The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of RedHat Fedora

PostgreSQL: privilege escalation via function search paths
An attacker can define SQL functions with the same names than built-in functions of PostgreSQL, in order to make users run them with their own privileges...
CVE-2018-1058, DSA-2019-131, FEDORA-2018-2999cf6426, FEDORA-2018-a32082df51, openSUSE-SU-2018:0736-1, openSUSE-SU-2018:0765-1, openSUSE-SU-2018:0890-1, RHSA-2018:2511-01, RHSA-2018:2566-01, USN-3589-1, VIGILANCE-VUL-25416
SimpleSAMLphp: denial of service via a regular expression
An attacker can make SimpleSAMLphp spend many time in a timestamp parsing, in order to trigger a denial of service...
CVE-2018-6519, DSA-4127-1, FEDORA-2018-37e28670f2, FEDORA-2018-6db40b0c37, FEDORA-2018-96601292a2, FEDORA-2018-d809bd2fd6, FEDORA-2018-f2097d8937, FEDORA-2018-f4ab4d96f9, VIGILANCE-VUL-25414
PHP: buffer overflow
An attacker can generate a buffer overflow of PHP, in order to trigger a denial of service, and possibly to run code...
75981, bulletinapr2018, CERTFR-2018-AVI-109, CVE-2018-7584, DLA-1326-1, DLA-1397-1, DSA-4240-1, FEDORA-2018-a89ccf7133, FEDORA-2018-e8bc8d2784, HT208849, openSUSE-SU-2018:0657-1, openSUSE-SU-2018:0725-1, RHSA-2019:2519-01, RHSA-2020:1112-01, SUSE-SU-2018:0806-1, USN-3600-1, USN-3600-2, VIGILANCE-VUL-25412
FreeXL: buffer overflow
An attacker can generate a buffer overflow of FreeXL, in order to trigger a denial of service, and possibly to run code...
CVE-2018-7435, CVE-2018-7436, CVE-2018-7437, CVE-2018-7438, CVE-2018-7439, DLA-1297-1, DSA-4129-1, FEDORA-2018-2eb691e7d7, FEDORA-2018-5573046c3b, openSUSE-SU-2018:0570-1, VIGILANCE-VUL-25408
Linux kernel: memory corruption via _sctp_make_chunk
An attacker can generate a memory corruption via _sctp_make_chunk() of the Linux kernel, in order to trigger a denial of service...
CERTFR-2018-AVI-250, CERTFR-2018-AVI-257, CERTFR-2018-AVI-299, CERTFR-2018-AVI-308, CERTFR-2018-AVI-319, CERTFR-2018-AVI-321, CERTFR-2018-AVI-392, CERTFR-2018-AVI-426, CVE-2018-5803, DLA-1369-1, DSA-4187-1, DSA-4188-1, FEDORA-2018-2bce10900e, FEDORA-2018-884a105c04, openSUSE-SU-2018:1418-1, openSUSE-SU-2018:2119-1, RHSA-2018:1854-01, RHSA-2018:2948-01, RHSA-2018:3083-01, RHSA-2018:3096-01, SUSE-SU-2018:1366-1, SUSE-SU-2018:1761-1, SUSE-SU-2018:1762-1, SUSE-SU-2018:1816-1, SUSE-SU-2018:1855-1, SUSE-SU-2018:2332-1, SUSE-SU-2018:2366-1, SUSE-SU-2018:2637-1, USN-3654-1, USN-3654-2, USN-3656-1, USN-3697-1, USN-3697-2, USN-3698-1, USN-3698-2, VIGILANCE-VUL-25407
Apache Xerces-C++: NULL pointer dereference via the DTD reference
An attacker can force Apache Xerces-C++ dereference a NULL pointer while processing the path to the external DTD, in order to trigger a denial of service...
CVE-2017-12627, DLA-1328-1, FEDORA-2018-51ce232320, FEDORA-2018-7b97e553ff, openSUSE-SU-2019:1283-1, SUSE-SU-2018:3277-1, SUSE-SU-2019:0977-1, SUSE-SU-2020:2225-1, VIGILANCE-VUL-25404
ISC DHCP: integer overflow via dhcpd
An attacker can generate an integer overflow via dhcpd of ISC DHCP, in order to trigger a denial of service, and possibly to run code...
AA-01565, AA-01567, bulletinapr2018, CVE-2018-5733, DLA-1313-1, DSA-2019-131, DSA-4133-1, FEDORA-2018-5051dbd15e, N1022543, openSUSE-SU-2018:0827-1, RHSA-2018:0469-01, RHSA-2018:0483-01, SB10231, SSA:2018-060-01, SUSE-SU-2018:0810-2, USN-3586-1, USN-3586-2, VIGILANCE-VUL-25402
ISC DHCP: buffer overflow via dhclient
An attacker can generate a buffer overflow via dhclient of ISC DHCP, in order to trigger a denial of service, and possibly to run code...
AA-01565, AA-01567, bulletinapr2018, CVE-2018-5732, DLA-1313-1, DSA-2019-131, DSA-4133-1, FEDORA-2018-5051dbd15e, K08306700, N1022543, openSUSE-SU-2018:0827-1, RHSA-2018:0469-01, RHSA-2018:0483-01, SB10231, SSA:2018-060-01, SUSE-SU-2018:0810-2, Synology-SA-18:14, USN-3586-1, USN-3586-2, VIGILANCE-VUL-25401
NTP.org: five vulnerabilities
An attacker can use several vulnerabilities of NTP.org...
bulletinapr2018, bulletinapr2019, CERTFR-2018-AVI-545, CVE-2018-7170, CVE-2018-7182, CVE-2018-7183, CVE-2018-7184, CVE-2018-7185, DSA-2020-030, FEDORA-2018-7051d682fa, FEDORA-2018-70c191d84a, FEDORA-2018-de113aeac6, FreeBSD-SA-18:02.ntp, JSA10898, K04912972, K13540723, K82570157, KB0018260, openSUSE-SU-2018:0970-1, openSUSE-SU-2018:3438-1, openSUSE-SU-2018:3452-1, SA165, SB10231, SB10264, SSA:2018-060-02, SUSE-SU-2018:1464-1, SUSE-SU-2018:1765-1, SUSE-SU-2018:3342-1, SUSE-SU-2018:3351-1, SUSE-SU-2018:3352-1, SUSE-SU-2018:3356-1, SUSE-SU-2018:3386-1, Synology-SA-18:13, Synology-SA-18:14, USN-3707-1, USN-3707-2, VIGILANCE-VUL-25397
unbound: privilege escalation via configuration file change
An attacker can change the configuration of unbound, in order to raise his privileges...
FEDORA-2018-cb1f26bd2c, VIGILANCE-VUL-25392
Our database contains other pages. You can request a free trial to read them.

Display information about RedHat Fedora: