Vulnerabilities > Fedoraproject > Fedora
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-11 | CVE-2023-3354 | NULL Pointer Dereference vulnerability in multiple products A flaw was found in the QEMU built-in VNC server. | 7.5 |
| 2023-07-11 | CVE-2023-1672 | Race Condition vulnerability in multiple products A race condition exists in the Tang server functionality for key generation and key rotation. | 5.3 |
| 2023-07-11 | CVE-2023-3269 | Use After Free vulnerability in multiple products A vulnerability exists in the memory management subsystem of the Linux kernel. | 7.8 |
| 2023-07-10 | CVE-2023-34432 | Out-of-bounds Write vulnerability in multiple products A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. | 7.8 |
| 2023-07-10 | CVE-2023-26590 | Incorrect Comparison vulnerability in multiple products A floating point exception vulnerability was found in sox, in the lsx_aiffstartwrite function at sox/src/aiff.c:622:58. | 5.5 |
| 2023-07-10 | CVE-2023-32627 | Incorrect Comparison vulnerability in multiple products A floating point exception vulnerability was found in sox, in the read_samples function at sox/src/voc.c:334:18. | 5.5 |
| 2023-07-10 | CVE-2023-34318 | Out-of-bounds Write vulnerability in multiple products A heap buffer overflow vulnerability was found in sox, in the startread function at sox/src/hcom.c:160:41. | 7.8 |
| 2023-07-10 | CVE-2023-1183 | Path Traversal vulnerability in multiple products A flaw was found in the Libreoffice package. | 5.5 |
| 2023-07-06 | CVE-2023-35934 | yt-dlp is a command-line program to download videos from video sites. | 8.2 |
| 2023-07-05 | CVE-2023-31248 | Use After Free vulnerability in multiple products Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain was active and CAP_NET_ADMIN is in any user or network namespace | 7.8 |