Known Vulnerabilities for products from Fedoraproject

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Fedoraproject".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-42013 It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path trav... 9.8 - CRITICAL 2021-10-07 2021-10-25
CVE-2021-41800 MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time). Visiting ... 5.3 - MEDIUM 2021-10-11 2021-10-19
CVE-2021-41799 MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time). ApiQueryB... 7.5 - HIGH 2021-10-11 2021-10-19
CVE-2021-41798 MediaWiki before 1.36.2 allows XSS. Month related MediaWiki messages are not escaped before being used on the Special:Search ... 6.1 - MEDIUM 2021-10-11 2021-10-15
CVE-2021-41617 sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation bec... 7 - HIGH 2021-09-26 2021-10-14
CVE-2021-41583 vpn-user-portal (aka eduVPN or Let's Connect!) before 2.3.14, as packaged for Debian 10, Debian 11, and Fedora, allows remote... 8.8 - HIGH 2021-09-24 2021-10-05
CVE-2021-41524 While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an ext... 7.5 - HIGH 2021-10-05 2021-10-12
CVE-2021-41133 Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In versions prior to 1.1... 7.8 - HIGH 2021-10-08 2021-10-26
CVE-2021-41099 Redis is an open source, in-memory database that persists on disk. An integer overflow bug in the underlying string library c... 7.5 - HIGH 2021-10-04 2021-10-13
CVE-2021-40530 The ElGamal implementation in Crypto++ through 8.5 allows plaintext recovery because, during interaction between two cryptogr... 5.9 - MEDIUM 2021-09-06 2021-10-18
CVE-2021-40490 A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel t... 7 - HIGH 2021-09-03 2021-10-16
CVE-2021-40438 A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This is... 9 - CRITICAL 2021-09-16 2021-10-19
CVE-2021-40153 squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsqu... 8.1 - HIGH 2021-08-27 2021-10-07
CVE-2021-39275 ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data t... 9.8 - CRITICAL 2021-09-16 2021-10-10
CVE-2021-39242 An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It can lead to a situation wit... 7.5 - HIGH 2021-08-17 2021-09-14
CVE-2021-39241 An issue was discovered in HAProxy 2.0 before 2.0.24, 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. An HTTP met... 5.3 - MEDIUM 2021-08-17 2021-09-14
CVE-2021-39240 An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It does not ensure that the sc... 7.5 - HIGH 2021-08-17 2021-09-14
CVE-2021-39219 Wasmtime is an open source runtime for WebAssembly & WASI. Wasmtime before version 0.30.0 is affected by a type confusion vul... 6.3 - MEDIUM 2021-09-17 2021-10-04
CVE-2021-39218 Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.26.0 and before version 0.30.0 is affec... 6.3 - MEDIUM 2021-09-17 2021-10-04
CVE-2021-39216 Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.19.0 and before version 0.30.0 there wa... 6.3 - MEDIUM 2021-09-17 2021-10-04

Known software with vulnerabilities from Fedoraproject

Type Vendor Product Version
ApplicationFedoraproject389 Administration Server1.1.37
ApplicationFedoraproject389 Directory Server-
ApplicationFedoraprojectAnaconda-
Operating
System
FedoraprojectFedora-
Operating
System
FedoraprojectFedora Core-
ApplicationFedoraprojectMirrormanager0.0.1
ApplicationFedoraprojectPython-fedora0.8.0
ApplicationFedoraprojectSectool-
ApplicationFedoraprojectSelinux-policy3.14
ApplicationFedoraprojectSssd-

Popular searches for "Fedoraproject"

Get Fedora

getfedora.org

Get Fedora Choose Freedom. Choose Fedora. Pick a flavor of Fedora streamlined for your needs, and get to work right away.

fedoraproject.org fedoraproject.org kororaproject.org www.fedoraproject.org fedoraproject.org/get-fedora www.fedora.redhat.com get.fedoraproject.org fedoraproject.org/get-fedora www.fedoraproject.org Fedora (operating system) Operating system Download Programmer Internet of things Desktop environment Open-source software Digital container format Installation (computer programs) Workstation Server (computing) Computer hardware Free and open-source software Laptop Desktop computer User (computing) Data center Software Container Linux Cloud computing

Fedora Project - Start Page

start.fedoraproject.org

Fedora Project - Start Page 7 12 COBOL is still powering business critical operations and Fedora 33 is an excellent platfrom for COBOL development. Contribute at the Fedora Audio, Kernel 5.11 and i18n test days 0 Fedora test days are events where anyone can help make sure changes in Fedora work well in an upcoming release. Fedora community members often participate, and the public is welcome at these events. The Fedora Project is maintained and driven by the community and sponsored by Red Hat.

Fedora (operating system) COBOL The Fedora Project Red Hat Popek and Goldberg virtualization requirements Internationalization and localization Adobe Contribute Kernel (operating system) Installation (computer programs) Compiler Nextcloud Network address translation Configure script ARM architecture SolidRun Android Honeycomb Make (software) Computer program Software development Application software