Vulnerabilities > Fedoraproject

DATE	CVE	VULNERABILITY TITLE	RISK
2021-03-12	CVE-2020-36280	Out-of-bounds Read vulnerability in multiple products Leptonica before 1.80.0 allows a heap-based buffer over-read in pixReadFromTiffStream, related to tiffio.c. network low complexity leptonica fedoraproject CWE-125	7.5
2021-03-12	CVE-2020-36279	Out-of-bounds Read vulnerability in multiple products Leptonica before 1.80.0 allows a heap-based buffer over-read in rasteropGeneralLow, related to adaptmap_reg.c and adaptmap.c. network low complexity leptonica fedoraproject debian CWE-125	7.5
2021-03-12	CVE-2020-36278	Out-of-bounds Read vulnerability in multiple products Leptonica before 1.80.0 allows a heap-based buffer over-read in findNextBorderPixel in ccbord.c. network low complexity leptonica fedoraproject debian CWE-125	7.5
2021-03-11	CVE-2021-28153	Link Following vulnerability in multiple products An issue was discovered in GNOME GLib before 2.66.8. network low complexity gnome debian fedoraproject broadcom CWE-59	5.3
2021-03-11	CVE-2020-36277	Always-Incorrect Control Flow Implementation vulnerability in multiple products Leptonica before 1.80.0 allows a denial of service (application crash) via an incorrect left shift in pixConvert2To8 in pixconv.c. network low complexity leptonica fedoraproject debian CWE-670	7.5
2021-03-11	CVE-2021-21381	Injection vulnerability in multiple products Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. local low complexity flatpak debian fedoraproject CWE-74	8.2
2021-03-11	CVE-2021-27919	archive/zip in Go 1.16.x before 1.16.1 allows attackers to cause a denial of service (panic) upon attempted use of the Reader.Open API for a ZIP archive in which ../ occurs at the beginning of any filename. local low complexity golang fedoraproject	5.5
2021-03-10	CVE-2021-21334	Exposure of Resource to Wrong Sphere vulnerability in multiple products In containerd (an industry-standard container runtime) before versions 1.3.10 and 1.4.4, containers launched through containerd's CRI implementation (through Kubernetes, crictl, or any other pod/container client that uses the containerd CRI service) that share the same image may receive incorrect environment variables, including values that are defined for other containers. network high complexity linuxfoundation fedoraproject CWE-668	6.3
2021-03-10	CVE-2021-21772	Use After Free vulnerability in multiple products A use-after-free vulnerability exists in the NMR::COpcPackageReader::releaseZIP() functionality of 3MF Consortium lib3mf 2.0.0. network high complexity 3mf fedoraproject debian CWE-416	8.1
2021-03-10	CVE-2021-20205	Divide By Zero vulnerability in multiple products Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image. network low complexity libjpeg-turbo fedoraproject CWE-369	6.5

Vulnerabilities > Fedoraproject {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Fedoraproject"}]}

Vulnerabilities > Fedoraproject