CVE-2025-13601

all versions

A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string(

7.7HIGH

CVE-2025-3155

all versions

A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerabilit

7.4HIGH

CVE-2025-2784

all versions

A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_white

7.0HIGH

CVE-2023-3758

all versions

A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to

7.1HIGH

CVE-2024-1488

all versions

A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modif

8.0HIGH

CVE-2024-0193

all versions

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when

7.8HIGH

CVE-2023-4641

all versions

A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password fails on t

4.7MEDIUM

CVE-2023-5633

all versions

The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way m

7.8HIGH

CVE-2023-4911

all versions

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment varia

7.8HIGH

CVE-2023-4806

all versions

A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been free

5.9MEDIUM

CVE-2023-4527

all versions

A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured

6.5MEDIUM

CVE-2023-4042

all versions

A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it wa

5.5MEDIUM

CVE-2021-3733

all versions

There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (s

6.5MEDIUM

CVE-2021-3737

all versions

A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who

7.5HIGH

CVE-2021-3930

all versions

An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_s

6.5MEDIUM

CVE-2020-27842

all versions

There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be process

5.5MEDIUM