Vulnerabilities > Fedoraproject > High

DATE CVE VULNERABILITY TITLE RISK
2022-09-09 CVE-2020-10735 Incorrect Type Conversion or Cast vulnerability in multiple products
A flaw was found in python.
network
low complexity
python redhat fedoraproject CWE-704
7.5
7.5
2022-09-06 CVE-2022-27664 In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.
network
low complexity
golang fedoraproject
7.5
7.5
2022-09-05 CVE-2022-39831 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in PSPP 1.6.2.
local
low complexity
gnu fedoraproject CWE-787
7.8
7.8
2022-09-05 CVE-2022-39832 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in PSPP 1.6.2.
local
low complexity
gnu fedoraproject CWE-787
7.8
7.8
2022-09-03 CVE-2022-3099 Use After Free vulnerability in multiple products
Use After Free in GitHub repository vim/vim prior to 9.0.0360.
local
low complexity
vim fedoraproject debian CWE-416
7.8
7.8
2022-09-02 CVE-2022-39170 Double Free vulnerability in multiple products
libdwarf 0.4.1 has a double free in _dwarf_exec_frame_instr in dwarf_frame.c.
network
low complexity
libdwarf-project fedoraproject CWE-415
8.8
8.8
2022-09-01 CVE-2022-32743 Incorrect Default Permissions vulnerability in multiple products
Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it.
network
low complexity
samba fedoraproject CWE-276
7.5
7.5
2022-08-31 CVE-2022-2132 A permissive list of allowed inputs flaw was found in DPDK.
network
low complexity
dpdk fedoraproject debian redhat
8.6
8.6
2022-08-31 CVE-2022-3028 Out-of-bounds Write vulnerability in multiple products
A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously.
local
high complexity
linux fedoraproject debian CWE-787
7.0
7.0
2022-08-30 CVE-2022-3037 Use After Free vulnerability in multiple products
Use After Free in GitHub repository vim/vim prior to 9.0.0322.
local
low complexity
vim fedoraproject CWE-416
7.8
7.8