Fedora

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-01	CVE-2022-35922	Allocation of Resources Without Limits or Throttling vulnerability in multiple products Rust-WebSocket is a WebSocket (RFC6455) library written in Rust. network low complexity rust-websocket-project fedoraproject CWE-770	7.5
2022-08-01	CVE-2022-30698	Insufficient Session Expiration vulnerability in multiple products NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable to a novel type of the "ghost domain names" attack. network low complexity nlnetlabs fedoraproject CWE-613	6.5
2022-08-01	CVE-2022-30699	Insufficient Session Expiration vulnerability in multiple products NLnet Labs Unbound, up to and including version 1.16.1, is vulnerable to a novel type of the "ghost domain names" attack. network low complexity nlnetlabs fedoraproject CWE-613	6.5
2022-08-01	CVE-2022-2509	Double Free vulnerability in multiple products A vulnerability found in gnutls. network low complexity gnu redhat fedoraproject debian CWE-415	7.5
2022-07-29	CVE-2022-34526	Out-of-bounds Write vulnerability in multiple products A stack overflow was discovered in the _TIFFVGetField function of Tiffsplit v4.4.0. network low complexity libtiff fedoraproject netapp debian CWE-787	6.5
2022-07-28	CVE-2021-41556	Out-of-bounds Read vulnerability in multiple products sqclass.cpp in Squirrel through 2.2.5 and 3.x through 3.1 allows an out-of-bounds read (in the core interpreter) that can lead to Code Execution. network low complexity squirrel-lang fedoraproject CWE-125 critical	10.0
2022-07-28	CVE-2022-2553	The authfile directive in the booth config file is ignored, preventing use of authentication in communications from node to node. network low complexity clusterlabs debian fedoraproject	6.5
2022-07-28	CVE-2022-2163	Use After Free vulnerability in multiple products Use after free in Cast UI and Toolbar in Google Chrome prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via UI interaction. network low complexity google fedoraproject CWE-416	8.8
2022-07-28	CVE-2022-2294	Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject webkitgtk wpewebkit apple webrtc-project CWE-787	8.8
2022-07-28	CVE-2022-2295	Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-843	8.8