Software Detail

Software Informaton Top

Operating Systems

Software Detail

Fedora

Number Of NVD

5104

CRITICAL

454

HIGH

2277

MEDIUM

2202

LOW

170

URL	https://getfedora.org/
Explanation	Fedora is a Red Hat-supported distribution that actively embraces new technologies. The Fedora Project releases a new version approximately every six months, and provides updated packages (which are maintained) for approximately 13 months. This provides a mechanism for users to continue to receive package updates at any time, while allowing them to skip a release. The above text is excerpted from [https://fedoraproject.org/wiki/Fedora_Release_Life_Cycle/ja]. Support is provided for one month (four weeks) after the release of two subsequent versions, roughly one year after the release.
Tag	Linux

Add Information URL

No	Type	Name	URL
1			https://fedoraproject.org/wiki/Fedora_Release_Life_Cycle
2			https://fedoraproject.org/wiki/End_of_life
3			https://fedoraproject.org/wiki/Releases
4			https://getfedora.org/server/download/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Critical	High	Medium	Low
51	Fedora 40	40	April 23, 2024	Oct. 17, 2023		453	2278	2202	170
52	Fedora 39	39	Oct. 17, 2023	Oct. 17, 2023	Nov. 12, 2024	27	140	138	8
53	Fedora 38	38	April 18, 2023	April 18, 2023	May 14, 2024	32	224	240	16
54	Fedora 37	37	Nov. 15, 2022	Nov. 15, 2022	Nov. 14, 2023	45	333	298	18
55	Fedora 36	36	May 6, 2022	May 6, 2022	May 16, 2023	60	341	292	6
56	Fedora 35	35	Nov. 2, 2021	Nov. 2, 2021	Dec. 13, 2022	91	572	411	21
57	Fedora 34	34	April 27, 2021	April 27, 2021	June 7, 2022	93	597	461	28
58	Fedora 34	34	April 20, 2021	April 20, 2021	June 7, 2022	93	597	461	28
59	Fedora 33	33	Oct. 27, 2020	Oct. 27, 2020	Nov. 30, 2021	88	572	505	42
60	Fedora 33	33	Oct. 24, 2020	Oct. 24, 2020	Nov. 30, 2021	88	572	505	42
61	Fedora 32	32	April 28, 2020	April 28, 2020	May 25, 2021	86	388	458	39
62	Fedora 32	32	April 25, 2020	April 25, 2020	May 25, 2021	86	388	458	39
63	Fedora 31	31	Oct. 29, 2019	Oct. 29, 2019	Nov. 24, 2020	90	349	401	28
64	Fedora 31	31	Oct. 25, 2019	Oct. 25, 2019	Nov. 24, 2020	90	349	401	28
65	Fedora 30	30	May 7, 2019	May 7, 2019	May 26, 2020	88	310	313	18
66	Fedora 30	30	May 7, 2019	May 7, 2019	May 26, 2020	88	310	313	18
67	Fedora 29	29	Oct. 30, 2018	Oct. 30, 2018	Nov. 26, 2019	45	182	164	8
68	Fedora 29	29	Oct. 30, 2018	Oct. 30, 2018	Nov. 26, 2019	45	182	164	8
69	Fedora 28	28	May 1, 2018	May 1, 2018	May 28, 2019	12	58	34	2
70	Fedora 28	28	May 1, 2018	May 1, 2018	May 28, 2019	12	58	34	2
71	Fedora 27	27	Nov. 14, 2017	Nov. 14, 2017	Nov. 30, 2018	2	5	5	1
72	Fedora 27	27	Oct. 24, 2017	Oct. 24, 2017	Nov. 30, 2018	2	5	5	1
73	Fedora 26	26	July 11, 2017	July 11, 2017	May 29, 2018	3	7	5	1
74	Fedora 25	25	Nov. 22, 2016	Nov. 22, 2016	Dec. 12, 2017	24	27	17	1
75	Fedora 24	24	June 21, 2016	June 21, 2016	Aug. 8, 2017	33	50	26	1
76	Fedora 23	23	Nov. 3, 2015	Nov. 3, 2015	Dec. 20, 2016	18	78	78	11
77	Fedora 22	22	May 26, 2015	May 26, 2015	July 19, 2016	15	76	93	14
78	Fedora 21	21	Dec. 9, 2014	Dec. 9, 2014	Dec. 1, 2015	4	64	84	10
79	Fedora 20	20	Dec. 17, 2013	Dec. 17, 2013	June 23, 2015	14	60	95	16
80	Fedora 19	19	July 2, 2013	July 2, 2013	Jan. 6, 2015	15	40	52	8
81	Fedora 18	18	Jan. 15, 2013	Jan. 15, 2013	Jan. 14, 2014	11	20	33	4
82	Fedora 17	17	May 29, 2012	May 29, 2012	July 30, 2013	3	18	33	4
83	Fedora 16	16	Nov. 8, 2011	Nov. 8, 2011	Feb. 12, 2013	1	16	29	3
84	Fedora 15	15	May 24, 2011	May 24, 2011	June 26, 2012	0	10	25	3
85	Fedora 14	14	Nov. 2, 2010	Nov. 2, 2010	Dec. 9, 2011	1	11	15	0
86	Fedora 13	13	May 25, 2010	May 25, 2010	June 24, 2011	5	15	25	2
87	Fedora 12	12	Nov. 17, 2009	Nov. 17, 2009	Dec. 2, 2010	3	8	14	1
88	Fedora 11	11	June 9, 2009	June 9, 2009	June 25, 2010	0	10	20	0
89	Fedora 10	10	Nov. 25, 2008	Nov. 25, 2008	Dec. 17, 2009	0	13	13	4
90	Fedora 9	9	May 13, 2008	May 13, 2008	July 10, 2009	2	15	16	1
91	Fedora 8	8	Nov. 8, 2007	Nov. 8, 2007	Jan. 7, 2009	4	10	16	1
92	Fedora 7	7	May 31, 2007	May 31, 2007	June 13, 2008	2	6	13	0

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
51	8.8 -	HIGH Network	Use after free in Canvas in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)	CWE-416 Use After Free	CVE-2024-2627	cpe:2.3:o:fedoraproject:fedora:40:* cpe:2.3:o:fedoraproject:fedora:39:* cpe:2.3:o:fedoraproject:fedora:38:*	2024-11-21 18:10 2024-03-21	Show	GitHub Exploit DB Packet Storm

52	6.5 -	MEDIUM Network	Out of bounds read in Swiftshader in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)	CWE-125 Out-of-bounds Read	CVE-2024-2626	cpe:2.3:o:fedoraproject:fedora:40:* cpe:2.3:o:fedoraproject:fedora:39:* cpe:2.3:o:fedoraproject:fedora:38:*	2024-11-21 18:10 2024-03-21	Show	GitHub Exploit DB Packet Storm

53	7.5 -	HIGH Network	libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).	CWE-776 XML Entity Expansion	CVE-2024-28757	cpe:2.3:o:fedoraproject:fedora:40:* cpe:2.3:o:fedoraproject:fedora:39:* cpe:2.3:o:fedoraproject:fedora:38:*	2025-02-27 00:14 2024-03-10	Show	GitHub Exploit DB Packet Storm

54	7.5 -	HIGH Network	Squid is a web proxy cache. Starting in version 3.5.27 and prior to version 6.8, Squid may be vulnerable to a Denial of Service attack against HTTP Chunked decoder due to an uncontrolled recursion bu…	-	CVE-2024-25111	cpe:2.3:o:fedoraproject:fedora:39:* cpe:2.3:o:fedoraproject:fedora:38:*	2025-02-27 00:14 2024-03-7	Show	GitHub Exploit DB Packet Storm

55	5.5 -	MEDIUM Local	Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::__shared_count() function at /bits/shared_ptr_base.h.	CWE-787 Out-of-bounds Write	CVE-2024-24246	cpe:2.3:o:fedoraproject:fedora:40:* cpe:2.3:o:fedoraproject:fedora:39:* cpe:2.3:o:fedoraproject:fedora:38:*	2024-11-21 17:59 2024-03-1	Show	GitHub Exploit DB Packet Storm

56	7.5 -	HIGH Network	diffoscope before 256 allows directory traversal via an embedded filename in a GPG file. Contents of any file, such as ../.ssh/id_rsa, may be disclosed to an attacker. This occurs because the value o…	-	CVE-2024-25711	cpe:2.3:o:fedoraproject:fedora:39:*	2025-03-4 21:24 2024-02-27	Show	GitHub Exploit DB Packet Storm

57	7.5 -	HIGH Network	Due to a mistake in error checking, Routinator will terminate when an incoming RTR connection is reset by the peer too quickly after opening.	-	CVE-2024-1622	cpe:2.3:o:fedoraproject:fedora:40:* cpe:2.3:o:fedoraproject:fedora:39:* cpe:2.3:o:fedoraproject:fedora:38:*	2025-02-27 12:05 2024-02-27	Show	GitHub Exploit DB Packet Storm

58	6.5 -	MEDIUM Network	The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during P…	CWE-287 Improper Authentication	CVE-2023-52160	cpe:2.3:o:fedoraproject:fedora:39:* cpe:2.3:o:fedoraproject:fedora:38:*	2024-11-21 17:39 2024-02-23	Show	GitHub Exploit DB Packet Storm

59	9.8 -	CRITICAL Network	pgjdbc, the PostgreSQL JDBC Driver, allows attacker to inject SQL if using PreferQueryMode=SIMPLE. Note this is not the default. In the default mode there is no vulnerability. A placeholder for a num…	CWE-89 SQL Injection	CVE-2024-1597	cpe:2.3:o:fedoraproject:fedora:40:*	2024-11-21 17:50 2024-02-19	Show	GitHub Exploit DB Packet Storm

60	7.5 -	HIGH Network	Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, ak…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2023-50387	cpe:2.3:o:fedoraproject:fedora:39:*	2024-11-21 17:36 2024-02-15	Show	GitHub Exploit DB Packet Storm