Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 1.16%
  • Veröffentlicht 27.02.2024 15:15:07
  • Zuletzt bearbeitet 04.11.2025 19:17:03

libLAS 1.8.1 contains a memory leak vulnerability in /libLAS/apps/ts2las.cpp.

  • EPSS 0.98%
  • Veröffentlicht 27.02.2024 02:15:06
  • Zuletzt bearbeitet 04.11.2025 19:17:00

diffoscope before 256 allows directory traversal via an embedded filename in a GPG file. Contents of any file, such as ../.ssh/id_rsa, may be disclosed to an attacker. This occurs because the value of the gpg --use-embedded-filenames option is truste...

  • EPSS 0.78%
  • Veröffentlicht 26.02.2024 16:27:58
  • Zuletzt bearbeitet 19.12.2024 19:38:28

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.3, specially crafted traffic can cause a heap use after free if the ruleset uses the http.request_header or http.respo...

  • EPSS 0.64%
  • Veröffentlicht 26.02.2024 16:27:58
  • Zuletzt bearbeitet 19.12.2024 19:30:33

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.3, the rules inspecting HTTP2 headers can get bypassed by crafted traffic. The vulnerability has been patched in 7.0.3...

  • EPSS 1.08%
  • Veröffentlicht 26.02.2024 16:27:58
  • Zuletzt bearbeitet 04.11.2025 19:16:58

Splinefont in FontForge through 20230101 allows command injection via crafted filenames.

  • EPSS 1.87%
  • Veröffentlicht 26.02.2024 16:27:58
  • Zuletzt bearbeitet 04.11.2025 19:16:58

Splinefont in FontForge through 20230101 allows command injection via crafted archives or compressed files.

  • EPSS 0.93%
  • Veröffentlicht 26.02.2024 16:27:57
  • Zuletzt bearbeitet 18.12.2024 18:07:03

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.3, excessive memory use during pgsql parsing could lead to OOM-related crashes. This vulnerability is patched...

  • EPSS 1.16%
  • Veröffentlicht 26.02.2024 16:27:57
  • Zuletzt bearbeitet 19.12.2024 19:26:20

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to versions 6.0.16 and 7.0.3, an attacker can craft traffic to cause Suricata to use far more CPU and memory for processing th...

Exploit
  • EPSS 1.19%
  • Veröffentlicht 26.02.2024 16:27:57
  • Zuletzt bearbeitet 03.11.2025 19:15:43

LibHTP is a security-aware parser for the HTTP protocol. Crafted traffic can cause excessive processing time of HTTP headers, leading to denial of service. This issue is addressed in 0.5.46.

  • EPSS 1%
  • Veröffentlicht 26.02.2024 16:27:52
  • Zuletzt bearbeitet 27.02.2025 03:05:58

Due to a mistake in error checking, Routinator will terminate when an incoming RTR connection is reset by the peer too quickly after opening.