Fedoraproject Fedora vulnerabilities
5,277 known vulnerabilities affecting fedoraproject/fedora.
Total CVEs
5,277
CISA KEV
84
actively exploited
Public exploits
147
Exploited in wild
101
Severity breakdown
CRITICAL514HIGH2325MEDIUM2265LOW173
Vulnerabilities
Page 58 of 264
CVE-2022-3028HIGHCVSS 7.0v35v36+1 more2022-08-31
CVE-2022-3028 [HIGH] CWE-667 CVE-2022-3028: A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsyst
A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an out-of-bounds read and copying it into a socket.
nvd
CVE-2022-2132HIGHCVSS 8.6v362022-08-31
CVE-2022-2132 [HIGH] CWE-791 CVE-2022-2132: A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to c
A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK.
nvd
CVE-2022-1355MEDIUMCVSS 6.1v34v35+1 more2022-08-31
CVE-2022-1355 [MEDIUM] CWE-121 CVE-2022-1355: A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an
A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service.
nvd
CVE-2022-2153MEDIUMCVSS 5.5v362022-08-31
CVE-2022-2153 [MEDIUM] CWE-476 CVE-2022-2153: A flaw was found in the Linux kernel’s KVM when attempting to set a SynIC IRQ. This issue makes it p
A flaw was found in the Linux kernel’s KVM when attempting to set a SynIC IRQ. This issue makes it possible for a misbehaving VMM to write to SYNIC/STIMER MSRs, causing a NULL pointer dereference. This flaw allows an unprivileged local attacker on the host to issue specific ioctl calls, causing a kernel oops condition that results in a denial of servi
nvd
CVE-2022-1354MEDIUMCVSS 5.5v34v35+1 more2022-08-31
CVE-2022-1354 [MEDIUM] CWE-125 CVE-2022-1354: A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function.
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a denial of service.
nvd
CVE-2022-38784HIGHCVSS 7.8v35v36+1 more2022-08-30
CVE-2022-38784 [HIGH] CVE-2022-38784: Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Strea
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
nvd
CVE-2022-3037HIGHCVSS 7.8v35v36+1 more2022-08-30
CVE-2022-3037 [HIGH] CWE-416 CVE-2022-3037: Use After Free in GitHub repository vim/vim prior to 9.0.0322.
Use After Free in GitHub repository vim/vim prior to 9.0.0322.
nvd
CVE-2022-0367HIGHCVSS 7.8v352022-08-29
CVE-2022-0367 [HIGH] CWE-119 CVE-2022-0367: A heap-based buffer overflow flaw was found in libmodbus in function modbus_reply() in src/modbus.c.
A heap-based buffer overflow flaw was found in libmodbus in function modbus_reply() in src/modbus.c.
nvd
CVE-2022-0336HIGHCVSS 8.8v34v352022-08-29
CVE-2022-0336 [HIGH] CWE-276 CVE-2022-0336: The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure
The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account, such as one added when a computer is joined to a domain. An attac
nvd
CVE-2022-2961HIGHCVSS 7.0v362022-08-29
CVE-2022-2961 [HIGH] CWE-416 CVE-2022-2961: A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user trigg
A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. This flaw allows a local user to crash or potentially escalate their privileges on the system.
nvd
CVE-2022-35020MEDIUMCVSS 5.5v35v36+1 more2022-08-29
CVE-2022-35020 [MEDIUM] CWE-787 CVE-2022-35020: Advancecomp v2.3 was discovered to contain a heap buffer overflow via the component __interceptor_me
Advancecomp v2.3 was discovered to contain a heap buffer overflow via the component __interceptor_memcpy at /sanitizer_common/sanitizer_common_interceptors.inc.
nvd
CVE-2022-35015MEDIUMCVSS 5.5v35v36+1 more2022-08-29
CVE-2022-35015 [MEDIUM] CWE-787 CVE-2022-35015: Advancecomp v2.3 was discovered to contain a heap buffer overflow via le_uint32_read at /lib/endianr
Advancecomp v2.3 was discovered to contain a heap buffer overflow via le_uint32_read at /lib/endianrw.h.
nvd
CVE-2022-35016MEDIUMCVSS 5.5v35v36+1 more2022-08-29
CVE-2022-35016 [MEDIUM] CWE-787 CVE-2022-35016: Advancecomp v2.3 was discovered to contain a heap buffer overflow.
Advancecomp v2.3 was discovered to contain a heap buffer overflow.
nvd
CVE-2022-35018MEDIUMCVSS 5.5v35v36+1 more2022-08-29
CVE-2022-35018 [MEDIUM] CVE-2022-35018: Advancecomp v2.3 was discovered to contain a segmentation fault.
Advancecomp v2.3 was discovered to contain a segmentation fault.
nvd
CVE-2022-35017MEDIUMCVSS 5.5v35v36+1 more2022-08-29
CVE-2022-35017 [MEDIUM] CWE-787 CVE-2022-35017: Advancecomp v2.3 was discovered to contain a heap buffer overflow.
Advancecomp v2.3 was discovered to contain a heap buffer overflow.
nvd
CVE-2022-1204MEDIUMCVSS 5.5v34v352022-08-29
CVE-2022-1204 [MEDIUM] CWE-416 CVE-2022-1204: A use-after-free flaw was found in the Linux kernel’s Amateur Radio AX.25 protocol functionality in
A use-after-free flaw was found in the Linux kernel’s Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw allows a local user to crash the system.
nvd
CVE-2022-35019MEDIUMCVSS 5.5v35v36+1 more2022-08-29
CVE-2022-35019 [MEDIUM] CVE-2022-35019: Advancecomp v2.3 was discovered to contain a segmentation fault.
Advancecomp v2.3 was discovered to contain a segmentation fault.
nvd
CVE-2022-3016HIGHCVSS 7.8v372022-08-28
CVE-2022-3016 [HIGH] CWE-416 CVE-2022-3016: Use After Free in GitHub repository vim/vim prior to 9.0.0286.
Use After Free in GitHub repository vim/vim prior to 9.0.0286.
nvd
CVE-2022-38791MEDIUMCVSS 5.5v35v36+1 more2022-08-27
CVE-2022-38791 [MEDIUM] CWE-667 CVE-2022-38791: In MariaDB before 10.9.2, compress_write in extra/mariabackup/ds_compress.cc does not release data_m
In MariaDB before 10.9.2, compress_write in extra/mariabackup/ds_compress.cc does not release data_mutex upon a stream write failure, which allows local users to trigger a deadlock.
nvd
CVE-2022-0216MEDIUMCVSS 4.4v372022-08-26
CVE-2022-0216 [MEDIUM] CWE-416 CVE-2022-0216: A use-after-free vulnerability was found in the LSI53C895A SCSI Host Bus Adapter emulation of QEMU.
A use-after-free vulnerability was found in the LSI53C895A SCSI Host Bus Adapter emulation of QEMU. The flaw occurs while processing repeated messages to cancel the current SCSI request via the lsi_do_msgout function. This flaw allows a malicious privileged user within the guest to crash the QEMU process on the host, resulting in a denial of service.
nvd