Vulnerabilities > Fedoraproject > Fedora
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-16 | CVE-2022-39320 | FreeRDP is a free remote desktop protocol library and clients. | 4.6 |
| 2022-11-16 | CVE-2022-39347 | FreeRDP is a free remote desktop protocol library and clients. | 5.7 |
| 2022-11-16 | CVE-2022-41877 | Improper Validation of Specified Quantity in Input vulnerability in multiple products FreeRDP is a free remote desktop protocol library and clients. | 4.6 |
| 2022-11-14 | CVE-2022-37290 | NULL Pointer Dereference vulnerability in multiple products GNOME Nautilus 42.2 allows a NULL pointer dereference and get_basename application crash via a pasted ZIP archive. | 5.5 |
| 2022-11-12 | CVE-2022-45188 | Out-of-bounds Write vulnerability in multiple products Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow resulting in code execution via a crafted .appl file. | 7.8 |
| 2022-11-11 | CVE-2022-41854 | Out-of-bounds Write vulnerability in multiple products Those using Snakeyaml to parse untrusted YAML files may be vulnerable to Denial of Service attacks (DOS). | 6.5 |
| 2022-11-10 | CVE-2022-45063 | Command Injection vulnerability in multiple products xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. | 9.8 |
| 2022-11-09 | CVE-2022-23824 | IBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leading to a potential information disclosure. | 5.5 |
| 2022-11-09 | CVE-2022-45061 | Algorithmic Complexity vulnerability in multiple products An issue was discovered in Python before 3.11.1. | 7.5 |
| 2022-11-09 | CVE-2022-45062 | Argument Injection or Modification vulnerability in multiple products In Xfce xfce4-settings before 4.16.4 and 4.17.x before 4.17.1, there is an argument injection vulnerability in xfce4-mime-helper. | 9.8 |