Browse all 4 CVE security advisories affecting Fedora. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Fedora serves as a community-supported Linux distribution often used as a testing ground for technologies adopted by Red Hat Enterprise Linux. Historically, it has faced vulnerabilities across multiple classes including remote code execution, cross-site scripting, and privilege escalation, with four active CVEs currently recorded. While no major security incidents have been widely documented, the project maintains a rapid update cycle and transparent security response process. Its rolling release model and frequent package updates can introduce potential entry points, though the community actively patches issues. Security-focused features like SELinux integration provide additional protection layers, making Fedora a platform where security researchers and developers collaborate to address threats promptly.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-2746 | Incomplete fix for CVE-2024-1929 — dnf5daemon-serverCWE-20 | 8.8 | High | 2024-05-08 |
| CVE-2024-1929 | Local Root Exploit via Configuration Dictionary — dnf5daemon-serverCWE-20 | 7.5 | High | 2024-05-08 |
| CVE-2024-1930 | No Limit on Number of Open Sessions / Bad Session Close Behaviour — dnf5daemon-serverCWE-400 | 6.5 | Medium | 2024-05-08 |
| CVE-2016-4983 | Dovecot 信息泄露漏洞 — dovecot22 | 3.3 | - | 2019-11-05 |
This page lists every published CVE security advisory associated with Fedora. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.