Aggregates CVE and security vulnerability intelligence across all Fedora Project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk buffer overflow, vendor risk path handling, and vendor risk input validation, with potential vendor impact file overwrite across vendor surface server deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-35094 | A flaw was found in libinput. An attacker capable of deploying a Lua plugin file in specific system directories can exploit a dangling pointer vulnerability. This occurs when a garbage collection cleanup function is called, leaving a pointer that can then be printed to system logs. This could potentially expose sensitive data if the memory location is re-used, leading to information disclosure. For this exploit to work, Lua plugins must be enabled in libinput and loaded by the compositor. | [email protected] | 3.3 | 0.01% | 2026-04-01 | 2026-04-07 |
| CVE-2026-35093 | A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain system or user configuration directories can bypass security restrictions. This allows the attacker to run unauthorized code with the same permissions as the program using libinput, such as a graphical compositor. This could lead to the attacker monitoring keyboard input and sending that information to an external location. | [email protected] | 8.8 | 0.01% | 2026-04-01 | 2026-04-07 |
| CVE-2023-4134 | A use-after-free vulnerability was found in the cyttsp4_core driver in the Linux kernel. This issue occurs in the device cleanup routine due to a possible rearming of the watchdog_timer from the workqueue. This could allow a local user to crash the system, causing a denial of service. | [email protected] | 5.5 | 0.03% | 2024-11-14 | 2024-11-18 |
| CVE-2024-3056 | A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the same IPC with at least one other container, can create a large number of IPC resources in /dev/shm. The malicious container will continue to exhaust resources until it is out-of-memory (OOM) killed. While the malicious container's cgroup will be removed, the IPC resources it created are not. Those resources are tied to the IPC namespace that will not be removed | [email protected] | 7.7 | 0.36% | 2024-08-02 | 2024-12-27 |
| CVE-2024-6293 | Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) | [email protected] | 8.8 | 0.32% | 2024-06-24 | 2024-12-26 |
| CVE-2024-6292 | Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) | [email protected] | 8.8 | 0.28% | 2024-06-24 | 2024-12-26 |
| CVE-2024-6291 | Use after free in Swiftshader in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) | [email protected] | 8.8 | 0.28% | 2024-06-24 | 2024-12-26 |
| CVE-2024-6290 | Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) | [email protected] | 8.8 | 0.43% | 2024-06-24 | 2024-12-26 |
| CVE-2024-38277 | A unique key should be generated for a user's QR login key and their auto-login key, so the same key cannot be used interchangeably between the two. | [email protected] | 5.4 | 0.19% | 2024-06-18 | 2025-08-07 |
| CVE-2024-38276 | Incorrect CSRF token checks resulted in multiple CSRF risks. | [email protected] | 8.8 | 0.27% | 2024-06-18 | 2025-03-26 |
| CVE-2024-38274 | Insufficient escaping of calendar event titles resulted in a stored XSS risk in the event deletion prompt. | [email protected] | 6.1 | 0.99% | 2024-06-18 | 2025-08-07 |
| CVE-2024-38273 | Insufficient capability checks meant it was possible for users to gain access to BigBlueButton join URLs they did not have permission to access. | [email protected] | 5.4 | 0.20% | 2024-06-18 | 2025-08-07 |
| CVE-2024-5847 | Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium) | [email protected] | 8.8 | 0.48% | 2024-06-11 | 2024-11-21 |
| CVE-2024-5846 | Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium) | [email protected] | 8.8 | 0.48% | 2024-06-11 | 2024-11-21 |
| CVE-2024-5845 | Use after free in Audio in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium) | [email protected] | 8.8 | 0.26% | 2024-06-11 | 2024-11-21 |
| CVE-2024-5844 | Heap buffer overflow in Tab Strip in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium) | [email protected] | 8.8 | 0.42% | 2024-06-11 | 2025-03-13 |
| CVE-2024-5843 | Inappropriate implementation in Downloads in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to obfuscate security UI via a malicious file. (Chromium security severity: Medium) | [email protected] | 6.5 | 0.06% | 2024-06-11 | 2024-11-21 |
| CVE-2024-5842 | Use after free in Browser UI in Google Chrome prior to 126.0.6478.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium) | [email protected] | 8.8 | 0.40% | 2024-06-11 | 2024-11-21 |
| CVE-2024-5841 | Use after free in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) | [email protected] | 8.8 | 0.26% | 2024-06-11 | 2024-11-21 |
| CVE-2024-5840 | Policy bypass in CORS in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Medium) | [email protected] | 6.5 | 0.06% | 2024-06-11 | 2025-03-13 |