The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Red Hat Fedora

Drupal Context: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Drupal Context, in order to run JavaScript code in the context of the web site...
DRUPAL-SA-CONTRIB-2019-028, FEDORA-2019-5ab3464a23, FEDORA-2019-62eba285ee, VIGILANCE-VUL-28622
Drupal Path Breadcrumbs: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Drupal Path Breadcrumbs, in order to run JavaScript code in the context of the web site...
DRUPAL-SA-CONTRIB-2019-027, FEDORA-2019-78bfda5218, FEDORA-2019-c12c2f0c22, VIGILANCE-VUL-28621
Linux kernel: out-of-bounds memory reading via SNMP NAT
An attacker can force a read at an invalid address via SNMP NAT of the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information...
CERTFR-2019-AVI-145, CVE-2019-9162, FEDORA-2019-196ab64d65, FEDORA-2019-7462acf8ba, USN-3930-1, USN-3930-2, VIGILANCE-VUL-28615
OpenSSL 1.0.2: information disclosure via 0-byte Record Padding Oracle
An attacker can bypass access restrictions to data via 0-byte Record Padding Oracle of OpenSSL 1.0.2, in order to obtain sensitive information...
1170328, bulletinapr2019, bulletinjul2019, CERTFR-2019-AVI-080, CERTFR-2019-AVI-132, CERTFR-2019-AVI-214, CERTFR-2019-AVI-325, cpuapr2019, cpujan2020, cpujul2019, cpuoct2019, CVE-2019-1559, DLA-1701-1, DSA-2019-201, DSA-2020-062, DSA-2020-072, DSA-4400-1, FEDORA-2019-00c25b9379, ibm10876638, ibm10886237, ibm10886659, JSA10949, JSA10993, openSUSE-SU-2019:1076-1, openSUSE-SU-2019:1105-1, openSUSE-SU-2019:1173-1, openSUSE-SU-2019:1175-1, openSUSE-SU-2019:1432-1, openSUSE-SU-2019:1637-1, PAN-SA-2019-0039, RHBUG-1683804, RHBUG-1683807, RHSA-2019:2304-01, RHSA-2019:2471-01, SB10282, SSA:2019-057-01, SSB-439005, STORM-2019-001, SUSE-SU-2019:0572-1, SUSE-SU-2019:0600-1, SUSE-SU-2019:0658-1, SUSE-SU-2019:0803-1, SUSE-SU-2019:0818-1, SUSE-SU-2019:1362-1, SUSE-SU-2019:14091-1, SUSE-SU-2019:14092-1, SUSE-SU-2019:1553-1, SUSE-SU-2019:1608-1, SYMSA1490, TNS-2019-02, USN-3899-1, VIGILANCE-VUL-28600
Simple DirectMedia Layer: multiple vulnerabilities
An attacker can use several vulnerabilities of SDL...
CVE-2019-7572, CVE-2019-7573, CVE-2019-7574, CVE-2019-7575, CVE-2019-7576, CVE-2019-7577, CVE-2019-7578, CVE-2019-7635, CVE-2019-7636, CVE-2019-7637, CVE-2019-7638, DLA-1713-1, DLA-1713-2, DLA-1714-1, DLA-1714-2, DLA-1861-1, DLA-1865-1, FEDORA-2019-6092f8c0dc, FEDORA-2019-7a554204c1, FEDORA-2019-918aad6bd5, FEDORA-2019-bf531902c8, openSUSE-SU-2019:1213-1, openSUSE-SU-2019:1223-1, openSUSE-SU-2019:1261-1, openSUSE-SU-2019:1632-1, openSUSE-SU-2019:1633-1, openSUSE-SU-2019:2071-1, openSUSE-SU-2019:2109-1, SUSE-SU-2019:0899-1, SUSE-SU-2019:0917-1, SUSE-SU-2019:0950-1, SUSE-SU-2019:13998-1, SUSE-SU-2019:1605-1, USN-4143-1, USN-4156-1, USN-4156-2, USN-4238-1, VIGILANCE-VUL-28595
file: denial of service via do_core_note
An attacker can trigger a fatal error via do_core_note() of file, in order to trigger a denial of service...
CVE-2019-8907, DLA-1698-1, DLA-1698-2, DSA-2019-093, FEDORA-2019-15f5147b27, openSUSE-SU-2019:0345-1, openSUSE-SU-2019:1197-1, SSA:2019-054-01, SUSE-SU-2019:0571-1, SUSE-SU-2019:0839-1, USN-3911-1, USN-3911-2, VIGILANCE-VUL-28591
file: out-of-bounds memory reading via do_core_note
An attacker can force a read at an invalid address via do_core_note() of file, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2019-8906, FEDORA-2019-15f5147b27, openSUSE-SU-2019:0345-1, openSUSE-SU-2019:1197-1, SSA:2019-054-01, SUSE-SU-2019:0571-1, SUSE-SU-2019:0839-1, USN-3911-1, USN-3911-2, VIGILANCE-VUL-28590
Koji: SQL injection
An attacker can use a SQL injection of Koji, in order to read or alter data...
CVE-2018-1002161, FEDORA-2019-50ca715929, VIGILANCE-VUL-28589
Poppler: denial of service via extractPDFSubtype
An attacker can trigger a fatal error via extractPDFSubtype of Poppler, in order to trigger a denial of service...
bulletinapr2019, CVE-2018-20662, DLA-1706-1, FEDORA-2019-216ba46b12, FEDORA-2019-387e017332, FEDORA-2019-7085420900, FEDORA-2019-8b5e704a73, RHSA-2019:2022-01, RHSA-2019:2713-01, USN-4042-1, VIGILANCE-VUL-28588
Pagure: information disclosure via API keys
An attacker can bypass access restrictions to data via API keys of Pagure, in order to obtain sensitive information...
CVE-2019-7628, FEDORA-2019-4e72b179e4, VIGILANCE-VUL-28587
Our database contains other pages. You can request a free trial to read them.

Display information about Red Hat Fedora: