Vulnerabilities > Fedoraproject > Fedora > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-27 | CVE-2021-28652 | Memory Leak vulnerability in multiple products An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. | 4.9 |
| 2021-05-27 | CVE-2021-28662 | Improper Encoding or Escaping of Output vulnerability in multiple products An issue was discovered in Squid 4.x before 4.15 and 5.x before 5.0.6. | 6.5 |
| 2021-05-27 | CVE-2021-30500 | NULL Pointer Dereference vulnerability in multiple products Null pointer dereference was found in upx PackLinuxElf::canUnpack() in p_lx_elf.cpp,in version UPX 4.0.0. | 6.8 |
| 2021-05-27 | CVE-2021-30501 | Reachable Assertion vulnerability in multiple products An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. | 5.5 |
| 2021-05-26 | CVE-2021-30469 | Use After Free vulnerability in multiple products A flaw was found in PoDoFo 0.9.7. | 5.5 |
| 2021-05-26 | CVE-2021-30470 | Uncontrolled Recursion vulnerability in multiple products A flaw was found in PoDoFo 0.9.7. | 5.5 |
| 2021-05-26 | CVE-2021-30471 | Uncontrolled Recursion vulnerability in multiple products A flaw was found in PoDoFo 0.9.7. | 5.5 |
| 2021-05-26 | CVE-2021-20178 | Information Exposure Through Log Files vulnerability in multiple products A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. | 5.5 |
| 2021-05-26 | CVE-2020-25673 | Resource Exhaustion vulnerability in multiple products A vulnerability was found in Linux kernel where non-blocking socket in llcp_sock_connect() leads to leak and eventually hanging-up the system. | 5.5 |
| 2021-05-26 | CVE-2021-31924 | Improper Authentication vulnerability in multiple products Yubico pam-u2f before 1.1.1 has a logic issue that, depending on the pam-u2f configuration and the application used, could lead to a local PIN bypass. | 6.8 |