Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.21%
  • Veröffentlicht 09.03.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:46:12

A flaw was found in ImageMagick in coders/webp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system a...

  • EPSS 1.23%
  • Veröffentlicht 09.03.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:46:12

A flaw was found in ImageMagick in MagickCore/resample.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to ...

Exploit
  • EPSS 1.71%
  • Veröffentlicht 09.03.2021 18:15:17
  • Zuletzt bearbeitet 21.11.2024 05:47:42

Inappropriate implementation in full screen mode in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

Exploit
  • EPSS 17.29%
  • Veröffentlicht 09.03.2021 18:15:17
  • Zuletzt bearbeitet 21.11.2024 05:47:43

Insufficient policy enforcement in Autofill in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

  • EPSS 1.62%
  • Veröffentlicht 09.03.2021 18:15:17
  • Zuletzt bearbeitet 21.11.2024 05:47:43

Inappropriate implementation in Compositing in Google Chrome on Linux and Windows prior to 89.0.4389.72 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

Exploit
  • EPSS 1.41%
  • Veröffentlicht 09.03.2021 18:15:17
  • Zuletzt bearbeitet 21.11.2024 05:47:43

Use after free in Network Internals in Google Chrome on Linux prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Exploit
  • EPSS 1.62%
  • Veröffentlicht 09.03.2021 18:15:17
  • Zuletzt bearbeitet 21.11.2024 05:47:43

Use after free in tab search in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • EPSS 1.6%
  • Veröffentlicht 09.03.2021 18:15:17
  • Zuletzt bearbeitet 21.11.2024 05:47:43

Side-channel information leakage in autofill in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

Exploit
  • EPSS 1.87%
  • Veröffentlicht 09.03.2021 18:15:17
  • Zuletzt bearbeitet 21.11.2024 05:47:43

Insufficient policy enforcement in navigations in Google Chrome prior to 89.0.4389.72 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page.

Exploit
  • EPSS 1.04%
  • Veröffentlicht 09.03.2021 18:15:17
  • Zuletzt bearbeitet 21.11.2024 05:47:43

Inappropriate implementation in performance APIs in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page.