Vulnerabilities > Fedoraproject > Fedora

DATE CVE VULNERABILITY TITLE RISK
2021-03-09 CVE-2021-21166 Race Condition vulnerability in multiple products
Data race in audio in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-362
8.8
8.8
2021-03-09 CVE-2021-21165 Race Condition vulnerability in multiple products
Data race in audio in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-362
8.8
8.8
2021-03-09 CVE-2021-21164 Origin Validation Error vulnerability in multiple products
Insufficient data validation in Chrome on iOS in Google Chrome on iOS prior to 89.0.4389.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-346
6.5
6.5
2021-03-09 CVE-2021-21163 Origin Validation Error vulnerability in multiple products
Insufficient data validation in Reader Mode in Google Chrome on iOS prior to 89.0.4389.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page and a malicious server.
network
low complexity
google fedoraproject debian CWE-346
6.5
6.5
2021-03-09 CVE-2021-21162 Use After Free vulnerability in multiple products
Use after free in WebRTC in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-416
8.8
8.8
2021-03-09 CVE-2021-21161 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in TabStrip in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-787
8.8
8.8
2021-03-09 CVE-2021-21160 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in WebAudio in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-787
8.8
8.8
2021-03-09 CVE-2021-21159 Use After Free vulnerability in multiple products
Heap buffer overflow in TabStrip in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-416
8.8
8.8
2021-03-08 CVE-2021-23351 The package github.com/pires/go-proxyproto before 0.5.0 are vulnerable to Denial of Service (DoS) via the parseVersion1() function.
network
low complexity
go-proxyproto-project fedoraproject
4.9
4.9
2021-03-05 CVE-2021-3420 A flaw was found in newlib in versions prior to 4.0.0.
network
low complexity
newlib-project fedoraproject
critical
 9.8
9.8