Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Fedora
(Fedoraproject)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2019-11-19 | CVE-2011-2924 | foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local attacker to conduct symlink attacks by overwriting arbitrary files accessible with the privileges of the user running the foomatic-rip universal print filter. | Debian_linux, Fedora, Foomatic\-Filters | N/A | ||
2019-11-22 | CVE-2015-7810 | libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files | Debian_linux, Fedora, Enterprise_linux, Libbluray | N/A | ||
2019-11-14 | CVE-2012-1168 | Moodle before 2.2.2 has a password and web services issue where when the user profile is updated the user password is reset if not specified. | Fedora, Moodle, Enterprise_linux | N/A | ||
2019-11-14 | CVE-2012-1156 | Moodle before 2.2.2 has users' private files included in course backups | Fedora, Moodle, Enterprise_linux | N/A | ||
2019-11-14 | CVE-2012-1155 | Moodle has a database activity export permission issue where the export function of the database activity module exports all entries even those from groups the user does not belong to | Debian_linux, Fedora, Moodle, Enterprise_linux | N/A | ||
2019-11-20 | CVE-2012-6136 | tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes. | Debian_linux, Fedora, Enterprise_linux, Enterprise_linux_desktop, Enterprise_linux_server, Enterprise_linux_workstation, Tuned | N/A | ||
2019-11-20 | CVE-2013-1817 | MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in the api.php script which allows remote attackers to obtain sensitive information. | Debian_linux, Fedora, Mediawiki, Enterprise_linux | N/A | ||
2019-11-20 | CVE-2013-1816 | MediaWiki before 1.19.4 and 1.20.x before 1.20.3 allows remote attackers to cause a denial of service (application crash) by sending a specially crafted request. | Debian_linux, Fedora, Mediawiki, Enterprise_linux | N/A | ||
2019-11-15 | CVE-2013-7089 | ClamAV before 0.97.7: dbg_printhex possible information leak | Clamav, Debian_linux, Fedora | N/A | ||
2019-11-15 | CVE-2013-7088 | ClamAV before 0.97.7 has buffer overflow in the libclamav component | Clamav, Debian_linux, Fedora | N/A |