Fedoraproject

Fedora

5353 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2024-0229

  • EPSS 0.32%
  • Veröffentlicht 09.02.2024 07:16:00
  • Zuletzt bearbeitet 04.11.2025 19:16:26

An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation (if...

4.7

CVE-2024-1312

  • EPSS 0.02%
  • Veröffentlicht 08.02.2024 13:15:09
  • Zuletzt bearbeitet 21.11.2024 08:50:18

A use-after-free flaw was found in the Linux kernel's Memory Management subsystem when a user wins two races at the same time with a fail in the mas_prev_slot function. This issue could allow a local user to crash the system.

7.5

CVE-2024-20290

  • EPSS 8.72%
  • Veröffentlicht 07.02.2024 17:15:10
  • Zuletzt bearbeitet 21.11.2024 08:52:14

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values d...

9.8

CVE-2024-1283

  • EPSS 2%
  • Veröffentlicht 07.02.2024 00:15:56
  • Zuletzt bearbeitet 17.06.2025 15:15:38

Heap buffer overflow in Skia in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

9.8

CVE-2024-1284

  • EPSS 0.74%
  • Veröffentlicht 07.02.2024 00:15:56
  • Zuletzt bearbeitet 15.05.2025 20:15:40

Use after free in Mojo in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

3.3

CVE-2024-1048

  • EPSS 0.01%
  • Veröffentlicht 06.02.2024 18:15:59
  • Zuletzt bearbeitet 21.11.2024 08:49:40

A flaw was found in the grub2-set-bootflag utility of grub2. After the fix of CVE-2019-14865, grub2-set-bootflag will create a temporary file with the new grubenv content and rename it to the original grubenv file. If the program is killed before the...

5.5

CVE-2024-0690

  • EPSS 0.06%
  • Veröffentlicht 06.02.2024 12:15:55
  • Zuletzt bearbeitet 04.11.2025 19:16:27

An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. Information is still included in the output in certain tasks, such as loop items. Depending on the task, this iss...

7.8

CVE-2024-22667

Medienbericht Exploit
  • EPSS 0.14%
  • Veröffentlicht 05.02.2024 08:15:44
  • Zuletzt bearbeitet 04.11.2025 22:15:58

Vim before 9.0.2142 has a stack-based buffer overflow because did_set_langmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback functions.

8.6

CVE-2024-21626

Exploit
  • EPSS 3.54%
  • Veröffentlicht 31.01.2024 22:15:53
  • Zuletzt bearbeitet 21.11.2024 08:54:45

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc exec) to hav...

7.8

CVE-2023-6246

Exploit
  • EPSS 24.32%
  • Veröffentlicht 31.01.2024 14:15:48
  • Zuletzt bearbeitet 21.11.2024 08:43:27

A heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when the openlog function was not called, or called with the ident argument...