Vulnerabilities > Fedoraproject > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-31 | CVE-2023-4004 | Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. | 7.8 |
| 2023-07-29 | CVE-2022-4907 | Uninitialized Use in FFmpeg in Google Chrome prior to 108.0.5359.71 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. | 8.8 |
| 2023-07-24 | CVE-2023-1386 | Improper Preservation of Permissions vulnerability in multiple products A flaw was found in the 9p passthrough filesystem (9pfs) implementation in QEMU. | 7.8 |
| 2023-07-24 | CVE-2023-38200 | Excessive Iteration vulnerability in multiple products A flaw was found in Keylime. | 7.5 |
| 2023-07-20 | CVE-2023-34966 | Infinite Loop vulnerability in multiple products An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. | 7.5 |
| 2023-07-17 | CVE-2023-38403 | Integer Overflow or Wraparound vulnerability in multiple products iperf3 before 3.14 allows peers to cause an integer overflow and heap corruption via a crafted length field. | 7.5 |
| 2023-07-13 | CVE-2022-24834 | Integer Overflow to Buffer Overflow vulnerability in multiple products Redis is an in-memory database that persists on disk. | 8.8 |
| 2023-07-12 | CVE-2023-3106 | NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference vulnerability was found in netlink_dump. | 7.8 |
| 2023-07-11 | CVE-2023-33170 | Race Condition vulnerability in multiple products ASP.NET and Visual Studio Security Feature Bypass Vulnerability | 8.1 |
| 2023-07-11 | CVE-2023-36824 | Incorrect Calculation of Buffer Size vulnerability in multiple products Redis is an in-memory database that persists on disk. | 8.8 |