Vulnerabilities > Fedoraproject > Fedora > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-05 | CVE-2022-39832 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in PSPP 1.6.2. | 7.8 |
| 2022-09-03 | CVE-2022-3099 | Use After Free in GitHub repository vim/vim prior to 9.0.0360. | 7.8 |
| 2022-09-02 | CVE-2022-39170 | Double Free vulnerability in multiple products libdwarf 0.4.1 has a double free in _dwarf_exec_frame_instr in dwarf_frame.c. | 8.8 |
| 2022-09-01 | CVE-2022-32743 | Incorrect Default Permissions vulnerability in multiple products Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it. | 7.5 |
| 2022-08-31 | CVE-2022-1247 | Race Condition vulnerability in multiple products An issue found in linux-kernel that leads to a race condition in rose_connect(). | 7.0 |
| 2022-08-31 | CVE-2022-2132 | A permissive list of allowed inputs flaw was found in DPDK. | 8.6 |
| 2022-08-31 | CVE-2022-3028 | Out-of-bounds Write vulnerability in multiple products A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously. | 7.0 |
| 2022-08-30 | CVE-2022-3037 | Use After Free in GitHub repository vim/vim prior to 9.0.0322. | 7.8 |
| 2022-08-30 | CVE-2022-38784 | Integer Overflow or Wraparound vulnerability in multiple products Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). | 7.8 |
| 2022-08-29 | CVE-2022-0336 | Incorrect Default Permissions vulnerability in multiple products The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database. | 8.8 |