Fedoraproject Fedora vulnerabilities

CVE-2026-35093 [HIGH] CWE-94 CVE-2026-35093: A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file i A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain system or user configuration directories can bypass security restrictions. This allows the attacker to run unauthorized code with the same permissions as the program using libinput, such as a graphical compositor. This could lead to the attacke

CVE-2026-35094 [LOW] CWE-825 CVE-2026-35094: A flaw was found in libinput. An attacker capable of deploying a Lua plugin file in specific system A flaw was found in libinput. An attacker capable of deploying a Lua plugin file in specific system directories can exploit a dangling pointer vulnerability. This occurs when a garbage collection cleanup function is called, leaving a pointer that can then be printed to system logs. This could potentially expose sensitive data if the memory location is r

CVE-2023-4134 [MEDIUM] CWE-416 CVE-2023-4134: A use-after-free vulnerability was found in the cyttsp4_core driver in the Linux kernel. This issue A use-after-free vulnerability was found in the cyttsp4_core driver in the Linux kernel. This issue occurs in the device cleanup routine due to a possible rearming of the watchdog_timer from the workqueue. This could allow a local user to crash the system, causing a denial of service.

CVE-2024-3056 [HIGH] CWE-400 CVE-2024-3056: A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the same IPC with at least one other container, can create a large number of IPC resources in /dev/shm. The malicious container will continue to exhaust resources until it is out-of-memory (OOM) killed. While the malicious

CVE-2024-6293 [HIGH] CWE-416 CVE-2024-6293: Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potenti Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-6291 [HIGH] CWE-416 CVE-2024-6291: Use after free in Swiftshader in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to Use after free in Swiftshader in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-6292 [HIGH] CWE-416 CVE-2024-6292: Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potenti Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-6290 [HIGH] CWE-416 CVE-2024-6290: Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potenti Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-38276 [HIGH] CWE-352 CVE-2024-38276: Incorrect CSRF token checks resulted in multiple CSRF risks. Incorrect CSRF token checks resulted in multiple CSRF risks.

CVE-2024-38277 [MEDIUM] CWE-324 CVE-2024-38277: A unique key should be generated for a user's QR login key and their auto-login key, so the same key A unique key should be generated for a user's QR login key and their auto-login key, so the same key cannot be used interchangeably between the two.

CVE-2024-38274 [MEDIUM] CWE-79 CVE-2024-38274: Insufficient escaping of calendar event titles resulted in a stored XSS risk in the event deletion p Insufficient escaping of calendar event titles resulted in a stored XSS risk in the event deletion prompt.

CVE-2024-38273 [MEDIUM] CWE-284 CVE-2024-38273: Insufficient capability checks meant it was possible for users to gain access to BigBlueButton join Insufficient capability checks meant it was possible for users to gain access to BigBlueButton join URLs they did not have permission to access.

CVE-2024-5847 [HIGH] CWE-416 CVE-2024-5847: Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potent Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)

CVE-2024-5846 [HIGH] CWE-416 CVE-2024-5846: Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potent Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)

CVE-2024-5833 [HIGH] CWE-843 CVE-2024-5833: Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentiall Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

CVE-2024-5841 [HIGH] CWE-416 CVE-2024-5841: Use after free in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentiall Use after free in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

CVE-2024-5844 [HIGH] CWE-787 CVE-2024-5844: Heap buffer overflow in Tab Strip in Google Chrome prior to 126.0.6478.54 allowed a remote attacker Heap buffer overflow in Tab Strip in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)

CVE-2024-5838 [HIGH] CWE-843 CVE-2024-5838: Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform ou Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

CVE-2024-5832 [HIGH] CWE-416 CVE-2024-5832: Use after free in Dawn in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentia Use after free in Dawn in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2024-5834 [HIGH] CWE-94 CVE-2024-5834: Inappropriate implementation in Dawn in Google Chrome prior to 126.0.6478.54 allowed a remote attack Inappropriate implementation in Dawn in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)