fedoraproject

5,423 tracked vulnerabilities.

CVE-2023-39325 HIGH
GO < 1.20.10 - Resource Allocation Without Limits
Oct 11, 2023
CVSS 7.5
EPSS 0.04
CVE-2023-5535 HIGH
vim < 9.0.2010 - Use-After-Free
Oct 11, 2023
CVSS 7.8
EPSS 0.01
CVE-2023-37536 HIGH
Xerces-C++ 3.2.3 - Integer Overflow via HTTP Request
Oct 11, 2023
CVSS 8.2
EPSS 0.01
CVE-2023-45129 MEDIUM
Synapse < 1.94.0 - Denial of Service via Malicious Server ACL Event
Oct 10, 2023
CVSS 4.9
EPSS 0.01
CVE-2023-44487 HIGH KEV
HTTP/2 - Denial of Service via Rapid Stream Reset
Oct 10, 2023
CVSS 7.5
EPSS 1.00
CVE-2023-43788 MEDIUM
libXpm < 3.5.17 - Out-of-bounds Read in XpmCreateXpmImageFromBuffer
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-43787 HIGH
libX11 < 1.8.7 - Integer Overflow in XCreateImage()
Oct 10, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-43786 MEDIUM
libX11 < 1.8.7 - Denial of Service via PutSubImage Infinite Loop
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-43785 MEDIUM
libX11 < 1.8.7 - Out-of-bounds Read in _XkbReadKeySyms()
Oct 10, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-43641 HIGH
libcue < 2.3.0 - Out-of-bounds Write via CUE Sheet Parsing
Oct 09, 2023
CVSS 8.8
EPSS 0.17
CVE-2023-39194 LOW
Linux Kernel < 6.5 - Authenticated Out-of-bounds Read in XFRM State Filter Processing
Oct 09, 2023
CVSS 3.2
EPSS 0.00
CVE-2023-39193 MEDIUM
Linux Kernel < 6.6 - Out-of-bounds Read in Netfilter SCTP Flag Count Validation
Oct 09, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-39192 MEDIUM
Linux Kernel < 6.6 - Out-of-bounds Read in Netfilter xt_u32 Module
Oct 09, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-39189 MEDIUM
Linux Kernel < 6.6 - Out-of-bounds Read in Netfilter nfnl_osf_add_callback
Oct 09, 2023
CVSS 5.1
EPSS 0.00
CVE-2023-43615 HIGH
Mbed TLS <2.28.5, <3.5.0 - Buffer Overflow
Oct 07, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-45239 CRITICAL
facebook/tac_plus - Remote Code Execution via Username or Address Parameter Injection
Oct 06, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-39928 HIGH
WebKitGTK 2.40.5 - Use-After-Free in MediaRecorder API
Oct 06, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-5441 MEDIUM
vim < 9.0.1994 - NULL Pointer Dereference
Oct 05, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-39323 HIGH
Go <build> - Code Injection
Oct 05, 2023
CVSS 8.1
EPSS 0.02
CVE-2023-42754 MEDIUM
Linux Kernel < 6.6 - NULL Pointer Dereference in IPv4 Stack via Socket Buffer Re-routing
Oct 05, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-41175 MEDIUM
libtiff - DoS/Arbitrary Code Execution
Oct 05, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-40745 MEDIUM
libtiff < 4.6.0 - Integer Overflow via Crafted TIFF Image
Oct 05, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-5346 HIGH
Google Chrome < 117.0.5938.149 - Type Confusion in V8 via Crafted HTML Page
Oct 05, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-3576 MEDIUM
Libtiff's tiffcrop - Memory Corruption
Oct 04, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-3428 MEDIUM
ImageMagick < 7.1.1-19 - Heap-based Buffer Overflow in TIFF Coder
Oct 04, 2023
CVSS 6.2
EPSS 0.00