Fedoraproject

Fedora

5357 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 29.36%
  • Veröffentlicht 22.02.2011 19:00:02
  • Zuletzt bearbeitet 16.06.2026 23:28:31

avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a denial of service (infinite loop) via an empty mDNS (1) IPv4 or (2) IPv6 UDP packet to port 5353. NOTE: this vulnerability exists because of an incorrect f...

  • EPSS 3.22%
  • Veröffentlicht 18.02.2011 19:00:14
  • Zuletzt bearbeitet 16.06.2026 23:25:27

Heap-based buffer overflow in the getarena function in abc2ps.c in abcm2ps before 5.9.13 might allow remote attackers to execute arbitrary code via a crafted ABC file, a different vulnerability than CVE-2010-3441. NOTE: some of these details are obt...

  • EPSS 2.58%
  • Veröffentlicht 18.02.2011 19:00:14
  • Zuletzt bearbeitet 16.06.2026 23:25:27

Multiple unspecified vulnerabilities in abcm2ps before 5.9.13 have unknown impact and attack vectors, a different issue than CVE-2010-3441.

  • EPSS 5.85%
  • Veröffentlicht 18.02.2011 17:00:34
  • Zuletzt bearbeitet 16.06.2026 23:22:46

Multiple buffer overflows in abcm2ps before 5.9.12 might allow remote attackers to execute arbitrary code via (1) a crafted input file, related to the PUT0 and PUT1 output macros; (2) a crafted input file, related to the trim_title function; and poss...

  • EPSS 4.21%
  • Veröffentlicht 20.01.2011 19:00:08
  • Zuletzt bearbeitet 16.06.2026 23:27:30

Stack-based buffer overflow in the ast_uri_encode function in main/utils.c in Asterisk Open Source before 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.1, 1.8.1.2, 1.8.2.; and Business Edition before C.3.6.2; when running in pedantic mode allows...

  • EPSS 0.39%
  • Veröffentlicht 03.01.2011 20:00:42
  • Zuletzt bearbeitet 16.06.2026 23:24:14

Multiple integer overflows in fs/bio.c in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service (system crash) via a crafted device ioctl to a SCSI device.

  • EPSS 2.66%
  • Veröffentlicht 30.12.2010 19:00:04
  • Zuletzt bearbeitet 16.06.2026 23:24:27

The do_exit function in kernel/exit.c in the Linux kernel before 2.6.36.2 does not properly handle a KERNEL_DS get_fs value, which allows local users to bypass intended access_ok restrictions, overwrite arbitrary kernel memory locations, and gain pri...

Exploit
  • EPSS 0.87%
  • Veröffentlicht 30.12.2010 19:00:03
  • Zuletzt bearbeitet 16.06.2026 23:24:13

The sk_run_filter function in net/core/filter.c in the Linux kernel before 2.6.36.2 does not check whether a certain memory location has been initialized before executing a (1) BPF_S_LD_MEM or (2) BPF_S_LDX_MEM instruction, which allows local users t...

  • EPSS 0.4%
  • Veröffentlicht 29.12.2010 18:00:02
  • Zuletzt bearbeitet 16.06.2026 23:23:44

Heap-based buffer overflow in the bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.36.2 on 64-bit platforms might allow local users to cause a denial ...

Exploit
  • EPSS 2.21%
  • Veröffentlicht 22.12.2010 01:00:03
  • Zuletzt bearbeitet 16.06.2026 23:25:06

The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS...