Vulnerabilities > Fedoraproject > Fedora > 35
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-23 | CVE-2022-33068 | Integer Overflow or Wraparound vulnerability in multiple products An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service (DoS) via unspecified vectors. | 5.5 |
| 2022-06-23 | CVE-2022-2175 | Out-of-bounds Read vulnerability in multiple products Buffer Over-read in GitHub repository vim/vim prior to 8.2. | 7.8 |
| 2022-06-21 | CVE-2022-2068 | OS Command Injection vulnerability in multiple products In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. | 9.8 |
| 2022-06-20 | CVE-2022-1720 | Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. | 7.8 |
| 2022-06-19 | CVE-2022-2129 | Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. | 7.8 |
| 2022-06-19 | CVE-2022-2126 | Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. | 7.8 |
| 2022-06-19 | CVE-2022-2125 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. | 7.8 |
| 2022-06-19 | CVE-2022-2124 | Buffer Over-read in GitHub repository vim/vim prior to 8.2. | 7.8 |
| 2022-06-16 | CVE-2022-2085 | NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. | 5.5 |
| 2022-06-15 | CVE-2022-21166 | Incomplete Cleanup vulnerability in multiple products Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | 5.5 |