Vulnerabilities > Fedoraproject > Fedora > 32
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-01 | CVE-2021-22876 | Information Exposure vulnerability in multiple products curl 7.1.1 to and including 7.75.0 is vulnerable to an "Exposure of Private Personal Information to an Unauthorized Actor" by leaking credentials in the HTTP Referer: header. | 5.3 |
| 2021-04-01 | CVE-2021-28163 | Link Following vulnerability in multiple products In Eclipse Jetty 9.4.32 to 9.4.38, 10.0.0.beta2 to 10.0.1, and 11.0.0.beta2 to 11.0.1, if a user uses a webapps directory that is a symlink, the contents of the webapps directory is deployed as a static webapp, inadvertently serving the webapps themselves and anything else that might be in that directory. | 2.7 |
| 2021-03-30 | CVE-2021-29650 | An issue was discovered in the Linux kernel before 5.11.11. | 5.5 |
| 2021-03-30 | CVE-2021-29649 | Memory Leak vulnerability in multiple products An issue was discovered in the Linux kernel before 5.11.11. | 5.5 |
| 2021-03-30 | CVE-2021-29648 | Improper Restriction of Excessive Authentication Attempts vulnerability in multiple products An issue was discovered in the Linux kernel before 5.11.11. | 5.5 |
| 2021-03-30 | CVE-2021-29647 | Missing Initialization of Resource vulnerability in multiple products An issue was discovered in the Linux kernel before 5.11.11. | 5.5 |
| 2021-03-30 | CVE-2021-29646 | An issue was discovered in the Linux kernel before 5.11.11. | 5.5 |
| 2021-03-26 | CVE-2021-20271 | A flaw was found in RPM's signature check functionality when reading a package file. | 7.0 |
| 2021-03-25 | CVE-2021-3466 | A flaw was found in libmicrohttpd. | 9.8 |
| 2021-03-25 | CVE-2020-1946 | OS Command Injection vulnerability in multiple products In Apache SpamAssassin before 3.4.5, malicious rule configuration (.cf) files can be configured to run system commands without any output or errors. | 9.8 |