fedoraproject
5,423 tracked vulnerabilities.
CVE-2020-36152
HIGH
libmysofa 0.5-1.1 - Buffer Overflow in readDataVar
Feb 08, 2021
CVSS 8.8
EPSS 0.02
CVE-2020-36151
MEDIUM
libmysofa 0.5-1.1 - Heap Buffer Overflow in mysofa_resampler_reset_mem
Feb 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-36150
MEDIUM
libmysofa 0.5-1.1 - Out-of-bounds Read in Loudness Function
Feb 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-36149
MEDIUM
libmysofa 0.5-1.1 - NULL Pointer Dereference in changeAttribute Function
Feb 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-36148
MEDIUM
libmysofa 0.5-1.1 - NULL Pointer Dereference in verifyAttribute Function
Feb 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-36242
CRITICAL
cryptography < 3.3.2 - Integer Overflow and Buffer Overflow via Symmetric Encryption Update Calls
Feb 07, 2021
CVSS 9.1
EPSS 0.07
CVE-2020-14312
MEDIUM
Fedora < 31 - Unauthenticated Distributed Denial of Service via Open DNS Resolver Configuration
Feb 06, 2021
CVSS 5.9
EPSS 0.01
CVE-2020-36241
MEDIUM
gnome-autoar < 0.2.4 - Directory Traversal via Symlink Parent Check Bypass
Feb 05, 2021
CVSS 5.5
EPSS 0.01
CVE-2020-28493
MEDIUM
Jinja2 < 2.11.3 - Uncontrolled Resource Consumption via _punctuation_re Regex
Feb 01, 2021
CVSS 5.3
EPSS 0.04
CVE-2020-25687
MEDIUM
dnsmasq < 2.83 - Heap-based Buffer Overflow in DNSSEC Validation
Jan 20, 2021
CVSS 5.9
EPSS 0.87
CVE-2020-25686
LOW
dnsmasq < 2.83 - DNS Cache Poisoning via Birthday Attack
Jan 20, 2021
CVSS 3.7
EPSS 0.05
CVE-2020-25682
HIGH
dnsmasq < 2.83 - Heap-based Buffer Overflow in DNSSEC Name Extraction
Jan 20, 2021
CVSS 8.1
EPSS 0.71
CVE-2020-25681
HIGH
dnsmasq < 2.83 - Heap-based Buffer Overflow in DNSSEC RRSets Validation
Jan 20, 2021
CVSS 8.1
EPSS 0.81
CVE-2020-25685
LOW
dnsmasq < 2.83 - DNS Cache Poisoning via Weak Query Name Hash
Jan 20, 2021
CVSS 3.7
EPSS 0.02
CVE-2020-25684
LOW
dnsmasq < 2.83 - DNS Cache Poisoning via Insufficient Query Attribute Matching
Jan 20, 2021
CVSS 3.7
EPSS 0.04
CVE-2020-25683
MEDIUM
dnsmasq < 2.83 - Heap-based Buffer Overflow in DNSSEC Validation
Jan 20, 2021
CVSS 5.9
EPSS 0.86
CVE-2020-14410
MEDIUM
Libsdl Simple Directmedia Layer < 2.0.20 - Out-of-Bounds Read
Jan 19, 2021
CVSS 5.4
EPSS 0.02
CVE-2020-14409
HIGH
Libsdl Simple Directmedia Layer < 2.0.20 - Integer Overflow
Jan 19, 2021
CVSS 7.8
EPSS 0.01
CVE-2020-36193
HIGH
KEV
Archive_Tar < 1.4.11 - Path Traversal via Symbolic Link Handling
Jan 18, 2021
CVSS 7.5
EPSS 0.71
CVE-2020-35733
HIGH
Erlang/OTP < 23.2.2 - Improper Certificate Validation
Jan 15, 2021
CVSS 7.5
EPSS 0.01
CVE-2020-26262
HIGH
coturn < 4.5.2 - Unintended Proxy Access via Loopback Address Bypass
Jan 13, 2021
CVSS 7.2
EPSS 0.01
CVE-2020-28374
HIGH
Linux Kernel < 5.10.7 - Path Traversal via XCOPY Request
Jan 13, 2021
CVSS 8.1
EPSS 0.07
CVE-2020-25657
MEDIUM
m2crypto - Covert Timing Channel via RSA Decryption API
Jan 12, 2021
CVSS 5.9
EPSS 0.02
CVE-2020-35655
MEDIUM
Pillow 4.3.0-8.0.0 - Out-of-bounds Read in SGIRleDecode
Jan 12, 2021
CVSS 5.4
EPSS 0.02
CVE-2020-35654
HIGH
Pillow < 8.1.0 - Heap-Based Buffer Overflow in TiffDecode
Jan 12, 2021
CVSS 8.8
EPSS 0.02
Products
fedora 5,353
extra_packages_for_enterprise_linux 76
389_directory_server 39
sssd 19
fedora_core 8
389_administration_server 1
anaconda 1
arm_installer 1
commons 1
coolkey 1
crypto-utils 1
fedmsg 1
fedora_linux_kernel 1
python-fedora 1
sectool 1
selinux-policy 1
spin-kickstarts 1
supybot-fedora 1
unbound 1
Quick Filters