Vulnerabilities > Fedoraproject > Fedora > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-07 | CVE-2022-24737 | HTTPie is a command-line HTTP client. | 6.5 |
| 2022-03-04 | CVE-2021-3744 | A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). | 5.5 |
| 2022-03-03 | CVE-2021-3638 | An out-of-bounds memory access flaw was found in the ATI VGA device emulation of QEMU. | 6.5 |
| 2022-03-03 | CVE-2021-4002 | Memory Leak vulnerability in multiple products A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice using shmget() which are aligned to PUD alignment with the fault of some of the memory pages. | 4.4 |
| 2022-03-02 | CVE-2021-3623 | Out-of-bounds Write vulnerability in multiple products A flaw was found in libtpms. | 6.1 |
| 2022-03-02 | CVE-2021-3658 | Incorrect Authorization vulnerability in multiple products bluetoothd from bluez incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. | 6.5 |
| 2022-03-02 | CVE-2021-3677 | A flaw was found in postgresql. | 6.5 |
| 2022-02-24 | CVE-2021-3596 | NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in ImageMagick in versions prior to 7.0.10-31 in ReadSVGImage() in coders/svg.c. | 6.5 |
| 2022-02-24 | CVE-2021-3607 | Integer Overflow or Wraparound vulnerability in multiple products An integer overflow was found in the QEMU implementation of VMWare's paravirtual RDMA device in versions prior to 6.1.0. | 6.0 |
| 2022-02-24 | CVE-2021-3608 | Access of Uninitialized Pointer vulnerability in multiple products A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device in versions prior to 6.1.0. | 6.0 |