Vulnerabilities > Fedoraproject

DATE CVE VULNERABILITY TITLE RISK
2024-01-31 CVE-2023-6779 Out-of-bounds Write vulnerability in multiple products
An off-by-one heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library.
network
low complexity
gnu fedoraproject CWE-787
7.5
7.5
2024-01-31 CVE-2023-6780 Incorrect Calculation of Buffer Size vulnerability in multiple products
An integer overflow was found in the __vsyslog_internal function of the glibc library.
network
low complexity
gnu fedoraproject CWE-131
5.3
5.3
2024-01-30 CVE-2024-1059 Use After Free vulnerability in multiple products
Use after free in Peer Connection in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
8.8
2024-01-30 CVE-2024-1060 Use After Free vulnerability in multiple products
Use after free in Canvas in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
8.8
2024-01-30 CVE-2024-1077 Use After Free vulnerability in multiple products
Use after free in Network in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a malicious file.
network
low complexity
google fedoraproject CWE-416
8.8
8.8
2024-01-29 CVE-2024-23334 Path Traversal vulnerability in multiple products
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python.
network
low complexity
aiohttp fedoraproject CWE-22
7.5
7.5
2024-01-29 CVE-2024-23829 HTTP Request Smuggling vulnerability in multiple products
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python.
network
low complexity
aiohttp fedoraproject CWE-444
6.5
6.5
2024-01-29 CVE-2023-40546 NULL Pointer Dereference vulnerability in multiple products
A flaw was found in Shim when an error happened while creating a new ESL variable.
local
low complexity
redhat fedoraproject CWE-476
5.5
5.5
2024-01-29 CVE-2023-40549 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary.
local
low complexity
redhat fedoraproject CWE-125
5.5
5.5
2024-01-29 CVE-2023-40550 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information.
local
low complexity
redhat fedoraproject CWE-125
5.5
5.5