Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Fedora
(Fedoraproject)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2019-12-05 | CVE-2012-1114 | A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the filter parameter to cmd.php in an export and exporter_id action. and the filteruid parameter to list.php. | Debian_linux, Fedora, Ldap_account_manager | N/A | ||
2019-12-03 | CVE-2013-4411 | Review Board: URL processing gives unauthorized users access to review lists | Fedora, Reviewboard | N/A | ||
2019-12-05 | CVE-2012-1115 | A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the export, add_value_form, and dn parameters to cmd.php. | Debian_linux, Fedora, Ldap_account_manager | N/A | ||
2019-11-25 | CVE-2012-5535 | gnome-system-log polkit policy allows arbitrary files on the system to be read | Fedora, Gnome\-System\-Log | N/A | ||
2019-11-15 | CVE-2014-0021 | Chrony before 1.29.1 has traffic amplification in cmdmon protocol | Chrony, Debian_linux, Fedora | N/A | ||
2019-11-25 | CVE-2012-5644 | libuser has information disclosure when moving user's home directory | Debian_linux, Fedora, Libuser, Enterprise_linux | N/A | ||
2019-11-25 | CVE-2012-5630 | libuser 0.56 and 0.57 has a TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees. | Fedora, Libuser, Enterprise_linux | N/A | ||
2019-11-21 | CVE-2012-4524 | xlockmore before 5.43 'dclock' security bypass vulnerability | Fedora, Xlockmore | N/A | ||
2019-11-15 | CVE-2011-2726 | An access bypass issue was found in Drupal 7.x before version 7.5. If a Drupal site has the ability to attach File upload fields to any entity type in the system or has the ability to point individual File upload fields to the private file directory in comments, and the parent node is denied access, non-privileged users can still download the file attached to the comment if they know or guess its direct URL. | Debian_linux, Drupal, Fedora, Enterprise_linux | N/A | ||
2019-11-19 | CVE-2011-2924 | foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local attacker to conduct symlink attacks by overwriting arbitrary files accessible with the privileges of the user running the foomatic-rip universal print filter. | Debian_linux, Fedora, Foomatic\-Filters | N/A |