Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 25 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-17847
The html package (aka x/net/html) through 2018-09-25 in Go mishandles <svg><template><desc><t><svg></template>, leading to a "panic: runtime error" (index out of range) in (*nodeStack).pop in node.go, called from (*parser).clearActive...
Golang Net
Fedoraproject Fedora 28
Fedoraproject Fedora 29
7.5
CVSSv3
CVE-2018-17848
The html package (aka x/net/html) through 2018-09-25 in Go mishandles <math><template><mn><b></template>, leading to a "panic: runtime error" (index out of range) in (*insertionModeStack).pop in node.go, called from inHeadIM, during an html...
Golang Net
Fedoraproject Fedora 28
Fedoraproject Fedora 29
7.5
CVSSv3
CVE-2016-1254
Tor prior to 0.2.8.12 might allow remote malicious users to cause a denial of service (client crash) via a crafted hidden service descriptor.
Torproject Tor
Opensuse Project Leap 42.1
Debian Debian Linux 8.0
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Debian Debian Linux 9.0
Opensuse Leap 42.2
Opensuse Opensuse 13.2
9.8
CVSSv3
CVE-2017-11462
Double free vulnerability in MIT Kerberos 5 (aka krb5) allows malicious users to have unspecified impact via vectors involving automatic deletion of security contexts on error.
Mit Kerberos 5 1.14
Mit Kerberos 5 1.14.1
Mit Kerberos 5 1.14.2
Mit Kerberos 5 1.14.3
Mit Kerberos 5 1.14.4
Mit Kerberos 5 1.14.5
Mit Kerberos 5 1.15
Mit Kerberos 5 1.15.1
Fedoraproject Fedora 26
Fedoraproject Fedora 25
5.9
CVSSv3
CVE-2017-8932
A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in Go prior to 1.7.6 and 1.8.x prior to 1.8.2 causes incorrect results to be generated for specific input points. An adaptive attack can be mounted to progressively extract the scalar i...
Golang Go 1.8
Golang Go 1.8.1
Golang Go
Fedoraproject Fedora 25
Novell Suse Package Hub For Suse Linux Enterprise 12
Opensuse Leap 42.2
1 Github repository
9.8
CVSSv3
CVE-2016-9961
game-music-emu prior to 0.6.1 mishandles unspecified integer values.
Game-music-emu Project Game-music-emu
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Opensuse Project Leap 42.1
Opensuse Leap 42.2
Novell Suse Linux Enterprise Software Development Kit 12.0
Novell Suse Linux Enterprise Desktop 12.0
Novell Suse Linux Enterprise Server 12.0
5.5
CVSSv3
CVE-2016-9960
game-music-emu prior to 0.6.1 allows local users to cause a denial of service (divide by zero and process crash).
Game-music-emu Project Game-music-emu
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Opensuse Project Leap 42.1
Opensuse Leap 42.2
Novell Suse Linux Enterprise Software Development Kit 12.0
Novell Suse Linux Enterprise Desktop 12.0
Novell Suse Linux Enterprise Server 12.0
9.8
CVSSv3
CVE-2016-10243
TeX Live allows remote malicious users to execute arbitrary commands by leveraging inclusion of mpost in shell_escape_commands in the texmf.cnf config file.
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Fedoraproject Fedora 26
Fedoraproject Fedora 25
Tug Tex Live -
7.8
CVSSv3
CVE-2016-6299
The scm plug-in in mock might allow malicious users to bypass the intended chroot protection mechanism and gain root privileges via a crafted spec file.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Mock Project Scm Plugin -
7.8
CVSSv3
CVE-2017-5330
ark prior to 16.12.1 might allow remote malicious users to execute arbitrary code via an executable in an archive, related to associated applications.
Fedoraproject Fedora 25
Kde Ark
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »