fedoraproject

5,420 tracked vulnerabilities.

CVE-2023-45129 MEDIUM
Synapse < 1.94.0 - Denial of Service via Malicious Server ACL Event
Oct 10, 2023
CVSS 4.9
EPSS 0.00
CVE-2023-44487 HIGH KEV
HTTP/2 - Denial of Service via Rapid Stream Reset
Oct 10, 2023
CVSS 7.5
EPSS 0.94
CVE-2023-43788 MEDIUM
libXpm < 3.5.17 - Out-of-bounds Read in XpmCreateXpmImageFromBuffer
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-43787 HIGH
libX11 < 1.8.7 - Integer Overflow in XCreateImage()
Oct 10, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-43786 MEDIUM
libX11 < 1.8.7 - Denial of Service via PutSubImage Infinite Loop
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-43785 MEDIUM
libX11 < 1.8.7 - Out-of-bounds Read in _XkbReadKeySyms()
Oct 10, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-43641 HIGH
libcue < 2.3.0 - Out-of-bounds Write via CUE Sheet Parsing
Oct 09, 2023
CVSS 8.8
EPSS 0.80
CVE-2023-39194 LOW
Linux Kernel < 6.5 - Authenticated Out-of-bounds Read in XFRM State Filter Processing
Oct 09, 2023
CVSS 3.2
EPSS 0.00
CVE-2023-39193 MEDIUM
Linux Kernel < 6.6 - Out-of-bounds Read in Netfilter SCTP Flag Count Validation
Oct 09, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-39192 MEDIUM
Linux Kernel < 6.6 - Out-of-bounds Read in Netfilter xt_u32 Module
Oct 09, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-39189 MEDIUM
Linux Kernel < 6.6 - Out-of-bounds Read in Netfilter nfnl_osf_add_callback
Oct 09, 2023
CVSS 5.1
EPSS 0.00
CVE-2023-43615 HIGH
Mbed TLS <2.28.5, <3.5.0 - Buffer Overflow
Oct 07, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-45239 CRITICAL
facebook/tac_plus - Remote Code Execution via Username or Address Parameter Injection
Oct 06, 2023
CVSS 9.8
EPSS 0.29
CVE-2023-39928 HIGH
WebKitGTK 2.40.5 - Use-After-Free in MediaRecorder API
Oct 06, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-5441 MEDIUM
vim < 9.0.1994 - NULL Pointer Dereference
Oct 05, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-39323 HIGH
Go <build> - Code Injection
Oct 05, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-42754 MEDIUM
Linux Kernel < 6.6 - NULL Pointer Dereference in IPv4 Stack via Socket Buffer Re-routing
Oct 05, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-41175 MEDIUM
libtiff - DoS/Arbitrary Code Execution
Oct 05, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-40745 MEDIUM
libtiff < 4.6.0 - Integer Overflow via Crafted TIFF Image
Oct 05, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-5346 HIGH
Google Chrome < 117.0.5938.149 - Type Confusion in V8 via Crafted HTML Page
Oct 05, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-3576 MEDIUM
Libtiff's tiffcrop - Memory Corruption
Oct 04, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-3428 MEDIUM
ImageMagick < 7.1.1-19 - Heap-based Buffer Overflow in TIFF Coder
Oct 04, 2023
CVSS 6.2
EPSS 0.00
CVE-2023-39191 HIGH
Linux kernel - Privilege Escalation
Oct 04, 2023
CVSS 8.2
EPSS 0.00
CVE-2023-43804 MEDIUM
urllib3 <1.26.17, <2.0.5 - Info Disclosure
Oct 04, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-4911 HIGH KEVNUCLEI
Glibc Tunables Privilege Escalation CVE-2023-4911 (aka Looney Tunables)
Oct 03, 2023
CVSS 7.8
EPSS 0.64
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV