Search CVE reports
111 – 120 of 41184 results
A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted backend. Users are recommended to upgrade to version 2.4.68, which fixes this issue.
1 affected package
apache2
| Package | 20.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 20.04 LTS |
|---|---|
| edk2 | Not affected |
| nodejs | Not affected |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
CMS AuthEnvelopedData Processing May Accept Forged Messages
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 20.04 LTS |
|---|---|
| edk2 | Not affected |
| nodejs | Not affected |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 20.04 LTS |
|---|---|
| edk2 | Not affected |
| nodejs | Not affected |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
Some fixes available 1 of 2
Heap Buffer Over-read in ASN.1 Content Parsing
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 20.04 LTS |
|---|---|
| edk2 | Needs evaluation |
| nodejs | Not affected |
| openssl | Fixed |
| openssl-fips | — |
| openssl1.0 | — |
A cross-site scripting vulnerability exists in mod_proxy_ftp's HTML directory list generation in Apache HTTP Server 2.4.67 and earlier when listing FTP directory contents either via forward or reverse proxy configuration. Users...
1 affected package
apache2
| Package | 20.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Use After Free vulnerability in Apache HTTP Server with mod_ldap in per-directory configuration This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue.
1 affected package
apache2
| Package | 20.04 LTS |
|---|---|
| apache2 | Needs evaluation |
A security vulnerability has been detected in tmux up to 3.6a. Affected is the function image_free of the file image.c. Such manipulation leads to use after free. Local access is required to approach this attack. This attack is...
1 affected package
tmux
| Package | 20.04 LTS |
|---|---|
| tmux | Needs evaluation |
A flaw was found in 389 Directory Server. The Content Synchronization persistent search plugin allows unbounded memory growth when an authenticated client stops reading sync responses, enabling denial of service. Additional race...
1 affected package
389-ds-base
| Package | 20.04 LTS |
|---|---|
| 389-ds-base | Needs evaluation |
In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Convert to DRM's vblank timer Replace vkms' vblank timer with the DRM implementation. The DRM code is identical in concept, but differs in...
158 affected packages
linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...
| Package | 20.04 LTS |
|---|---|
| linux | Needs evaluation |
| linux-allwinner-5.19 | — |
| linux-aws | Needs evaluation |
| linux-aws-5.0 | — |
| linux-aws-5.11 | Ignored |
| linux-aws-5.13 | Ignored |
| linux-aws-5.15 | Needs evaluation |
| linux-aws-5.19 | — |
| linux-aws-5.3 | — |
| linux-aws-5.4 | — |
| linux-aws-5.8 | Ignored |
| linux-aws-6.14 | — |
| linux-aws-6.17 | — |
| linux-aws-6.2 | — |
| linux-aws-6.5 | — |
| linux-aws-6.8 | — |
| linux-aws-fips | Needs evaluation |
| linux-aws-hwe | — |
| linux-azure | Needs evaluation |
| linux-azure-4.15 | — |
| linux-azure-5.11 | Ignored |
| linux-azure-5.13 | Ignored |
| linux-azure-5.15 | Needs evaluation |
| linux-azure-5.19 | — |
| linux-azure-5.3 | — |
| linux-azure-5.4 | — |
| linux-azure-5.8 | Ignored |
| linux-azure-6.11 | — |
| linux-azure-6.14 | — |
| linux-azure-6.17 | — |
| linux-azure-6.2 | — |
| linux-azure-6.5 | — |
| linux-azure-6.8 | — |
| linux-azure-edge | — |
| linux-azure-fde | Ignored |
| linux-azure-fde-5.15 | Needs evaluation |
| linux-azure-fde-5.19 | — |
| linux-azure-fde-6.14 | — |
| linux-azure-fde-6.17 | — |
| linux-azure-fde-6.2 | — |
| linux-azure-fde-6.8 | — |
| linux-azure-fips | Needs evaluation |
| linux-azure-nvidia | — |
| linux-azure-nvidia-6.14 | — |
| linux-bluefield | Needs evaluation |
| linux-fips | Needs evaluation |
| linux-gcp | Needs evaluation |
| linux-gcp-4.15 | — |
| linux-gcp-5.11 | Ignored |
| linux-gcp-5.13 | Ignored |
| linux-gcp-5.15 | Needs evaluation |
| linux-gcp-5.19 | — |
| linux-gcp-5.3 | — |
| linux-gcp-5.4 | — |
| linux-gcp-5.8 | Ignored |
| linux-gcp-6.11 | — |
| linux-gcp-6.14 | — |
| linux-gcp-6.17 | — |
| linux-gcp-6.2 | — |
| linux-gcp-6.5 | — |
| linux-gcp-6.8 | — |
| linux-gcp-fips | Needs evaluation |
| linux-gke | Ignored |
| linux-gke-4.15 | — |
| linux-gke-5.15 | Ignored |
| linux-gke-5.4 | — |
| linux-gkeop | Ignored |
| linux-gkeop-5.15 | Ignored |
| linux-gkeop-5.4 | — |
| linux-hwe | — |
| linux-hwe-5.11 | Ignored |
| linux-hwe-5.13 | Ignored |
| linux-hwe-5.15 | Needs evaluation |
| linux-hwe-5.19 | — |
| linux-hwe-5.4 | — |
| linux-hwe-5.8 | Ignored |
| linux-hwe-6.11 | — |
| linux-hwe-6.14 | — |
| linux-hwe-6.17 | — |
| linux-hwe-6.2 | — |
| linux-hwe-6.5 | — |
| linux-hwe-6.8 | — |
| linux-hwe-edge | — |
| linux-ibm | Needs evaluation |
| linux-ibm-5.15 | Needs evaluation |
| linux-ibm-5.4 | — |
| linux-ibm-6.8 | — |
| linux-intel-5.13 | Ignored |
| linux-intel-iot-realtime | — |
| linux-intel-iotg | — |
| linux-intel-iotg-5.15 | Needs evaluation |
| linux-iot | Needs evaluation |
| linux-kvm | Needs evaluation |
| linux-lowlatency | — |
| linux-lowlatency-hwe-5.15 | Needs evaluation |
| linux-lowlatency-hwe-5.19 | — |
| linux-lowlatency-hwe-6.11 | — |
| linux-lowlatency-hwe-6.2 | — |
| linux-lowlatency-hwe-6.5 | — |
| linux-lowlatency-hwe-6.8 | — |
| linux-lts-xenial | — |
| linux-nvidia | — |
| linux-nvidia-6.11 | — |
| linux-nvidia-6.17 | — |
| linux-nvidia-6.2 | — |
| linux-nvidia-6.5 | — |
| linux-nvidia-6.8 | — |
| linux-nvidia-lowlatency | — |
| linux-nvidia-tegra | — |
| linux-nvidia-tegra-5.15 | Needs evaluation |
| linux-nvidia-tegra-igx | — |
| linux-oem | — |
| linux-oem-5.10 | Ignored |
| linux-oem-5.13 | Ignored |
| linux-oem-5.14 | Ignored |
| linux-oem-5.17 | — |
| linux-oem-5.6 | Ignored |
| linux-oem-6.0 | — |
| linux-oem-6.1 | — |
| linux-oem-6.11 | — |
| linux-oem-6.14 | — |
| linux-oem-6.17 | — |
| linux-oem-6.5 | — |
| linux-oem-6.8 | — |
| linux-oracle | Needs evaluation |
| linux-oracle-5.0 | — |
| linux-oracle-5.11 | Ignored |
| linux-oracle-5.13 | Ignored |
| linux-oracle-5.15 | Needs evaluation |
| linux-oracle-5.3 | — |
| linux-oracle-5.4 | — |
| linux-oracle-5.8 | Ignored |
| linux-oracle-6.14 | — |
| linux-oracle-6.17 | — |
| linux-oracle-6.5 | — |
| linux-oracle-6.8 | — |
| linux-raspi | Needs evaluation |
| linux-raspi-5.4 | — |
| linux-raspi-realtime | — |
| linux-raspi2 | Ignored |
| linux-realtime | — |
| linux-realtime-6.14 | — |
| linux-realtime-6.17 | — |
| linux-realtime-6.8 | — |
| linux-riscv | Ignored |
| linux-riscv-5.11 | Ignored |
| linux-riscv-5.15 | Needs evaluation |
| linux-riscv-5.19 | — |
| linux-riscv-5.8 | Ignored |
| linux-riscv-6.14 | — |
| linux-riscv-6.17 | — |
| linux-riscv-6.5 | — |
| linux-riscv-6.8 | — |
| linux-starfive-5.19 | — |
| linux-starfive-6.2 | — |
| linux-starfive-6.5 | — |
| linux-xilinx | — |
| linux-xilinx-zynqmp | Needs evaluation |