Fedora

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-25	CVE-2019-13723	Use After Free vulnerability in multiple products Use after free in WebBluetooth in Google Chrome prior to 78.0.3904.108 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject opensuse redhat CWE-416	8.8
2019-11-25	CVE-2012-5644	Information Exposure vulnerability in multiple products libuser has information disclosure when moving user's home directory local low complexity libuser-project fedoraproject redhat debian CWE-200	5.5
2019-11-25	CVE-2012-5630	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products libuser 0.56 and 0.57 has a TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees. local high complexity libuser-project fedoraproject redhat CWE-367	6.3
2019-11-25	CVE-2012-5617	Improper Privilege Management vulnerability in multiple products gksu-polkit: permissive PolicyKit policy configuration file allows privilege escalation local low complexity gksu-polkit-project fedoraproject CWE-269	7.8
2019-11-25	CVE-2012-5535	Information Exposure vulnerability in multiple products gnome-system-log polkit policy allows arbitrary files on the system to be read network low complexity gnome fedoraproject CWE-200	7.5
2019-11-25	CVE-2019-14891	Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products A flaw was found in cri-o, as a result of all pod-related processes being placed in the same memory cgroup. network high complexity kubernetes fedoraproject redhat CWE-754	5.0
2019-11-23	CVE-2019-11287	Use of Externally-Controlled Format String vulnerability in multiple products Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. network low complexity pivotal-software broadcom fedoraproject redhat debian CWE-134	7.5
2019-11-22	CVE-2019-18622	SQL Injection vulnerability in multiple products An issue was discovered in phpMyAdmin before 4.9.2. network low complexity phpmyadmin opensuse fedoraproject CWE-89 critical	9.8
2019-11-22	CVE-2015-7810	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files local high complexity videolan redhat fedoraproject debian CWE-367	4.7
2019-11-21	CVE-2019-19221	Out-of-bounds Read vulnerability in multiple products In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. local low complexity libarchive debian fedoraproject canonical CWE-125	5.5