Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 21 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2015-0295
The BMP decoder in QtGui in QT prior to 5.5 does not properly calculate the masks used to extract the color components, which allows remote malicious users to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Opensuse Opensuse 13.1
Digia Qt
7.2
CVSSv2
CVE-2015-5704
scripts/licensecheck.pl in devscripts prior to 2.15.7 allows local users to execute arbitrary shell commands.
Devscripts Devel Team Devscripts
Fedoraproject Fedora 21
Fedoraproject Fedora 22
5
CVSSv2
CVE-2015-5705
Argument injection vulnerability in devscripts prior to 2.15.7 allows remote malicious users to write to arbitrary files via a crafted symlink and crafted filename.
Devscripts Devel Team Devscripts
Fedoraproject Fedora 21
Fedoraproject Fedora 22
7.2
CVSSv2
CVE-2015-5166
Use-after-free vulnerability in QEMU in Xen 4.5.x and previous versions does not completely unplug emulated block devices, which allows local HVM guest users to gain privileges by unplugging a block device twice.
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Xen Xen
Xen Xen 4.5.1
1 Article
4.3
CVSSv2
CVE-2015-1433
program/lib/Roundcube/rcube_washtml.php in Roundcube prior to 1.0.5 does not properly quote strings, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via the style attribute in an email.
Roundcube Webmail
Fedoraproject Fedora 21
7.5
CVSSv2
CVE-2015-0778
osc prior to 0.151.0 allows remote malicious users to execute arbitrary commands via shell metacharacters in a _service file.
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Suse Opensuse Osc
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
5
CVSSv2
CVE-2013-0334
Bundler prior to 1.7, when multiple top-level source lines are used, allows remote malicious users to install arbitrary gems by creating a gem with the same name as another gem in a different source.
Bundler Bundler
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 21
Fedoraproject Fedora 19
Fedoraproject Fedora 20
6.9
CVSSv2
CVE-2015-2666
Stack-based buffer overflow in the get_matching_model_microcode function in arch/x86/kernel/cpu/microcode/intel_early.c in the Linux kernel prior to 4.0 allows context-dependent malicious users to gain privileges by constructing a crafted microcode header and leveraging root priv...
Linux Linux Kernel
Fedoraproject Fedora 21
5
CVSSv2
CVE-2014-9449
Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote malicious users to cause a denial of service (crash) via a long IKEY INFO tag value in an AVI file.
Exiv2 Exiv2 0.24
Fedoraproject Fedora 21
4.3
CVSSv2
CVE-2015-3885
Integer overflow in the ljpeg_start function in dcraw 7.00 and previous versions allows remote malicious users to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.
Dcraw Project Dcraw
Fedoraproject Fedora 21
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »