Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Fedora Number Of NVD 5104 CRITICAL 454 HIGH 2277 MEDIUM 2202 LOW 170
URL https://getfedora.org/
Explanation Fedora is a Red Hat-supported distribution that actively embraces new technologies.

The Fedora Project releases a new version approximately every six months, and provides updated packages (which are maintained) for approximately 13 months.
This provides a mechanism for users to continue to receive package updates at any time, while allowing them to skip a release.

The above text is excerpted from [https://fedoraproject.org/wiki/Fedora_Release_Life_Cycle/ja].

Support is provided for one month (four weeks) after the release of two subsequent versions, roughly one year after the release.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://fedoraproject.org/wiki/Fedora_Release_Life_Cycle
2 https://fedoraproject.org/wiki/End_of_life
3 https://fedoraproject.org/wiki/Releases
4 https://getfedora.org/server/download/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
5081 Fedora 40 40 April 23, 2024 Oct. 17, 2023 453 2278 2202 170
5082 Fedora 39 39 Oct. 17, 2023 Oct. 17, 2023 Nov. 12, 2024 27 140 138 8
5083 Fedora 38 38 April 18, 2023 April 18, 2023 May 14, 2024 32 224 240 16
5084 Fedora 37 37 Nov. 15, 2022 Nov. 15, 2022 Nov. 14, 2023 45 333 298 18
5085 Fedora 36 36 May 6, 2022 May 6, 2022 May 16, 2023 60 341 292 6
5086 Fedora 35 35 Nov. 2, 2021 Nov. 2, 2021 Dec. 13, 2022 91 572 411 21
5087 Fedora 34 34 April 27, 2021 April 27, 2021 June 7, 2022 93 597 461 28
5088 Fedora 34 34 April 20, 2021 April 20, 2021 June 7, 2022 93 597 461 28
5089 Fedora 33 33 Oct. 27, 2020 Oct. 27, 2020 Nov. 30, 2021 88 572 505 42
5090 Fedora 33 33 Oct. 24, 2020 Oct. 24, 2020 Nov. 30, 2021 88 572 505 42
5091 Fedora 32 32 April 28, 2020 April 28, 2020 May 25, 2021 86 388 458 39
5092 Fedora 32 32 April 25, 2020 April 25, 2020 May 25, 2021 86 388 458 39
5093 Fedora 31 31 Oct. 29, 2019 Oct. 29, 2019 Nov. 24, 2020 90 349 401 28
5094 Fedora 31 31 Oct. 25, 2019 Oct. 25, 2019 Nov. 24, 2020 90 349 401 28
5095 Fedora 30 30 May 7, 2019 May 7, 2019 May 26, 2020 88 310 313 18
5096 Fedora 30 30 May 7, 2019 May 7, 2019 May 26, 2020 88 310 313 18
5097 Fedora 29 29 Oct. 30, 2018 Oct. 30, 2018 Nov. 26, 2019 45 182 164 8
5098 Fedora 29 29 Oct. 30, 2018 Oct. 30, 2018 Nov. 26, 2019 45 182 164 8
5099 Fedora 28 28 May 1, 2018 May 1, 2018 May 28, 2019 12 58 34 2
5100 Fedora 28 28 May 1, 2018 May 1, 2018 May 28, 2019 12 58 34 2
5101 Fedora 27 27 Nov. 14, 2017 Nov. 14, 2017 Nov. 30, 2018 2 5 5 1
5102 Fedora 27 27 Oct. 24, 2017 Oct. 24, 2017 Nov. 30, 2018 2 5 5 1
5103 Fedora 26 26 July 11, 2017 July 11, 2017 May 29, 2018 3 7 5 1
5104 Fedora 25 25 Nov. 22, 2016 Nov. 22, 2016 Dec. 12, 2017 24 27 17 1
5105 Fedora 24 24 June 21, 2016 June 21, 2016 Aug. 8, 2017 33 50 26 1
5106 Fedora 23 23 Nov. 3, 2015 Nov. 3, 2015 Dec. 20, 2016 18 78 78 11
5107 Fedora 22 22 May 26, 2015 May 26, 2015 July 19, 2016 15 76 93 14
5108 Fedora 21 21 Dec. 9, 2014 Dec. 9, 2014 Dec. 1, 2015 4 64 84 10
5109 Fedora 20 20 Dec. 17, 2013 Dec. 17, 2013 June 23, 2015 14 60 95 16
5110 Fedora 19 19 July 2, 2013 July 2, 2013 Jan. 6, 2015 15 40 52 8
5111 Fedora 18 18 Jan. 15, 2013 Jan. 15, 2013 Jan. 14, 2014 11 20 33 4
5112 Fedora 17 17 May 29, 2012 May 29, 2012 July 30, 2013 3 18 33 4
5113 Fedora 16 16 Nov. 8, 2011 Nov. 8, 2011 Feb. 12, 2013 1 16 29 3
5114 Fedora 15 15 May 24, 2011 May 24, 2011 June 26, 2012 0 10 25 3
5115 Fedora 14 14 Nov. 2, 2010 Nov. 2, 2010 Dec. 9, 2011 1 11 15 0
5116 Fedora 13 13 May 25, 2010 May 25, 2010 June 24, 2011 5 15 25 2
5117 Fedora 12 12 Nov. 17, 2009 Nov. 17, 2009 Dec. 2, 2010 3 8 14 1
5118 Fedora 11 11 June 9, 2009 June 9, 2009 June 25, 2010 0 10 20 0
5119 Fedora 10 10 Nov. 25, 2008 Nov. 25, 2008 Dec. 17, 2009 0 13 13 4
5120 Fedora 9 9 May 13, 2008 May 13, 2008 July 10, 2009 2 15 16 1
5121 Fedora 8 8 Nov. 8, 2007 Nov. 8, 2007 Jan. 7, 2009 4 10 16 1
5122 Fedora 7 7 May 31, 2007 May 31, 2007 June 13, 2008 2 6 13 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
5081 9.8
7.5 		CRITICAL
Network 		The GENERATE_SEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, when running on 64-bit systems, performs a multiplication that generates a portion of zero bits during conversion due to insuffic… CWE-331
 Insufficient Entropy 		CVE-2008-2108 cpe:2.3:o:fedoraproject:fedora:9:*
cpe:2.3:o:fedoraproject:fedora:8:* 		2026-04-23 09:35
2008-05-8 		Show GitHub Exploit DB Packet Storm
5082 9.8
10.0 		CRITICAL
Network 		The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly consider operator precedence when calculating the length of PATH_TRANSLATED, which might allow remote attac… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2008-0599 cpe:2.3:o:fedoraproject:fedora:9:*
cpe:2.3:o:fedoraproject:fedora:8:* 		2026-04-23 09:35
2008-05-6 		Show GitHub Exploit DB Packet Storm
5083 -
6.9 		MEDIUM Race condition in the directory notification subsystem (dnotify) in Linux kernel 2.6.x before 2.6.24.6, and 2.6.25 before 2.6.25.1, allows local users to cause a denial of service (OOPS) and possibly… CWE-362
Race Condition 		CVE-2008-1375 cpe:2.3:o:fedoraproject:fedora:8:* 2026-04-23 09:35
2008-05-3 		Show GitHub Exploit DB Packet Storm
5084 5.5
2.1 		MEDIUM
Local 		phpMyAdmin before 2.11.5.1 stores the MySQL (1) username and (2) password, and the (3) Blowfish secret key, in cleartext in a Session file under /tmp, which allows local users to obtain sensitive inf… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2008-1567 cpe:2.3:o:fedoraproject:fedora:8:*
cpe:2.3:o:fedoraproject:fedora:7:* 		2026-04-23 09:35
2008-04-1 		Show GitHub Exploit DB Packet Storm
5085 9.8
9.3 		CRITICAL
Network 		KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via … CWE-665
 Improper Initialization 		CVE-2008-0062 cpe:2.3:o:fedoraproject:fedora:8:*
cpe:2.3:o:fedoraproject:fedora:7:* 		2026-04-23 09:35
2008-03-19 		Show GitHub Exploit DB Packet Storm
5086 7.5
4.3 		HIGH
Network 		The Kerberos 4 support in KDC in MIT Kerberos 5 (krb5kdc) does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensiti… CWE-908
 Use of Uninitialized Resource 		CVE-2008-0063 cpe:2.3:o:fedoraproject:fedora:8:*
cpe:2.3:o:fedoraproject:fedora:7:* 		2026-04-23 09:35
2008-03-19 		Show GitHub Exploit DB Packet Storm
5087 -
5.0 		MEDIUM Directory traversal vulnerability in WEBrick in Ruby 1.8 before 1.8.5-p115 and 1.8.6-p114, and 1.9 through 1.9.0-1, when running on systems that support backslash (\) path separators or case-insensit… CWE-22
Path Traversal 		CVE-2008-1145 cpe:2.3:o:fedoraproject:fedora:8:*
cpe:2.3:o:fedoraproject:fedora:7:* 		2026-04-23 09:35
2008-03-5 		Show GitHub Exploit DB Packet Storm
5088 -
4.6 		MEDIUM dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local u… CWE-863
 Incorrect Authorization 		CVE-2008-0595 cpe:2.3:o:fedoraproject:fedora:7:* 2026-04-23 09:35
2008-03-1 		Show GitHub Exploit DB Packet Storm
5089 -
9.3 		HIGH The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a … CWE-787
 Out-of-bounds Write 		CVE-2007-6427 cpe:2.3:o:fedoraproject:fedora:8:*
cpe:2.3:o:fedoraproject:fedora:7:* 		2026-04-23 09:35
2008-01-19 		Show GitHub Exploit DB Packet Storm
5090 -
4.3 		MEDIUM mod_proxy_ftp in Apache 2.2.x before 2.2.7-dev, 2.0.x before 2.0.62-dev, and 1.3.x before 1.3.40-dev does not define a charset, which allows remote attackers to conduct cross-site scripting (XSS) att… CWE-79
Cross-site Scripting 		CVE-2008-0005 cpe:2.3:o:fedoraproject:fedora:8:*
cpe:2.3:o:fedoraproject:fedora:7:* 		2026-04-23 09:35
2008-01-12 		Show GitHub Exploit DB Packet Storm