Fedoraproject

Fedora

5353 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-39325

  • EPSS 0.15%
  • Veröffentlicht 11.10.2023 22:15:09
  • Zuletzt bearbeitet 21.11.2024 08:15:09

A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-prog...

7.8

CVE-2023-5535

Exploit
  • EPSS 0.03%
  • Veröffentlicht 11.10.2023 20:15:10
  • Zuletzt bearbeitet 21.11.2024 08:41:57

Use After Free in GitHub repository vim/vim prior to v9.0.2010.

8.8

CVE-2023-37536

  • EPSS 1.08%
  • Veröffentlicht 11.10.2023 07:15:10
  • Zuletzt bearbeitet 21.11.2024 08:11:53

An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out-of-bound access via HTTP request.

4.9

CVE-2023-45129

  • EPSS 0.24%
  • Veröffentlicht 10.10.2023 18:15:19
  • Zuletzt bearbeitet 21.11.2024 08:26:24

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Prior to version 1.94.0, a malicious server ACL event can impact performance temporarily or permanently leading to a persistent denial of service. Homese...

7.5

CVE-2023-44487

Warnung Medienbericht Exploit
  • EPSS 94.4%
  • Veröffentlicht 10.10.2023 14:15:10
  • Zuletzt bearbeitet 07.11.2025 19:00:41

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

5.5

CVE-2023-43786

  • EPSS 0.08%
  • Veröffentlicht 10.10.2023 13:15:22
  • Zuletzt bearbeitet 04.11.2025 20:17:07

A vulnerability was found in libX11 due to an infinite loop within the PutSubImage() function. This flaw allows a local user to consume all available system resources and cause a denial of service condition.

7.8

CVE-2023-43787

  • EPSS 0.04%
  • Veröffentlicht 10.10.2023 13:15:22
  • Zuletzt bearbeitet 04.11.2025 20:17:07

A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function. This flaw allows a local user to trigger an integer overflow and execute arbitrary code with elevated privileges.

5.5

CVE-2023-43788

  • EPSS 0.02%
  • Veröffentlicht 10.10.2023 13:15:22
  • Zuletzt bearbeitet 04.11.2025 20:17:07

A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local attacker to trigger an out-of-bounds read error and read the contents of memory on the system.

5.5

CVE-2023-43785

  • EPSS 0.1%
  • Veröffentlicht 10.10.2023 13:15:21
  • Zuletzt bearbeitet 04.11.2025 20:17:07

A vulnerability was found in libX11 due to a boundary condition within the _XkbReadKeySyms() function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of memory on the system.

8.8

CVE-2023-43641

Exploit
  • EPSS 81.56%
  • Veröffentlicht 09.10.2023 22:15:12
  • Zuletzt bearbeitet 21.11.2024 08:24:31

libcue provides an API for parsing and extracting data from CUE sheets. Versions 2.2.1 and prior are vulnerable to out-of-bounds array access. A user of the GNOME desktop environment can be exploited by downloading a cue sheet from a malicious webpag...