Vulnerabilities > Fedoraproject > Fedora > 34
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-24 | CVE-2020-11988 | Server-Side Request Forgery (SSRF) vulnerability in multiple products Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. | 8.2 |
| 2021-02-24 | CVE-2020-11987 | Server-Side Request Forgery (SSRF) vulnerability in multiple products Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. | 8.2 |
| 2021-02-24 | CVE-2021-27645 | Double Free vulnerability in multiple products The nameserver caching daemon (nscd) in the GNU C Library (aka glibc or libc6) 2.29 through 2.33, when processing a request for netgroup lookup, may crash due to a double-free, potentially resulting in degraded service or Denial of Service on the local system. | 2.5 |
| 2021-02-23 | CVE-2021-3410 | Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in libcaca v0.99.beta19. | 7.8 |
| 2021-02-23 | CVE-2021-3407 | A flaw was found in mupdf 1.18.0. | 5.5 |
| 2021-02-23 | CVE-2021-3405 | A flaw was found in libebml before 1.4.2. | 6.5 |
| 2021-02-23 | CVE-2021-26927 | A flaw was found in jasper before 2.0.25. | 5.5 |
| 2021-02-23 | CVE-2021-26926 | A flaw was found in jasper before 2.0.25. | 7.1 |
| 2021-02-18 | CVE-2020-28463 | Server-Side Request Forgery (SSRF) vulnerability in multiple products All versions of package reportlab are vulnerable to Server-side Request Forgery (SSRF) via img tags. | 6.5 |
| 2021-02-17 | CVE-2020-8625 | Classic Buffer Overflow vulnerability in multiple products BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. | 8.1 |