fedoraproject

5,420 tracked vulnerabilities.

CVE-2023-1667 MEDIUM
libssh 0.9.1-0.9.5 - Authenticated Denial of Service via Re-keying Algorithm Guessing
May 26, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-32067 HIGH
c-ares < 1.19.1 - Denial of Service via Malformed UDP Packet
May 25, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-31147 MEDIUM
c-ares < 1.19.1 - Use of Insufficiently Random Values for DNS Query IDs
May 25, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-31130 MEDIUM
c-ares < 1.19.1 - Out-of-bounds Write via ares_inet_net_pton
May 25, 2023
CVSS 4.1
EPSS 0.00
CVE-2023-31124 LOW
c-ares < 1.19.1 - Use of Insufficiently Random Values via rand() Fallback
May 25, 2023
CVSS 3.7
EPSS 0.00
CVE-2023-33204 HIGH
sysstat <= 12.7.2 - Integer Overflow in check_overflow
May 18, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-2731 MEDIUM
libtiff < 4.5.0 - Denial of Service via LZW Decompression NULL Pointer Dereference
May 17, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-24805 HIGH
cups-filters beh Backend - Remote Command Execution via Network Printer Command Injection
May 17, 2023
CVSS 8.8
EPSS 0.08
CVE-2023-2726 HIGH
Google Chrome <113.0.5672.126 - Auth Bypass
May 16, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-2725 HIGH
Google Chrome < 113.0.5672.126 - Use-After-Free in Guest View
May 16, 2023
CVSS 8.8
EPSS 0.09
CVE-2023-2724 HIGH
Google Chrome < 113.0.5672.126 - Type Confusion in V8 via Crafted HTML Page
May 16, 2023
CVSS 8.8
EPSS 0.10
CVE-2023-2723 HIGH
Google Chrome < 113.0.5672.126 - Use-After-Free in DevTools
May 16, 2023
CVSS 8.8
EPSS 0.10
CVE-2023-2722 HIGH
Google Chrome < 113.0.5672.126 - Use-After-Free in Autofill UI
May 16, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-2721 HIGH
Google Chrome < 113.0.5672.126 - Use-After-Free in Navigation
May 16, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-2700 MEDIUM
libvirt - Use-After-Free in SR-IOV PCI Device Capability Query
May 15, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-1729 MEDIUM
LibRaw < 0.21.2 - Heap-Based Buffer Overflow in raw2image_ex()
May 15, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-32570 MEDIUM
dav1d < 1.2.0 - Denial of Service via Race Condition in dav1d_decode_frame_exit
May 10, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-2156 HIGH
Linux Kernel >=5.7 <5.10.184 - Unauthenticated Denial of Service via RPL Protocol Handling
May 09, 2023
CVSS 7.5
EPSS 0.02
CVE-2023-2609 MEDIUM
vim/vim <9.0.1531 - NULL Pointer Dereference
May 09, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-31490 HIGH
FRRouting bgpd 8.4.2 - Denial of Service via bgp_attr_psid_sub() Function
May 09, 2023
CVSS 7.5
EPSS 0.05
CVE-2023-31489 MEDIUM
FRRouting bgpd 8.4.2 - Denial of Service via bgp_capability_llgr Function
May 09, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-31137 HIGH
MaraDNS < 3.5.0036 - Denial of Service via DNS Packet Decompression Integer Underflow
May 09, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-31047 CRITICAL
Django <3.2.19, <4.1.9, <4.2.1 - Auth Bypass
May 07, 2023
CVSS 9.8
EPSS 0.00
CVE-2023-29659 MEDIUM
libheif < 1.15.2 - Denial of Service via Crafted HEIF Image in heif::Fraction::round()
May 05, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-2468 MEDIUM
Google Chrome < 113.0.5672.63 - Security UI Obfuscation via PictureInPicture
May 03, 2023
CVSS 4.3
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV