Fedora

DATE	CVE	VULNERABILITY TITLE	RISK
2019-12-10	CVE-2019-13727	Improper Preservation of Permissions vulnerability in multiple products Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page. network low complexity google debian fedoraproject redhat CWE-281	8.8
2019-12-10	CVE-2019-13726	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer overflow in password manager in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to execute arbitrary code via a crafted HTML page. network low complexity google debian fedoraproject redhat CWE-119	8.8
2019-12-10	CVE-2019-13725	Use After Free vulnerability in multiple products Use-after-free in Bluetooth in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to execute arbitrary code via a crafted HTML page. network low complexity google debian fedoraproject redhat CWE-416	8.8
2019-12-10	CVE-2013-2166	Inadequate Encryption Strength vulnerability in multiple products python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache encryption bypass network low complexity openstack redhat fedoraproject debian CWE-326 critical	9.8
2019-12-09	CVE-2019-19648	Out-of-bounds Read vulnerability in multiple products In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, command_size may be inconsistent with the real size. local low complexity virustotal fedoraproject CWE-125	7.8
2019-12-09	CVE-2019-19647	NULL Pointer Dereference vulnerability in multiple products radare2 through 4.0.0 lacks validation of the content variable in the function r_asm_pseudo_incbin at libr/asm/asm.c, ultimately leading to an arbitrary write. local low complexity radare fedoraproject CWE-476	7.8
2019-12-08	CVE-2019-19630	Out-of-bounds Write vulnerability in multiple products HTMLDOC 1.9.7 allows a stack-based buffer overflow in the hd_strlcpy() function in string.c (when called from render_contents in ps-pdf.cxx) via a crafted HTML document. local low complexity htmldoc-project debian fedoraproject CWE-787	7.8
2019-12-06	CVE-2019-1551	Integer Overflow or Wraparound vulnerability in multiple products There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. network low complexity openssl opensuse oracle canonical fedoraproject debian tenable CWE-190	5.3
2019-12-06	CVE-2012-2130	Inadequate Encryption Strength vulnerability in multiple products A Security Bypass vulnerability exists in PolarSSL 0.99pre4 through 1.1.1 due to a weak encryption error when generating Diffie-Hellman values and RSA keys. network high complexity polarssl debian fedoraproject CWE-326	7.4
2019-12-06	CVE-2019-5544	Out-of-bounds Write vulnerability in multiple products OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. network low complexity vmware redhat openslp fedoraproject CWE-787 critical	9.8