Fedora

DATE	CVE	VULNERABILITY TITLE	RISK
2021-03-12	CVE-2020-36278	Out-of-bounds Read vulnerability in multiple products Leptonica before 1.80.0 allows a heap-based buffer over-read in findNextBorderPixel in ccbord.c. network low complexity leptonica fedoraproject debian CWE-125	7.5
2021-03-11	CVE-2021-28153	Link Following vulnerability in multiple products An issue was discovered in GNOME GLib before 2.66.8. network low complexity gnome debian fedoraproject broadcom CWE-59	5.3
2021-03-11	CVE-2020-36277	Always-Incorrect Control Flow Implementation vulnerability in multiple products Leptonica before 1.80.0 allows a denial of service (application crash) via an incorrect left shift in pixConvert2To8 in pixconv.c. network low complexity leptonica fedoraproject debian CWE-670	7.5
2021-03-11	CVE-2021-21381	Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. local low complexity flatpak debian fedoraproject	8.2
2021-03-11	CVE-2021-27919	archive/zip in Go 1.16.x before 1.16.1 allows attackers to cause a denial of service (panic) upon attempted use of the Reader.Open API for a ZIP archive in which ../ occurs at the beginning of any filename. local low complexity golang fedoraproject	5.5
2021-03-10	CVE-2021-21334	In containerd (an industry-standard container runtime) before versions 1.3.10 and 1.4.4, containers launched through containerd's CRI implementation (through Kubernetes, crictl, or any other pod/container client that uses the containerd CRI service) that share the same image may receive incorrect environment variables, including values that are defined for other containers. network high complexity linuxfoundation fedoraproject	6.3
2021-03-10	CVE-2021-21772	Use After Free vulnerability in multiple products A use-after-free vulnerability exists in the NMR::COpcPackageReader::releaseZIP() functionality of 3MF Consortium lib3mf 2.0.0. network high complexity 3mf fedoraproject debian CWE-416	8.1
2021-03-10	CVE-2021-20205	Divide By Zero vulnerability in multiple products Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image. network low complexity libjpeg-turbo fedoraproject CWE-369	6.5
2021-03-09	CVE-2021-28116	Out-of-bounds Read vulnerability in multiple products Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. network low complexity squid-cache fedoraproject debian CWE-125	5.3
2021-03-09	CVE-2021-21300	Git is an open-source distributed revision control system. network high complexity git-scm fedoraproject apple debian	7.5