Vulnerabilities > Fedoraproject

DATE CVE VULNERABILITY TITLE RISK
2021-04-01 CVE-2021-22890 Authentication Bypass BY Spoofing vulnerability in multiple products
curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due to bad handling of TLS 1.3 session tickets.
4.3
2021-04-01 CVE-2021-22876 Information Exposure vulnerability in multiple products
curl 7.1.1 to and including 7.75.0 is vulnerable to an "Exposure of Private Personal Information to an Unauthorized Actor" by leaking credentials in the HTTP Referer: header.
network
low complexity
haxx fedoraproject CWE-200
5.0
2021-03-30 CVE-2021-29650 An issue was discovered in the Linux kernel before 5.11.11.
local
low complexity
linux fedoraproject
4.9
2021-03-30 CVE-2021-29649 Memory Leak vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.11.11.
local
low complexity
linux fedoraproject CWE-401
4.9
2021-03-30 CVE-2021-29648 Improper Restriction of Excessive Authentication Attempts vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.11.11.
local
low complexity
linux fedoraproject CWE-307
4.9
2021-03-30 CVE-2021-29647 An issue was discovered in the Linux kernel before 5.11.11.
local
low complexity
linux fedoraproject
2.1
2021-03-30 CVE-2021-29646 An issue was discovered in the Linux kernel before 5.11.11.
local
low complexity
linux fedoraproject
2.1
2021-03-26 CVE-2021-20271 Insufficient Verification of Data Authenticity vulnerability in multiple products
A flaw was found in RPM's signature check functionality when reading a package file.
network
high complexity
rpm redhat fedoraproject CWE-345
5.1
2021-03-25 CVE-2021-3467 Null Pointer Dereference vulnerability in multiple products
A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.26 handled component references in CDEF box in the JP2 image format decoder.
4.3
2021-03-25 CVE-2021-3466 Classic Buffer Overflow vulnerability in multiple products
A flaw was found in libmicrohttpd in versions before 0.9.71.
network
low complexity
gnu redhat fedoraproject CWE-120
critical
10.0