fedoraproject

5,420 tracked vulnerabilities.

CVE-2021-31566 HIGH
libarchive < 3.5.2 - Improper Link Resolution Before File Access
Aug 23, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-23177 HIGH
Archive Extractor - Privilege Escalation
Aug 23, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-28861 HIGH
Python 3.0.0-3.10 - Open Redirect via URI Path
Aug 23, 2022
CVSS 7.4
EPSS 0.01
CVE-2021-3659 MEDIUM
Linux Kernel < 5.12 - Denial of Service via IEEE 802.15.4 LR-WPAN Connection Close
Aug 22, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-33646 HIGH
libtar < 1.2.21 - Use-After-Free in th_read Function
Aug 10, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-33645 HIGH
libtar < 1.2.21 - Use-After-Free in th_read Function
Aug 10, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-33644 HIGH
libtar <= 1.2.21 - Out-of-Bounds Read via Crafted Tar File
Aug 10, 2022
CVSS 8.1
EPSS 0.00
CVE-2021-33643 CRITICAL
libtar <= 1.2.21 - Out-of-Bounds Read via Crafted Tar File
Aug 10, 2022
CVSS 9.1
EPSS 0.00
CVE-2021-37150 HIGH
Apache Traffic Server 8.0.0-9.1.2 - Improper Input Validation in Header Parsing
Aug 10, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-41556 CRITICAL
Squirrel < 2.2.5 and 3.x < 3.1 - Out-of-bounds Read leading to Code Execution
Jul 28, 2022
CVSS 10.0
EPSS 0.02
CVE-2021-46829 HIGH
GDK-PixBuf <2.42.8 - Buffer Overflow
Jul 24, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-3695 MEDIUM
GRUB2 < 2.12 - Out-of-bounds Write via Crafted 16-bit Grayscale PNG Image
Jul 06, 2022
CVSS 4.5
EPSS 0.00
CVE-2021-42614 HIGH
Halibut 1.2 - Use-After-Free in info_width_internal
May 24, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-42613 HIGH
Halibut 1.2 - Double Free in Index Cleanup
May 24, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-42612 HIGH
Halibut 1.2 - Use-After-Free in Index Cleanup
May 24, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-46790 HIGH
NTFS-3G <2021.8.22 - Buffer Overflow
May 02, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-42782 MEDIUM
OpenSC < 0.22.0 - Stack Buffer Overflow
Apr 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-42781 MEDIUM
OpenSC < 0.22.0 - Heap Buffer Overflow in pkcs15-oberthur.c
Apr 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-42780 MEDIUM
OpenSC < 0.22.0 - Use-After-Free in insert_pin Function
Apr 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-42779 MEDIUM
OpenSC < 0.22.0 - Use-After-Free in sc_file_valid
Apr 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-42778 MEDIUM
OpenSC < 0.22.0 - Double Free in sc_pkcs15_free_tokeninfo
Apr 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-28544 MEDIUM
Apache Subversion 1.10.0-1.14.0 - Unauthorized Exposure of Protected Copyfrom Paths
Apr 12, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-43138 HIGH
Async <2.6.4, <3.2.2 - Privilege Escalation
Apr 06, 2022
CVSS 7.8
EPSS 0.01
CVE-2021-3847 HIGH
Linux Kernel OverlayFS - Privilege Escalation
Apr 01, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-4157 HIGH
Linux Kernel 4.0-4.4.268 - Memory Corruption in NFS Mirroring
Mar 25, 2022
CVSS 8.0
EPSS 0.00
Products
fedora 5,351 extra_packages_for_enterprise_linux 76 389_directory_server 39 sssd 18 fedora_core 8 389_administration_server 1 anaconda 1 arm_installer 1 commons 1 coolkey 1 crypto-utils 1 fedmsg 1 fedora_linux_kernel 1 python-fedora 1 sectool 1 selinux-policy 1 spin-kickstarts 1 supybot-fedora 1 unbound 1
Quick Filters
Critical CVEs With Exploits In CISA KEV