on Android prior to 90.0.4430.93 allowed a remote attacker to perform domain spoofing via a crafted HTML page.

  • EPSS 1.6%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Type confusion in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • EPSS 1.14%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • EPSS 1.1%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Use after free in Dev Tools in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • EPSS 1.32%
  • Veröffentlicht 30.04.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:47:49

Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • EPSS 1.12%
  • Veröffentlicht 30.04.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:01:09

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used t...

  • EPSS 1.5%
  • Veröffentlicht 30.04.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:01:10

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to wr...

  • EPSS 1.71%
  • Veröffentlicht 30.04.2021 12:15:07
  • Zuletzt bearbeitet 21.11.2024 05:46:14

A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.