Vulnerabilities > Fedoraproject
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-03 | CVE-2021-30620 | Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink | 8.8 |
| 2021-09-03 | CVE-2021-30621 | Authentication Bypass by Spoofing vulnerability in multiple products Chromium: CVE-2021-30621 UI Spoofing in Autofill | 6.5 |
| 2021-09-03 | CVE-2021-30622 | Use After Free vulnerability in multiple products Chromium: CVE-2021-30622 Use after free in WebApp Installs | 8.8 |
| 2021-09-03 | CVE-2021-30623 | Use After Free vulnerability in multiple products Chromium: CVE-2021-30623 Use after free in Bookmarks | 8.8 |
| 2021-09-03 | CVE-2021-30624 | Use After Free vulnerability in multiple products Chromium: CVE-2021-30624 Use after free in Autofill | 8.8 |
| 2021-09-03 | CVE-2021-23437 | Out-of-bounds Read vulnerability in multiple products The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function. | 7.5 |
| 2021-09-03 | CVE-2021-39191 | Open Redirect vulnerability in multiple products mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. | 6.1 |
| 2021-09-03 | CVE-2021-40490 | Race Condition vulnerability in multiple products A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13. | 7.0 |
| 2021-09-01 | CVE-2021-33582 | Algorithmic Complexity vulnerability in multiple products Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of service (multiple-minute daemon hang) via input that is mishandled during hash-table interaction. | 7.5 |
| 2021-08-31 | CVE-2021-39164 | Information Exposure vulnerability in multiple products Matrix is an ecosystem for open federated Instant Messaging and Voice over IP. | 3.1 |