Fedoraproject Fedora vulnerabilities

CVE-2022-38013 [HIGH] CVE-2022-38013: .NET Core and Visual Studio Denial of Service Vulnerability .NET Core and Visual Studio Denial of Service Vulnerability

CVE-2022-3190 [MEDIUM] CWE-835 CVE-2022-3190: Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file

CVE-2021-36568 [MEDIUM] CWE-79 CVE-2021-36568: In certain Moodle products after creating a course, it is possible to add in a arbitrary "Topic" a r In certain Moodle products after creating a course, it is possible to add in a arbitrary "Topic" a resource, in this case a "Database" with the type "Text" where its values "Field name" and "Field description" are vulnerable to Cross Site Scripting Stored(XSS). This affects Moodle 3.11 and Moodle 3.10.4 and Moodle 3.9.7.

CVE-2022-25765 [CRITICAL] CVE-2022-25765: The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sani The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized.

CVE-2020-10735 [HIGH] CWE-704 CVE-2020-10735: A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, whe A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int("text"), a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits (float, decimal, int.from_bytes(), and int() for binary bases 2, 4, 8, 16, and 32 are not affected). The highest threat from this vulner

CVE-2022-40320 [HIGH] CWE-125 CVE-2022-40320: cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read.

CVE-2022-36087 [MEDIUM] CWE-20 CVE-2022-36087: OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versio OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker providing malicious redirect uri can cause denial of service. An attacker can also leverage usage of `uri_validate` functions depending where it is used. OAuthLib applications using OAuth2.0 provider support or use dir

CVE-2022-36109 [MEDIUM] CWE-863 CVE-2022-36109: Moby is an open-source project created by Docker to enable software containerization. A bug was foun Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use supplementary group access to bypass primary group

CVE-2022-3169 [MEDIUM] CWE-20 CVE-2022-3169: A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive r A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the NVME_IOCTL_SUBSYS_RESET through the device file of the driver, resulting in a PCIe link disconnect.

CVE-2022-27664 [HIGH] CVE-2022-27664: In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service be In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.

CVE-2022-39831 [HIGH] CVE-2022-39831: An issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_by An issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact. This issue is different from CVE-2018-20230.

CVE-2022-39832 [HIGH] CWE-787 CVE-2022-39832: An issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_st An issue was discovered in PSPP 1.6.2. There is a heap-based buffer overflow at the function read_string in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact.

CVE-2022-3123 [MEDIUM] CWE-79 CVE-2022-3123: Cross-site Scripting (XSS) - Reflected in GitHub repository splitbrain/dokuwiki prior to 2022-07-31a Cross-site Scripting (XSS) - Reflected in GitHub repository splitbrain/dokuwiki prior to 2022-07-31a.

CVE-2022-3099 [HIGH] CWE-416 CVE-2022-3099: Use After Free in GitHub repository vim/vim prior to 9.0.0360. Use After Free in GitHub repository vim/vim prior to 9.0.0360.

CVE-2022-39170 [HIGH] CWE-415 CVE-2022-39170: libdwarf 0.4.1 has a double free in _dwarf_exec_frame_instr in dwarf_frame.c. libdwarf 0.4.1 has a double free in _dwarf_exec_frame_instr in dwarf_frame.c.

CVE-2022-32743 [HIGH] CWE-276 CVE-2022-32743: Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it.

CVE-2022-1615 [MEDIUM] CWE-330 CVE-2022-1615: In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values. In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

CVE-2022-1632 [MEDIUM] CWE-295 CVE-2022-1632: An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinatio An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the default serviceCA skips internal Service TLS certificate validation. This flaw allows an attacker to exploit an invalid certificate, resulting in a loss of confidentiality.

CVE-2021-3826 [MEDIUM] CWE-119 CVE-2021-3826: Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.

CVE-2022-1247 [HIGH] CWE-362 CVE-2022-1247: An issue found in linux-kernel that leads to a race condition in rose_connect(). The rose driver use An issue found in linux-kernel that leads to a race condition in rose_connect(). The rose driver uses rose_neigh->use to represent how many objects are using the rose_neigh. When a user wants to delete a rose_route via rose_ioctl(), the rose driver calls rose_del_node() and removes neighbours only if their “count” and “use” are zero.