Software Detail
Title
CRITICAL
HIGH
MEDIUM
LOW
CVE
CWE
Number of items displayed
Fedora Number Of NVD 5031 CRITICAL 449 HIGH 2231 MEDIUM 2183 LOW 168
URL https://getfedora.org/
Explanation Fedora is a Red Hat-supported distribution that actively embraces new technologies.

The Fedora Project releases a new version approximately every six months, and provides updated packages (which are maintained) for approximately 13 months.
This provides a mechanism for users to continue to receive package updates at any time, while allowing them to skip a release.

The above text is excerpted from [https://fedoraproject.org/wiki/Fedora_Release_Life_Cycle/ja].

Support is provided for one month (four weeks) after the release of two subsequent versions, roughly one year after the release.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://fedoraproject.org/wiki/Fedora_Release_Life_Cycle
2 https://fedoraproject.org/wiki/End_of_life
3 https://fedoraproject.org/wiki/Releases
4 https://getfedora.org/server/download/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1 Fedora 39 39 Oct. 17, 2023 Oct. 17, 2023 Nov. 12, 2024 25 100 122 6
2 Fedora 38 38 April 18, 2023 April 18, 2023 May 14, 2024 32 204 226 14
3 Fedora 37 37 Nov. 15, 2022 Nov. 15, 2022 Nov. 14, 2023 46 330 297 17
4 Fedora 36 36 May 6, 2022 May 6, 2022 May 16, 2023 60 341 292 6
5 Fedora 35 35 Nov. 2, 2021 Nov. 2, 2021 Dec. 13, 2022 91 572 411 21
6 Fedora 34 34 April 27, 2021 April 27, 2021 June 7, 2022 93 597 461 28
7 Fedora 34 34 April 20, 2021 April 20, 2021 June 7, 2022 93 597 461 28
8 Fedora 33 33 Oct. 27, 2020 Oct. 27, 2020 Nov. 30, 2021 88 572 505 42
9 Fedora 33 33 Oct. 24, 2020 Oct. 24, 2020 Nov. 30, 2021 88 572 505 42
10 Fedora 32 32 April 28, 2020 April 28, 2020 May 25, 2021 86 388 458 39
11 Fedora 32 32 April 25, 2020 April 25, 2020 May 25, 2021 86 388 458 39
12 Fedora 31 31 Oct. 29, 2019 Oct. 29, 2019 Nov. 24, 2020 88 348 401 28
13 Fedora 31 31 Oct. 25, 2019 Oct. 25, 2019 Nov. 24, 2020 88 348 401 28
14 Fedora 30 30 May 7, 2019 May 7, 2019 May 26, 2020 87 309 313 18
15 Fedora 30 30 May 7, 2019 May 7, 2019 May 26, 2020 87 309 313 18
16 Fedora 29 29 Oct. 30, 2018 Oct. 30, 2018 Nov. 26, 2019 44 182 164 8
17 Fedora 29 29 Oct. 30, 2018 Oct. 30, 2018 Nov. 26, 2019 44 182 164 8
18 Fedora 28 28 May 1, 2018 May 1, 2018 May 28, 2019 12 57 34 2
19 Fedora 28 28 May 1, 2018 May 1, 2018 May 28, 2019 12 57 34 2
20 Fedora 27 27 Nov. 14, 2017 Nov. 14, 2017 Nov. 30, 2018 2 5 5 1
21 Fedora 27 27 Oct. 24, 2017 Oct. 24, 2017 Nov. 30, 2018 2 5 5 1
22 Fedora 26 26 July 11, 2017 July 11, 2017 May 29, 2018 3 7 5 1
23 Fedora 25 25 Nov. 22, 2016 Nov. 22, 2016 Dec. 12, 2017 24 26 17 1
24 Fedora 24 24 June 21, 2016 June 21, 2016 Aug. 8, 2017 33 49 26 1
25 Fedora 23 23 Nov. 3, 2015 Nov. 3, 2015 Dec. 20, 2016 18 77 78 11
26 Fedora 22 22 May 26, 2015 May 26, 2015 July 19, 2016 15 76 93 14
27 Fedora 21 21 Dec. 9, 2014 Dec. 9, 2014 Dec. 1, 2015 4 64 84 10
28 Fedora 20 20 Dec. 17, 2013 Dec. 17, 2013 June 23, 2015 14 60 95 16
29 Fedora 19 19 July 2, 2013 July 2, 2013 Jan. 6, 2015 15 40 52 8
30 Fedora 18 18 Jan. 15, 2013 Jan. 15, 2013 Jan. 14, 2014 11 20 33 4
31 Fedora 17 17 May 29, 2012 May 29, 2012 July 30, 2013 3 18 33 4
32 Fedora 16 16 Nov. 8, 2011 Nov. 8, 2011 Feb. 12, 2013 1 16 29 3
33 Fedora 15 15 May 24, 2011 May 24, 2011 June 26, 2012 0 10 25 3
34 Fedora 14 14 Nov. 2, 2010 Nov. 2, 2010 Dec. 9, 2011 1 11 15 0
35 Fedora 13 13 May 25, 2010 May 25, 2010 June 24, 2011 5 15 25 2
36 Fedora 12 12 Nov. 17, 2009 Nov. 17, 2009 Dec. 2, 2010 3 8 14 1
37 Fedora 11 11 June 9, 2009 June 9, 2009 June 25, 2010 0 10 20 0
38 Fedora 10 10 Nov. 25, 2008 Nov. 25, 2008 Dec. 17, 2009 0 13 13 4
39 Fedora 9 9 May 13, 2008 May 13, 2008 July 10, 2009 2 15 16 1
40 Fedora 8 8 Nov. 8, 2007 Nov. 8, 2007 Jan. 7, 2009 4 10 16 1
41 Fedora 7 7 May 31, 2007 May 31, 2007 June 13, 2008 2 6 13 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1 5.9
- 		MEDIUM
Network 		In PuTTY 0.68 through 0.80 before 0.81, biased ECDSA nonce generation allows an attacker to recover a user's NIST P-521 secret key via a quick attack in approximately 60 signatures. This is especiall… CWE-338
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) 		CVE-2024-31497 cpe:2.3:o:fedoraproject:fedora:40:*
cpe:2.3:o:fedoraproject:fedora:39:*
cpe:2.3:o:fedoraproject:fedora:38:* 		2024-05-10 23:33
2024-04-16 		Show GitHub Exploit DB Packet Storm
2 4.3
- 		MEDIUM
Network 		Inappropriate implementation in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) NVD-CWE-noinfo
CVE-2024-2631 cpe:2.3:o:fedoraproject:fedora:40:*
cpe:2.3:o:fedoraproject:fedora:39:*
cpe:2.3:o:fedoraproject:fedora:38:* 		2024-04-2 00:23
2024-03-21 		Show GitHub Exploit DB Packet Storm
3 6.5
- 		MEDIUM
Network 		Inappropriate implementation in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) NVD-CWE-noinfo
CVE-2024-2630 cpe:2.3:o:fedoraproject:fedora:40:*
cpe:2.3:o:fedoraproject:fedora:39:*
cpe:2.3:o:fedoraproject:fedora:38:* 		2024-04-2 00:23
2024-03-21 		Show GitHub Exploit DB Packet Storm
4 4.3
- 		MEDIUM
Network 		Incorrect security UI in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) NVD-CWE-noinfo
CVE-2024-2629 cpe:2.3:o:fedoraproject:fedora:40:*
cpe:2.3:o:fedoraproject:fedora:39:*
cpe:2.3:o:fedoraproject:fedora:38:* 		2024-04-2 00:23
2024-03-21 		Show GitHub Exploit DB Packet Storm
5 4.3
- 		MEDIUM
Network 		Inappropriate implementation in Downloads in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform UI spoofing via a crafted URL. (Chromium security severity: Medium) NVD-CWE-noinfo
CVE-2024-2628 cpe:2.3:o:fedoraproject:fedora:40:*
cpe:2.3:o:fedoraproject:fedora:39:*
cpe:2.3:o:fedoraproject:fedora:38:* 		2024-04-2 00:23
2024-03-21 		Show GitHub Exploit DB Packet Storm
6 8.8
- 		HIGH
Network 		Use after free in Canvas in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) CWE-416
 Use After Free 		CVE-2024-2627 cpe:2.3:o:fedoraproject:fedora:40:*
cpe:2.3:o:fedoraproject:fedora:39:*
cpe:2.3:o:fedoraproject:fedora:38:* 		2024-04-2 00:22
2024-03-21 		Show GitHub Exploit DB Packet Storm
7 6.5
- 		MEDIUM
Network 		Out of bounds read in Swiftshader in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium) CWE-125
Out-of-bounds Read 		CVE-2024-2626 cpe:2.3:o:fedoraproject:fedora:40:*
cpe:2.3:o:fedoraproject:fedora:39:*
cpe:2.3:o:fedoraproject:fedora:38:* 		2024-04-2 00:22
2024-03-21 		Show GitHub Exploit DB Packet Storm
8 8.8
- 		HIGH
Network 		Object lifecycle issue in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High) NVD-CWE-noinfo
CVE-2024-2625 cpe:2.3:o:fedoraproject:fedora:40:*
cpe:2.3:o:fedoraproject:fedora:39:*
cpe:2.3:o:fedoraproject:fedora:38:* 		2024-04-2 00:32
2024-03-21 		Show GitHub Exploit DB Packet Storm
9 5.5
- 		MEDIUM
Local 		Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::__shared_count() function at /bits/shared_ptr_base.h. CWE-787
 Out-of-bounds Write 		CVE-2024-24246 cpe:2.3:o:fedoraproject:fedora:40:*
cpe:2.3:o:fedoraproject:fedora:39:*
cpe:2.3:o:fedoraproject:fedora:38:* 		2024-04-2 00:32
2024-03-1 		Show GitHub Exploit DB Packet Storm
10 6.5
- 		MEDIUM
Network 		The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during P… CWE-287
Improper Authentication 		CVE-2023-52160 cpe:2.3:o:fedoraproject:fedora:39:* 2024-03-10 13:15
2024-02-23 		Show GitHub Exploit DB Packet Storm