Fedora - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Fedora
(Fedoraproject)

Repositories

• https://github.com/torvalds/linux
• https://github.com/phpmyadmin/phpmyadmin
• https://github.com/krb5/krb5
• https://github.com/mdadams/jasper
• https://github.com/uclouvain/openjpeg

• https://github.com/golang/go
• https://github.com/FasterXML/jackson-databind
• https://github.com/ntp-project/ntp
• https://github.com/dbry/WavPack
• https://github.com/apache/httpd
• https://github.com/json-c/json-c
• https://github.com/jquery/jquery-ui
• https://github.com/ClusterLabs/pcs
• https://github.com/newsoft/libvncserver
• https://github.com/horde/horde
• https://github.com/ipython/ipython
• https://github.com/wesnoth/wesnoth
• https://github.com/saltstack/salt
• https://github.com/dajobe/raptor
• https://github.com/opencontainers/runc
• https://github.com/openstack/swift
•
• git://git.openssl.org/openssl.git
• https://github.com/openssh/openssh-portable
• https://github.com/collectd/collectd
• https://github.com/mongodb/mongo
• https://github.com/ADOdb/ADOdb
• https://github.com/igniterealtime/Smack
• https://github.com/SELinuxProject/selinux
• https://github.com/dlitz/pycrypto
• https://github.com/teeworlds/teeworlds
• https://github.com/pyca/cryptography
• https://github.com/karelzak/util-linux
• https://git.kernel.org/pub/scm/git/git.git
• https://github.com/cyrusimap/cyrus-imapd
• https://github.com/ceph/ceph
• https://github.com/lepture/mistune
• https://github.com/MariaDB/server
• https://github.com/golang/net
• https://github.com/FreeRDP/FreeRDP
• https://github.com/sleuthkit/sleuthkit
• https://github.com/Perl/perl5
• https://github.com/python/cpython
• https://github.com/libjpeg-turbo/libjpeg-turbo
• https://github.com/haproxy/haproxy
• https://github.com/libuv/libuv
• https://github.com/mysql/mysql-server
• https://github.com/libgd/libgd
• https://github.com/SpiderLabs/ModSecurity
• https://github.com/fish-shell/fish-shell
• https://github.com/php/php-src
• https://github.com/quassel/quassel
• https://github.com/ocaml/ocaml
• https://github.com/LibRaw/LibRaw
• https://github.com/sddm/sddm
• https://github.com/axkibe/lsyncd
• https://github.com/visionmedia/send
• https://github.com/rawstudio/rawstudio
• https://github.com/cherokee/webserver
• https://github.com/numpy/numpy
• https://github.com/rjbs/Email-Address
• https://github.com/openid/ruby-openid
• https://github.com/moxiecode/plupload
• https://github.com/libarchive/libarchive

#Vulnerabilities

5043

Date	Id	Summary	Products	Score	Patch	Annotated
2019-11-19	CVE-2011-2924	foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local attacker to conduct symlink attacks by overwriting arbitrary files accessible with the privileges of the user running the foomatic-rip universal print filter.	Debian_linux, Fedora, Foomatic\-Filters	N/A
2019-11-22	CVE-2015-7810	libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files	Debian_linux, Fedora, Enterprise_linux, Libbluray	N/A
2019-11-14	CVE-2012-1168	Moodle before 2.2.2 has a password and web services issue where when the user profile is updated the user password is reset if not specified.	Fedora, Moodle, Enterprise_linux	N/A
2019-11-14	CVE-2012-1156	Moodle before 2.2.2 has users' private files included in course backups	Fedora, Moodle, Enterprise_linux	N/A
2019-11-14	CVE-2012-1155	Moodle has a database activity export permission issue where the export function of the database activity module exports all entries even those from groups the user does not belong to	Debian_linux, Fedora, Moodle, Enterprise_linux	N/A
2019-11-20	CVE-2012-6136	tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes.	Debian_linux, Fedora, Enterprise_linux, Enterprise_linux_desktop, Enterprise_linux_server, Enterprise_linux_workstation, Tuned	N/A
2019-11-20	CVE-2013-1817	MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in the api.php script which allows remote attackers to obtain sensitive information.	Debian_linux, Fedora, Mediawiki, Enterprise_linux	N/A
2019-11-20	CVE-2013-1816	MediaWiki before 1.19.4 and 1.20.x before 1.20.3 allows remote attackers to cause a denial of service (application crash) by sending a specially crafted request.	Debian_linux, Fedora, Mediawiki, Enterprise_linux	N/A
2019-11-15	CVE-2013-7089	ClamAV before 0.97.7: dbg_printhex possible information leak	Clamav, Debian_linux, Fedora	N/A
2019-11-15	CVE-2013-7088	ClamAV before 0.97.7 has buffer overflow in the libclamav component	Clamav, Debian_linux, Fedora	N/A