Fedoraproject

Fedora

5353 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2015-5291

  • EPSS 1.7%
  • Veröffentlicht 02.11.2015 19:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS (formerly PolarSSL) 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service (client crash) and possibly execute arbitrary code via a lon...

4.3

CVE-2015-5262

  • EPSS 0.92%
  • Veröffentlicht 27.10.2015 16:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

http/conn/ssl/SSLConnectionSocketFactory.java in Apache HttpComponents HttpClient before 4.3.6 ignores the http.socket.timeout configuration setting during an SSL handshake, which allows remote attackers to cause a denial of service (HTTPS call hang)...

4.6

CVE-2015-4625

  • EPSS 0.11%
  • Veröffentlicht 26.10.2015 19:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the authentication_agent_new_cookie function in PolicyKit (aka polkit) before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers the issuance of a duplicate cookie value.

3.5

CVE-2015-4913

  • EPSS 0.39%
  • Veröffentlicht 22.10.2015 00:00:16
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858.

3.5

CVE-2015-4895

  • EPSS 0.46%
  • Veröffentlicht 21.10.2015 23:59:55
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.

4.6

CVE-2015-4879

  • EPSS 0.33%
  • Veröffentlicht 21.10.2015 23:59:42
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier, and 5.6.25 and earlier, allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to DML.

4

CVE-2015-4870

Exploit
  • EPSS 22.14%
  • Veröffentlicht 21.10.2015 23:59:34
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Parser.

3.5

CVE-2015-4861

  • EPSS 0.39%
  • Veröffentlicht 21.10.2015 23:59:26
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.

4

CVE-2015-4858

  • EPSS 0.42%
  • Veröffentlicht 21.10.2015 23:59:23
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2015-4913.

2.8

CVE-2015-4836

  • EPSS 0.86%
  • Veröffentlicht 21.10.2015 23:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : SP.