Fedoraproject

Fedora

5353 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2016-2850

  • EPSS 0.43%
  • Veröffentlicht 13.05.2016 14:59:11
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Botan 1.11.x before 1.11.29 does not enforce TLS policy for (1) signature algorithms and (2) ECC curves, which allows remote attackers to conduct downgrade attacks via unspecified vectors.

7.5

CVE-2016-2849

  • EPSS 0.58%
  • Veröffentlicht 13.05.2016 14:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Botan before 1.10.13 and 1.11.x before 1.11.29 do not use a constant-time algorithm to perform a modular inverse on the signature nonce k, which might allow remote attackers to obtain ECDSA secret keys via a timing side-channel attack.

7.5

CVE-2015-7827

  • EPSS 0.44%
  • Veröffentlicht 13.05.2016 14:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Botan before 1.10.13 and 1.11.x before 1.11.22 make it easier for remote attackers to conduct million-message attacks by measuring time differences, related to decoding of PKCS#1 padding.

9.3

CVE-2015-8868

  • EPSS 1.09%
  • Veröffentlicht 06.05.2016 17:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via an invalid blend mo...

5.9

CVE-2016-4008

  • EPSS 5.05%
  • Veröffentlicht 05.05.2016 18:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1_DECODE_FLAG_STRICT_DER flag, allows remote attackers to cause a denial of service (infinite recursion) via a crafted certificate.

9.8

CVE-2016-4002

  • EPSS 11.97%
  • Veröffentlicht 26.04.2016 14:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in the mipsnet_receive function in hw/net/mipsnet.c in QEMU, when the guest NIC is configured to accept large packets, allows remote attackers to cause a denial of service (memory corruption and QEMU crash) or possibly execute arbitra...

9.8

CVE-2016-3074

Exploit
  • EPSS 54.7%
  • Veröffentlicht 26.04.2016 14:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflo...

9.8

CVE-2015-8779

  • EPSS 9.68%
  • Veröffentlicht 19.04.2016 21:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long catalog name.

9.1

CVE-2015-8776

  • EPSS 7.41%
  • Veröffentlicht 19.04.2016 21:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value.

9.8

CVE-2015-8778

  • EPSS 9.81%
  • Veröffentlicht 19.04.2016 21:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the size argument to the __hcreate_r function, which tri...