Fedoraproject Fedora vulnerabilities

CVE-2022-2304 [HIGH] CWE-121 CVE-2022-2304: Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.

CVE-2022-33741 [HIGH] CVE-2022-33741: Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-2022-26365, CVE-2022-33740). Additionally the granularity of the grant table doesn't

CVE-2022-2097 [MEDIUM] CWE-327 CVE-2022-2097: AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not en AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption, sixteen bytes of the plaintext would be revealed. Sinc

CVE-2022-31117 [MEDIUM] CWE-415 CVE-2022-31117: UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. In ver UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. In versions prior to 5.4.0 an error occurring while reallocating a buffer for string decoding can cause the buffer to get freed twice. Due to how UltraJSON uses the internal decoder, this double free is impossible to trigger from Python. This issue has been

CVE-2022-2288 [HIGH] CWE-787 CVE-2022-2288: Out-of-bounds Write in GitHub repository vim/vim prior to 9.0. Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.

CVE-2022-2289 [HIGH] CWE-416 CVE-2022-2289: Use After Free in GitHub repository vim/vim prior to 9.0. Use After Free in GitHub repository vim/vim prior to 9.0.

CVE-2022-2285 [HIGH] CWE-190 CVE-2022-2285: Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0. Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.

CVE-2022-2286 [HIGH] CWE-125 CVE-2022-2286: Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.

CVE-2022-2284 [HIGH] CWE-122 CVE-2022-2284: Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.

CVE-2022-2287 [HIGH] CWE-125 CVE-2022-2287: Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.

CVE-2022-34911 [MEDIUM] CWE-79 CVE-2022-34911: An issue was discovered in MediaWiki before 1.35.7, 1.36.x and 1.37.x before 1.37.3, and 1.38.x befo An issue was discovered in MediaWiki before 1.35.7, 1.36.x and 1.37.x before 1.37.3, and 1.38.x before 1.38.1. XSS can occur in configurations that allow a JavaScript payload in a username. After account creation, when it sets the page title to "Welcome" followed by the username, the username is not escaped: SpecialCreateAccount::successfulAction() c

CVE-2022-34912 [MEDIUM] CVE-2022-34912: An issue was discovered in MediaWiki before 1.37.3 and 1.38.x before 1.38.1. The contributions-title An issue was discovered in MediaWiki before 1.37.3 and 1.38.x before 1.38.1. The contributions-title, used on Special:Contributions, is used as page title without escaping. Hence, in a non-default configuration where a username contains HTML entities, it won't be escaped.

CVE-2022-32089 [HIGH] CVE-2022-32089: MariaDB v10.5 to v10.7 was discovered to contain a segmentation fault via the component st_select_le MariaDB v10.5 to v10.7 was discovered to contain a segmentation fault via the component st_select_lex_unit::exclude_level.

CVE-2022-32084 [HIGH] CVE-2022-32084: MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component sub_select. MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component sub_select.

CVE-2022-32081 [HIGH] CWE-416 CVE-2022-32081: MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in prepare_inplace_add_virtual MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in prepare_inplace_add_virtual at /storage/innobase/handler/handler0alter.cc.

CVE-2022-33099 [HIGH] CWE-787 CVE-2022-33099: An issue in the component luaG_runerror of Lua v5.4.4 and below leads to a heap-buffer overflow when An issue in the component luaG_runerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs.

CVE-2022-32082 [HIGH] CWE-617 CVE-2022-32082: MariaDB v10.5 to v10.7 was discovered to contain an assertion failure at table->get_ref_count() == 0 MariaDB v10.5 to v10.7 was discovered to contain an assertion failure at table->get_ref_count() == 0 in dict0dict.cc.

CVE-2022-2264 [HIGH] CWE-122 CVE-2022-2264: Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.

CVE-2022-32091 [HIGH] CWE-416 CVE-2022-32091: MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at /libsaniti MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc.

CVE-2022-34903 [MEDIUM] CWE-74 CVE-2022-34903: GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information fr GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line.