Vulnerabilities > Fedoraproject > Fedora
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-09 | CVE-2019-10901 | NULL Pointer Dereference vulnerability in multiple products In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. | 7.5 |
| 2019-04-09 | CVE-2019-10900 | Infinite Loop vulnerability in multiple products In Wireshark 3.0.0, the Rbm dissector could go into an infinite loop. | 7.5 |
| 2019-04-09 | CVE-2019-10899 | Out-of-bounds Read vulnerability in multiple products In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC dissector could crash. | 7.5 |
| 2019-04-09 | CVE-2019-10898 | Infinite Loop vulnerability in multiple products In Wireshark 3.0.0, the GSUP dissector could go into an infinite loop. | 7.5 |
| 2019-04-09 | CVE-2019-10897 | Infinite Loop vulnerability in multiple products In Wireshark 3.0.0, the IEEE 802.11 dissector could go into an infinite loop. | 7.5 |
| 2019-04-09 | CVE-2019-10896 | Out-of-bounds Write vulnerability in multiple products In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DOF dissector could crash. | 7.5 |
| 2019-04-09 | CVE-2019-10895 | Out-of-bounds Read vulnerability in multiple products In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. | 7.5 |
| 2019-04-09 | CVE-2019-10894 | Reachable Assertion vulnerability in multiple products In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. | 7.5 |
| 2019-04-09 | CVE-2019-9844 | Cross-site Scripting vulnerability in multiple products simple-markdown.js in Khan Academy simple-markdown before 0.4.4 allows XSS via a data: or vbscript: URI. | 6.1 |
| 2019-04-08 | CVE-2019-11026 | Uncontrolled Recursion vulnerability in multiple products FontInfoScanner::scanFonts in FontInfo.cc in Poppler 0.75.0 has infinite recursion, leading to a call to the error function in Error.cc. | 6.5 |