fedoraproject

5,423 tracked vulnerabilities.

CVE-2020-36152 HIGH
libmysofa 0.5-1.1 - Buffer Overflow in readDataVar
Feb 08, 2021
CVSS 8.8
EPSS 0.02
CVE-2020-36151 MEDIUM
libmysofa 0.5-1.1 - Heap Buffer Overflow in mysofa_resampler_reset_mem
Feb 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-36150 MEDIUM
libmysofa 0.5-1.1 - Out-of-bounds Read in Loudness Function
Feb 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-36149 MEDIUM
libmysofa 0.5-1.1 - NULL Pointer Dereference in changeAttribute Function
Feb 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-36148 MEDIUM
libmysofa 0.5-1.1 - NULL Pointer Dereference in verifyAttribute Function
Feb 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-36242 CRITICAL
cryptography < 3.3.2 - Integer Overflow and Buffer Overflow via Symmetric Encryption Update Calls
Feb 07, 2021
CVSS 9.1
EPSS 0.07
CVE-2020-14312 MEDIUM
Fedora < 31 - Unauthenticated Distributed Denial of Service via Open DNS Resolver Configuration
Feb 06, 2021
CVSS 5.9
EPSS 0.01
CVE-2020-36241 MEDIUM
gnome-autoar < 0.2.4 - Directory Traversal via Symlink Parent Check Bypass
Feb 05, 2021
CVSS 5.5
EPSS 0.01
CVE-2020-28493 MEDIUM
Jinja2 < 2.11.3 - Uncontrolled Resource Consumption via _punctuation_re Regex
Feb 01, 2021
CVSS 5.3
EPSS 0.04
CVE-2020-25687 MEDIUM
dnsmasq < 2.83 - Heap-based Buffer Overflow in DNSSEC Validation
Jan 20, 2021
CVSS 5.9
EPSS 0.87
CVE-2020-25686 LOW
dnsmasq < 2.83 - DNS Cache Poisoning via Birthday Attack
Jan 20, 2021
CVSS 3.7
EPSS 0.05
CVE-2020-25682 HIGH
dnsmasq < 2.83 - Heap-based Buffer Overflow in DNSSEC Name Extraction
Jan 20, 2021
CVSS 8.1
EPSS 0.71
CVE-2020-25681 HIGH
dnsmasq < 2.83 - Heap-based Buffer Overflow in DNSSEC RRSets Validation
Jan 20, 2021
CVSS 8.1
EPSS 0.81
CVE-2020-25685 LOW
dnsmasq < 2.83 - DNS Cache Poisoning via Weak Query Name Hash
Jan 20, 2021
CVSS 3.7
EPSS 0.02
CVE-2020-25684 LOW
dnsmasq < 2.83 - DNS Cache Poisoning via Insufficient Query Attribute Matching
Jan 20, 2021
CVSS 3.7
EPSS 0.04
CVE-2020-25683 MEDIUM
dnsmasq < 2.83 - Heap-based Buffer Overflow in DNSSEC Validation
Jan 20, 2021
CVSS 5.9
EPSS 0.86
CVE-2020-14410 MEDIUM
Libsdl Simple Directmedia Layer < 2.0.20 - Out-of-Bounds Read
Jan 19, 2021
CVSS 5.4
EPSS 0.02
CVE-2020-14409 HIGH
Libsdl Simple Directmedia Layer < 2.0.20 - Integer Overflow
Jan 19, 2021
CVSS 7.8
EPSS 0.01
CVE-2020-36193 HIGH KEV
Archive_Tar < 1.4.11 - Path Traversal via Symbolic Link Handling
Jan 18, 2021
CVSS 7.5
EPSS 0.71
CVE-2020-35733 HIGH
Erlang/OTP < 23.2.2 - Improper Certificate Validation
Jan 15, 2021
CVSS 7.5
EPSS 0.01
CVE-2020-26262 HIGH
coturn < 4.5.2 - Unintended Proxy Access via Loopback Address Bypass
Jan 13, 2021
CVSS 7.2
EPSS 0.01
CVE-2020-28374 HIGH
Linux Kernel < 5.10.7 - Path Traversal via XCOPY Request
Jan 13, 2021
CVSS 8.1
EPSS 0.07
CVE-2020-25657 MEDIUM
m2crypto - Covert Timing Channel via RSA Decryption API
Jan 12, 2021
CVSS 5.9
EPSS 0.02
CVE-2020-35655 MEDIUM
Pillow 4.3.0-8.0.0 - Out-of-bounds Read in SGIRleDecode
Jan 12, 2021
CVSS 5.4
EPSS 0.02
CVE-2020-35654 HIGH
Pillow < 8.1.0 - Heap-Based Buffer Overflow in TiffDecode
Jan 12, 2021
CVSS 8.8
EPSS 0.02