Vulnerabilities > Fedoraproject > Fedora > 31

DATE	CVE	VULNERABILITY TITLE	RISK
2020-07-06	CVE-2020-10760	Use After Free vulnerability in multiple products A use-after-free flaw was found in all samba LDAP server versions before 4.10.17, before 4.11.11, before 4.12.4 used in a AC DC configuration. network low complexity samba canonical opensuse fedoraproject CWE-416	6.5
2020-07-06	CVE-2020-14303	Excessive Iteration vulnerability in multiple products A flaw was found in the AD DC NBT server in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4. network low complexity samba fedoraproject opensuse debian canonical CWE-834	7.5
2020-07-02	CVE-2020-15503	Improper Input Validation vulnerability in multiple products LibRaw before 0.20-RC1 lacks a thumbnail size range check. network low complexity libraw fedoraproject debian CWE-20	7.5
2020-07-01	CVE-2020-5238	Improper Input Validation vulnerability in multiple products The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. network low complexity github-flavored-markdown-project fedoraproject CWE-20	6.5
2020-06-30	CVE-2020-14058	An issue was discovered in Squid before 4.12 and 5.x before 5.0.3. network low complexity squid-cache fedoraproject netapp	7.5
2020-06-30	CVE-2020-15049	HTTP Request Smuggling vulnerability in multiple products An issue was discovered in http/ContentLengthInterpreter.cc in Squid before 4.12 and 5.x before 5.0.3. network low complexity squid-cache fedoraproject CWE-444	8.8
2020-06-30	CVE-2020-15396	Race Condition vulnerability in multiple products In HylaFAX+ through 7.0.2 and HylaFAX Enterprise, the faxsetup utility calls chown on files in user-owned directories. local low complexity hylafax-project ifax fedoraproject opensuse CWE-362	7.8
2020-06-30	CVE-2017-18922	Out-of-bounds Write vulnerability in multiple products It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames. network low complexity libvncserver-project canonical opensuse fedoraproject siemens CWE-787 critical	9.8
2020-06-29	CVE-2020-4067	Improper Initialization vulnerability in multiple products In coturn before version 4.5.1.3, there is an issue whereby STUN/TURN response buffer is not initialized properly. network low complexity coturn-project debian fedoraproject canonical opensuse CWE-665	7.5
2020-06-29	CVE-2020-14002	Information Exposure Through Discrepancy vulnerability in multiple products PuTTY 0.68 through 0.73 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. network high complexity putty netapp fedoraproject CWE-203	5.9