Vulnerabilities > Fedoraproject > Fedora
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-15 | CVE-2023-1729 | Out-of-bounds Write vulnerability in multiple products A flaw was found in LibRaw. | 6.5 |
| 2023-05-15 | CVE-2023-2700 | Memory Leak vulnerability in multiple products A vulnerability was found in libvirt. | 5.5 |
| 2023-05-10 | CVE-2023-32570 | Race Condition vulnerability in multiple products VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application crash, related to dav1d_decode_frame_exit. | 5.9 |
| 2023-05-09 | CVE-2023-2156 | Reachable Assertion vulnerability in multiple products A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. | 7.5 |
| 2023-05-09 | CVE-2023-2609 | NULL Pointer Dereference vulnerability in multiple products NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531. | 5.5 |
| 2023-05-09 | CVE-2023-31489 | An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_capability_llgr() function. | 5.5 |
| 2023-05-09 | CVE-2023-31490 | An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_attr_psid_sub() function. | 7.5 |
| 2023-05-09 | CVE-2023-31137 | MaraDNS is open-source software that implements the Domain Name System (DNS). | 7.5 |
| 2023-05-07 | CVE-2023-31047 | Improper Input Validation vulnerability in multiple products In Django 3.2 before 3.2.19, 4.x before 4.1.9, and 4.2 before 4.2.1, it was possible to bypass validation when using one form field to upload multiple files. | 9.8 |
| 2023-05-05 | CVE-2023-29659 | Divide By Zero vulnerability in multiple products A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fraction::round() function in box.cc, which causes a denial of service. | 6.5 |