fedoraproject

5,420 tracked vulnerabilities.

CVE-2023-20588 MEDIUM
Debian Linux < 10.0.10240.20345 - Divide By Zero
Aug 08, 2023
CVSS 5.5
EPSS 0.07
CVE-2023-20569 MEDIUM
Fedora - Information Disclosure
Aug 08, 2023
CVSS 4.7
EPSS 0.02
CVE-2023-39978 LOW
ImageMagick < 6.9.12-91 - Denial of Service via Memory Consumption in Magick::Draw
Aug 08, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-4194 MEDIUM
Linux Kernel < 6.4 - Unauthorized Resource Access via TUN/TAP Socket UID Initialization
Aug 07, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-4147 HIGH
Linux Kernel >=5.9 <5.10.190 - Use-After-Free in Netfilter NFTA_RULE_CHAIN_ID
Aug 07, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-38497 HIGH
Cargo < 0.72.2 - Incorrect Permission Assignment for Critical Resource
Aug 04, 2023
CVSS 7.9
EPSS 0.06
CVE-2023-4135 MEDIUM
QEMU 8.0.0-8.0.x - Heap Out-of-bounds Read in Virtual NVMe Device
Aug 04, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-4133 MEDIUM
Linux Kernel < 6.3 - Use-After-Free in cxgb4 Driver via Flower Stats Timer Rearming
Aug 03, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-4132 MEDIUM
Linux Kernel < 6.2.16 - Use-After-Free in siano smsusb Module
Aug 03, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-3180 MEDIUM
QEMU < 8.1.0 - Heap-based Buffer Overflow in virtio_crypto_sym_op_helper
Aug 03, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-4073 HIGH
Google Chrome <115.0.5790.170 - Memory Corruption
Aug 03, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-29408 MEDIUM
golang/image < 0.10.0 - Denial of Service via TIFF Tile Decompression
Aug 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-29407 MEDIUM
golang/image < 0.10.0 - Excessive Iteration via Malicious Tiled Image
Aug 02, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-4016 LOW
procps 3.3.0-4.0.2 - Heap-based Buffer Overflow via ps Utility
Aug 02, 2023
CVSS 2.5
EPSS 0.00
CVE-2023-38559 MEDIUM
Ghostscript < 10.02.0 - Denial of Service via Crafted PDF File for DEVN Device
Aug 01, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-4004 HIGH
Linux Kernel >=5.6 <5.10.188 - Use-After-Free in netfilter nft_pipapo_remove
Jul 31, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-37920 HIGH
certifi >=2015.4.28 <2023.7.22 - Insufficient Verification of Data Authenticity
Jul 25, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-3773 MEDIUM
Linux Kernel - Out-of-bounds Read in XFRM Netlink Attribute Parsing
Jul 25, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-3772 MEDIUM
Linux Kernel - Denial of Service via NULL Pointer Dereference in XFRM Subsystem
Jul 25, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-38200 HIGH
Keylime < 7.4.0 - Denial of Service via SSL Connection Exhaustion
Jul 24, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-1386 LOW
QEMU - Improper Preservation of Permissions in 9p Passthrough Filesystem
Jul 24, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-38633 MEDIUM
librsvg 2.42.3-2.46.6 - Directory Traversal via URL Decoder
Jul 22, 2023
CVSS 5.5
EPSS 0.44
CVE-2023-3347 MEDIUM
Samba 4.17.0-4.17.9 - Improper Enforcement of Message Integrity in SMB2 Packet Signing
Jul 20, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-34968 MEDIUM
Samba < 4.16.11 - Path Disclosure via Spotlight Protocol
Jul 20, 2023
CVSS 5.3
EPSS 0.02
CVE-2023-34967 MEDIUM
Samba < 4.16.11 - Denial of Service via mdssvc RPC Spotlight Type Confusion
Jul 20, 2023
CVSS 5.3
EPSS 0.19
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV