Vulnerabilities > Fedoraproject > Fedora > 31
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-06-22 | CVE-2020-4031 | Use After Free vulnerability in multiple products In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject. | 7.5 |
2020-06-22 | CVE-2020-4030 | Out-of-bounds Read vulnerability in multiple products In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse. | 6.5 |
2020-06-22 | CVE-2020-11099 | Out-of-bounds Read vulnerability in multiple products In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet. | 6.5 |
2020-06-22 | CVE-2020-11098 | Out-of-bounds Read vulnerability in multiple products In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put. | 6.5 |
2020-06-22 | CVE-2020-11097 | Out-of-bounds Read vulnerability in multiple products In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. | 5.4 |
2020-06-22 | CVE-2020-11096 | Out-of-bounds Read vulnerability in multiple products In FreeRDP before version 2.1.2, there is a global OOB read in update_read_cache_bitmap_v3_order. | 6.5 |
2020-06-22 | CVE-2020-11095 | Out-of-bounds Read vulnerability in multiple products In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. | 5.4 |
2020-06-21 | CVE-2020-14954 | Injection vulnerability in multiple products Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. | 5.9 |
2020-06-19 | CVE-2020-14929 | Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the connection and letting the user decide what they would like to do. | 7.5 |
2020-06-18 | CVE-2020-13882 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products CISOfy Lynis before 3.0.0 has Incorrect Access Control because of a TOCTOU race condition. | 4.2 |