Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 1.08%
  • Veröffentlicht 30.06.2020 11:15:10
  • Zuletzt bearbeitet 21.11.2024 05:05:29

In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in Streams_Fill_PerStream in Multiple/File_MpegPs.cpp (aka an off-by-one during MpegPs parsing).

  • EPSS 1.9%
  • Veröffentlicht 29.06.2020 20:15:10
  • Zuletzt bearbeitet 21.11.2024 05:32:14

In coturn before version 4.5.1.3, there is an issue whereby STUN/TURN response buffer is not initialized properly. There is a leak of information between different client connections. One client (an attacker) could use their connection to intelligent...

  • EPSS 3.15%
  • Veröffentlicht 29.06.2020 18:15:11
  • Zuletzt bearbeitet 21.11.2024 05:02:19

PuTTY 0.68 through 0.73 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the ...

  • EPSS 1.62%
  • Veröffentlicht 26.06.2020 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:55:59

A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway). The vulnerability is related to the injection of HTTP headers via a CORS ExposeHeader tag. The newline character in the ExposeHeader tag in the CORS configuration file genera...

  • EPSS 0.4%
  • Veröffentlicht 26.06.2020 01:15:10
  • Zuletzt bearbeitet 21.11.2024 05:05:17

An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid memory access in TiledInputFile::TiledInputFile() in IlmImf/ImfTiledInputFile.cpp, as demonstrated by a NULL pointer dereference.

  • EPSS 0.42%
  • Veröffentlicht 26.06.2020 01:15:10
  • Zuletzt bearbeitet 21.11.2024 05:05:17

An issue was discovered in OpenEXR before 2.5.2. Invalid input could cause a use-after-free in DeepScanLineInputFile::DeepScanLineInputFile() in IlmImf/ImfDeepScanLineInputFile.cpp.

  • EPSS 0.46%
  • Veröffentlicht 26.06.2020 01:15:10
  • Zuletzt bearbeitet 21.11.2024 05:05:17

An issue was discovered in OpenEXR before v2.5.2. Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize() in IlmImf/ImfMisc.cpp.

  • EPSS 1.47%
  • Veröffentlicht 25.06.2020 19:15:12
  • Zuletzt bearbeitet 21.11.2024 04:54:55

Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c.

  • EPSS 1.11%
  • Veröffentlicht 25.06.2020 19:15:12
  • Zuletzt bearbeitet 21.11.2024 04:55:11

In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state->shuffle is instructed to read beyond state->buffer.

  • EPSS 1.13%
  • Veröffentlicht 25.06.2020 19:15:12
  • Zuletzt bearbeitet 21.11.2024 04:55:11

In Pillow before 7.1.0, there are two Buffer Overflows in libImaging/TiffDecode.c.