Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Fedora
(Fedoraproject)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2022-08-29 | CVE-2022-35017 | Advancecomp v2.3 was discovered to contain a heap buffer overflow. | Advancecomp, Fedora | 5.5 | ||
2022-08-29 | CVE-2022-35018 | Advancecomp v2.3 was discovered to contain a segmentation fault. | Advancecomp, Fedora | 5.5 | ||
2022-08-29 | CVE-2022-35019 | Advancecomp v2.3 was discovered to contain a segmentation fault. | Advancecomp, Fedora | 5.5 | ||
2022-08-29 | CVE-2022-35020 | Advancecomp v2.3 was discovered to contain a heap buffer overflow via the component __interceptor_memcpy at /sanitizer_common/sanitizer_common_interceptors.inc. | Advancecomp, Fedora | 5.5 | ||
2022-08-30 | CVE-2022-38784 | Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf. | Debian_linux, Fedora, Poppler | 7.8 | ||
2022-08-30 | CVE-2022-3037 | Use After Free in GitHub repository vim/vim prior to 9.0.0322. | Fedora, Vim | 7.8 | ||
2022-08-31 | CVE-2022-2132 | A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK. | Debian_linux, Data_plane_development_kit, Fedora, Enterprise_linux, Enterprise_linux_fast_datapath, Openshift_container_platform, Openstack_platform, Virtualization | 8.6 | ||
2022-08-31 | CVE-2022-3028 | A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an out-of-bounds read and copying it into a socket. | Debian_linux, Fedora, Linux_kernel | 7.0 | ||
2022-09-01 | CVE-2022-1615 | In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values. | Fedora, Samba | 5.5 | ||
2022-09-01 | CVE-2022-32743 | Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it. | Fedora, Samba | 7.5 |