Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Mac_os_x
(Apple)| Repositories |
• https://github.com/madler/zlib
• https://github.com/apache/httpd • https://github.com/file/file • https://github.com/Perl/perl5 • https://github.com/openssh/openssh-portable |
| #Vulnerabilities | 3209 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-12-27 | CVE-2021-4173 | vim is vulnerable to Use After Free | Mac_os_x, Macos, Fedora, Vim | 7.8 | ||
| 2021-12-29 | CVE-2021-4187 | vim is vulnerable to Use After Free | Mac_os_x, Macos, Fedora, Vim | 7.8 | ||
| 2021-12-31 | CVE-2021-4192 | vim is vulnerable to Use After Free | Mac_os_x, Macos, Debian_linux, Fedora, Vim | 7.8 | ||
| 2021-12-31 | CVE-2021-4193 | vim is vulnerable to Out-of-bounds Read | Mac_os_x, Macos, Debian_linux, Fedora, Vim | 5.5 | ||
| 2022-01-06 | CVE-2022-0128 | vim is vulnerable to Out-of-bounds Read | Mac_os_x, Macos, Vim | 7.8 | ||
| 2022-01-18 | CVE-2022-0261 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. | Mac_os_x, Macos, Debian_linux, Vim | 7.8 | ||
| 2022-02-09 | CVE-2022-0530 | A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution. | Mac_os_x, Macos, Debian_linux, Fedora, Enterprise_linux, Unzip | 5.5 | ||
| 2022-02-14 | CVE-2021-45444 | In zsh before 5.8.1, an attacker can achieve code execution if they control a command output inside the prompt, as demonstrated by a %F argument. This occurs because of recursive PROMPT_SUBST expansion. | Mac_os_x, Macos, Debian_linux, Fedora, Zsh | 7.8 | ||
| 2022-03-14 | CVE-2022-22719 | A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue affects Apache HTTP Server 2.4.52 and earlier. | Http_server, Mac_os_x, Macos, Debian_linux, Fedora, Http_server, Zfs_storage_appliance_kit | 7.5 | ||
| 2022-03-14 | CVE-2022-22720 | Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling | Http_server, Mac_os_x, Macos, Debian_linux, Fedora, Enterprise_manager_ops_center, Http_server, Zfs_storage_appliance_kit | 9.8 |