Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Fedora Number Of NVD 5104 CRITICAL 454 HIGH 2277 MEDIUM 2202 LOW 170
URL https://getfedora.org/
Explanation Fedora is a Red Hat-supported distribution that actively embraces new technologies.

The Fedora Project releases a new version approximately every six months, and provides updated packages (which are maintained) for approximately 13 months.
This provides a mechanism for users to continue to receive package updates at any time, while allowing them to skip a release.

The above text is excerpted from [https://fedoraproject.org/wiki/Fedora_Release_Life_Cycle/ja].

Support is provided for one month (four weeks) after the release of two subsequent versions, roughly one year after the release.
Tag
  • Linux

Add Information URL
No Type Name URL
1 https://fedoraproject.org/wiki/Fedora_Release_Life_Cycle
2 https://fedoraproject.org/wiki/End_of_life
3 https://fedoraproject.org/wiki/Releases
4 https://getfedora.org/server/download/

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
4841 Fedora 40 40 April 23, 2024 Oct. 17, 2023 453 2278 2202 170
4842 Fedora 39 39 Oct. 17, 2023 Oct. 17, 2023 Nov. 12, 2024 27 140 138 8
4843 Fedora 38 38 April 18, 2023 April 18, 2023 May 14, 2024 32 224 240 16
4844 Fedora 37 37 Nov. 15, 2022 Nov. 15, 2022 Nov. 14, 2023 45 333 298 18
4845 Fedora 36 36 May 6, 2022 May 6, 2022 May 16, 2023 60 341 292 6
4846 Fedora 35 35 Nov. 2, 2021 Nov. 2, 2021 Dec. 13, 2022 91 572 411 21
4847 Fedora 34 34 April 27, 2021 April 27, 2021 June 7, 2022 93 597 461 28
4848 Fedora 34 34 April 20, 2021 April 20, 2021 June 7, 2022 93 597 461 28
4849 Fedora 33 33 Oct. 27, 2020 Oct. 27, 2020 Nov. 30, 2021 88 572 505 42
4850 Fedora 33 33 Oct. 24, 2020 Oct. 24, 2020 Nov. 30, 2021 88 572 505 42
4851 Fedora 32 32 April 28, 2020 April 28, 2020 May 25, 2021 86 388 458 39
4852 Fedora 32 32 April 25, 2020 April 25, 2020 May 25, 2021 86 388 458 39
4853 Fedora 31 31 Oct. 29, 2019 Oct. 29, 2019 Nov. 24, 2020 90 349 401 28
4854 Fedora 31 31 Oct. 25, 2019 Oct. 25, 2019 Nov. 24, 2020 90 349 401 28
4855 Fedora 30 30 May 7, 2019 May 7, 2019 May 26, 2020 88 310 313 18
4856 Fedora 30 30 May 7, 2019 May 7, 2019 May 26, 2020 88 310 313 18
4857 Fedora 29 29 Oct. 30, 2018 Oct. 30, 2018 Nov. 26, 2019 45 182 164 8
4858 Fedora 29 29 Oct. 30, 2018 Oct. 30, 2018 Nov. 26, 2019 45 182 164 8
4859 Fedora 28 28 May 1, 2018 May 1, 2018 May 28, 2019 12 58 34 2
4860 Fedora 28 28 May 1, 2018 May 1, 2018 May 28, 2019 12 58 34 2
4861 Fedora 27 27 Nov. 14, 2017 Nov. 14, 2017 Nov. 30, 2018 2 5 5 1
4862 Fedora 27 27 Oct. 24, 2017 Oct. 24, 2017 Nov. 30, 2018 2 5 5 1
4863 Fedora 26 26 July 11, 2017 July 11, 2017 May 29, 2018 3 7 5 1
4864 Fedora 25 25 Nov. 22, 2016 Nov. 22, 2016 Dec. 12, 2017 24 27 17 1
4865 Fedora 24 24 June 21, 2016 June 21, 2016 Aug. 8, 2017 33 50 26 1
4866 Fedora 23 23 Nov. 3, 2015 Nov. 3, 2015 Dec. 20, 2016 18 78 78 11
4867 Fedora 22 22 May 26, 2015 May 26, 2015 July 19, 2016 15 76 93 14
4868 Fedora 21 21 Dec. 9, 2014 Dec. 9, 2014 Dec. 1, 2015 4 64 84 10
4869 Fedora 20 20 Dec. 17, 2013 Dec. 17, 2013 June 23, 2015 14 60 95 16
4870 Fedora 19 19 July 2, 2013 July 2, 2013 Jan. 6, 2015 15 40 52 8
4871 Fedora 18 18 Jan. 15, 2013 Jan. 15, 2013 Jan. 14, 2014 11 20 33 4
4872 Fedora 17 17 May 29, 2012 May 29, 2012 July 30, 2013 3 18 33 4
4873 Fedora 16 16 Nov. 8, 2011 Nov. 8, 2011 Feb. 12, 2013 1 16 29 3
4874 Fedora 15 15 May 24, 2011 May 24, 2011 June 26, 2012 0 10 25 3
4875 Fedora 14 14 Nov. 2, 2010 Nov. 2, 2010 Dec. 9, 2011 1 11 15 0
4876 Fedora 13 13 May 25, 2010 May 25, 2010 June 24, 2011 5 15 25 2
4877 Fedora 12 12 Nov. 17, 2009 Nov. 17, 2009 Dec. 2, 2010 3 8 14 1
4878 Fedora 11 11 June 9, 2009 June 9, 2009 June 25, 2010 0 10 20 0
4879 Fedora 10 10 Nov. 25, 2008 Nov. 25, 2008 Dec. 17, 2009 0 13 13 4
4880 Fedora 9 9 May 13, 2008 May 13, 2008 July 10, 2009 2 15 16 1
4881 Fedora 8 8 Nov. 8, 2007 Nov. 8, 2007 Jan. 7, 2009 4 10 16 1
4882 Fedora 7 7 May 31, 2007 May 31, 2007 June 13, 2008 2 6 13 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
4841 -
7.5
HIGH visionmedia send before 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote attackers to access restricted directories, as d… CWE-22
Path Traversal
CVE-2014-6394 cpe:2.3:o:fedoraproject:fedora:21:*
cpe:2.3:o:fedoraproject:fedora:20:*
cpe:2.3:o:fedoraproject:fedora:19:*
2024-11-21 11:14
2014-10-9
Show GitHub Exploit DB Packet Storm
4842 -
5.8
MEDIUM The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 4.4.x and earlier does not properly check supervisor mode permissions, which allows local HVM users to cause a denial of service … CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-7155 cpe:2.3:o:fedoraproject:fedora:20:*
cpe:2.3:o:fedoraproject:fedora:19:*
2024-11-21 11:16
2014-10-2
Show GitHub Exploit DB Packet Storm
4843 -
6.1
MEDIUM Race condition in HVMOP_track_dirty_vram in Xen 4.0.0 through 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a d… CWE-362
Race Condition
CVE-2014-7154 cpe:2.3:o:fedoraproject:fedora:20:*
cpe:2.3:o:fedoraproject:fedora:19:*
2024-11-21 11:16
2014-10-2
Show GitHub Exploit DB Packet Storm
4844 -
6.5
MEDIUM Multiple stack-based buffer overflows in the File Transfer feature in rfbserver.c in LibVNCServer 0.9.9 and earlier allow remote authenticated users to cause a denial of service (crash) and possibly … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-6055 cpe:2.3:o:fedoraproject:fedora:21:*
cpe:2.3:o:fedoraproject:fedora:20:*
2024-11-21 11:13
2014-10-1
Show GitHub Exploit DB Packet Storm
4845 -
7.5
HIGH Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code … CWE-189
Numeric Errors
CVE-2014-6051 cpe:2.3:o:fedoraproject:fedora:21:*
cpe:2.3:o:fedoraproject:fedora:20:*
2024-11-21 11:13
2014-10-1
Show GitHub Exploit DB Packet Storm
4846 -
3.3
LOW The _rl_tropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a /var/tmp/rltrace.[PID] file. CWE-59
Link Following
CVE-2014-2524 cpe:2.3:o:fedoraproject:fedora:20:* 2024-11-21 11:06
2014-08-20
Show GitHub Exploit DB Packet Storm
4847 -
6.8
MEDIUM Integer overflow in the tr_bitfieldEnsureNthBitAlloced function in bitfield.c in Transmission before 2.84 allows remote attackers to cause a denial of service and possibly execute arbitrary code via … CWE-189
Numeric Errors
CVE-2014-4909 cpe:2.3:o:fedoraproject:fedora:20:* 2024-11-21 11:11
2014-07-29
Show GitHub Exploit DB Packet Storm
4848 -
2.1
LOW WebAccess in Zarafa before 7.1.10 and WebApp before 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files. CWE-310
Cryptographic Issues
CVE-2014-0103 cpe:2.3:o:fedoraproject:fedora:20:*
cpe:2.3:o:fedoraproject:fedora:19:*
2024-11-21 11:01
2014-07-29
Show GitHub Exploit DB Packet Storm
4849 -
1.2
LOW The web interface in CUPS before 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/. CWE-59
Link Following
CVE-2014-3537 cpe:2.3:o:fedoraproject:fedora:20:* 2024-11-21 11:08
2014-07-23
Show GitHub Exploit DB Packet Storm
4850 -
5.0
MEDIUM MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) by injecting invalid tokens into a GSSAPI application session. CWE-125
Out-of-bounds Read
CVE-2014-4341 cpe:2.3:o:fedoraproject:fedora:20:* 2024-11-21 11:09
2014-07-20
Show GitHub Exploit DB Packet Storm