Vulnerabilities > Fedoraproject

DATE CVE VULNERABILITY TITLE RISK
2022-07-02 CVE-2022-2284 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.
local
low complexity
vim fedoraproject
7.8
7.8
2022-07-01 CVE-2022-32325 Out-of-bounds Read vulnerability in multiple products
JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c.
network
low complexity
jpegoptim-project fedoraproject CWE-125
6.5
6.5
2022-07-01 CVE-2022-34903 Injection vulnerability in multiple products
GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line.
network
high complexity
gnupg fedoraproject debian netapp CWE-74
6.5
6.5
2022-07-01 CVE-2022-32081 Use After Free vulnerability in multiple products
MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in prepare_inplace_add_virtual at /storage/innobase/handler/handler0alter.cc.
network
low complexity
mariadb fedoraproject CWE-416
7.5
7.5
2022-07-01 CVE-2022-32082 Reachable Assertion vulnerability in multiple products
MariaDB v10.5 to v10.7 was discovered to contain an assertion failure at table->get_ref_count() == 0 in dict0dict.cc.
network
low complexity
mariadb fedoraproject CWE-617
7.5
7.5
2022-07-01 CVE-2022-32084 MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component sub_select.
network
low complexity
mariadb debian fedoraproject
7.5
7.5
2022-07-01 CVE-2022-32089 MariaDB v10.5 to v10.7 was discovered to contain a segmentation fault via the component st_select_lex_unit::exclude_level.
network
low complexity
mariadb fedoraproject
7.5
7.5
2022-07-01 CVE-2022-32091 Use After Free vulnerability in multiple products
MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc.
network
low complexity
mariadb debian fedoraproject CWE-416
7.5
7.5
2022-07-01 CVE-2022-33099 Out-of-bounds Write vulnerability in multiple products
An issue in the component luaG_runerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs.
network
low complexity
lua fedoraproject CWE-787
7.5
7.5
2022-07-01 CVE-2022-2264 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.
local
low complexity
vim fedoraproject
7.8
7.8