Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.01%
  • Veröffentlicht 13.06.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:43:16

An issue was discovered in the Security component in Symfony 2.7.x before 2.7.48, 2.8.x before 2.8.41, 3.3.x before 3.3.17, 3.4.x before 3.4.11, and 4.0.x before 4.0.11. A session fixation vulnerability within the "Guard" login feature may allow an a...

  • EPSS 1.72%
  • Veröffentlicht 30.05.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:40:59

NULL pointer dereference vulnerability in the rebuild_vlists function in lib/dotgen/conc.c in the dotgen library in Graphviz 2.40.1 allows remote attackers to cause a denial of service (application crash) via a crafted file.

Exploit
  • EPSS 94.46%
  • Veröffentlicht 17.05.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:12

DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. A malicious DHCP server, or an attacker on the local network ab...

Exploit
  • EPSS 3.07%
  • Veröffentlicht 07.05.2018 02:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:00

Stack-based buffer overflow in the get_key function in parse.c in abcm2ps through 8.13.20 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.

  • EPSS 2.75%
  • Veröffentlicht 05.05.2018 02:29:00
  • Zuletzt bearbeitet 21.11.2024 03:41:59

Stack-based buffer overflow in the delayed_output function in music.c in abcm2ps through 8.13.20 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.

  • EPSS 0.35%
  • Veröffentlicht 01.05.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 01:46:57

The fedora-business-cards package before 1-0.1.beta1.fc17 on Fedora 17 and before 1-0.1.beta1.fc18 on Fedora 18 allows local users to cause a denial of service or write to arbitrary files via a symlink attack on /tmp/fedora-business-cards-buffer.svg.

  • EPSS 1.37%
  • Veröffentlicht 25.04.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:30:43

An error in the "read_metadata_vorbiscomment_()" function (src/libFLAC/stream_decoder.c) in FLAC version 1.3.2 can be exploited to cause a memory leak via a specially crafted FLAC file.

Exploit
  • EPSS 3.07%
  • Veröffentlicht 16.04.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 04:06:09

In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potent...

Exploit
  • EPSS 3.88%
  • Veröffentlicht 16.04.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 04:06:09

In the ffghbn function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain c...

Exploit
  • EPSS 4.03%
  • Veröffentlicht 16.04.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 04:06:09

In the ffghtb function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain c...