Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Fedora
(Fedoraproject)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2022-03-10 | CVE-2021-4095 | A NULL pointer dereference was found in the Linux kernel's KVM when dirty ring logging is enabled without an active vCPU context. An unprivileged local attacker on the host may use this flaw to cause a kernel oops condition and thus a denial of service by issuing a KVM_XEN_HVM_SET_ATTR ioctl. This flaw affects Linux kernel versions prior to 5.17-rc1. | Fedora, Linux_kernel | 5.5 | ||
2022-03-10 | CVE-2022-0433 | A NULL pointer dereference flaw was found in the Linux kernel's BPF subsystem in the way a user triggers the map_get_next_key function of the BPF bloom filter. This flaw allows a local user to crash the system. This flaw affects Linux kernel versions prior to 5.17-rc1. | Fedora, Linux_kernel | 5.5 | ||
2022-03-10 | CVE-2022-0856 | libcaca is affected by a Divide By Zero issue via img2txt, which allows a remote malicious user to cause a Denial of Service | Fedora, Libcaca | 6.5 | ||
2022-03-10 | CVE-2022-0865 | Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 5e180045. | Debian_linux, Fedora, Libtiff, Active_iq_unified_manager | 6.5 | ||
2022-03-10 | CVE-2022-0891 | A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact | Debian_linux, Fedora, Libtiff, Active_iq_unified_manager | 7.1 | ||
2022-03-11 | CVE-2022-0860 | Improper Authorization in GitHub repository cobbler/cobbler prior to 3.3.2. | Cobbler, Fedora | 9.1 | ||
2022-03-11 | CVE-2022-0907 | Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2. | Debian_linux, Fedora, Libtiff, Ontap_select_deploy_administration_utility | 5.5 | ||
2022-03-11 | CVE-2022-0908 | Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file. | Debian_linux, Fedora, Libtiff, Ontap_select_deploy_administration_utility | 5.5 | ||
2022-03-11 | CVE-2022-0909 | Divide By Zero error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f8d0f9aa. | Debian_linux, Fedora, Libtiff, Ontap_select_deploy_administration_utility | 5.5 | ||
2022-03-11 | CVE-2022-0924 | Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 408976c4. | Debian_linux, Fedora, Libtiff, Ontap_select_deploy_administration_utility | 5.5 |