Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2021-07-26	CVE-2021-32791	mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. network high complexity openidc fedoraproject	5.9
2021-07-26	CVE-2021-32792	mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. network low complexity openidc fedoraproject	6.1
2021-07-22	CVE-2021-32786	mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. network low complexity openidc fedoraproject	6.1
2021-07-21	CVE-2021-37220	Out-of-bounds Write vulnerability in multiple products MuPDF through 1.18.1 has an out-of-bounds write because the cached color converter does not properly consider the maximum key size of a hash table. local low complexity artifex fedoraproject CWE-787	5.5
2021-07-20	CVE-2021-33910	Allocation of Resources Without Limits or Throttling vulnerability in multiple products basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash. local low complexity systemd-project fedoraproject debian netapp CWE-770	5.5
2021-07-20	CVE-2021-36976	Use After Free vulnerability in multiple products libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block). network low complexity libarchive fedoraproject apple splunk CWE-416	6.5
2021-07-20	CVE-2021-36979	Out-of-bounds Write vulnerability in multiple products Unicorn Engine 1.0.2 has an out-of-bounds write in tb_flush_armeb (called from cpu_arm_exec_armeb and tcg_cpu_exec_armeb). local low complexity unicorn-engine fedoraproject CWE-787	5.5
2021-07-19	CVE-2021-32760	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products containerd is a container runtime. network low complexity linuxfoundation fedoraproject CWE-732	6.3
2021-07-15	CVE-2021-34558	Improper Certificate Validation vulnerability in multiple products The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic. network low complexity golang fedoraproject netapp oracle CWE-295	6.5
2021-07-14	CVE-2021-36740	HTTP Request Smuggling vulnerability in multiple products Varnish Cache, with HTTP/2 enabled, allows request smuggling and VCL authorization bypass via a large Content-Length header for a POST request. network low complexity varnish-cache varnish-cache-project varnish-software fedoraproject debian CWE-444	6.5