Search CVE reports
1 – 10 of 40247 results
A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser when processing specially crafted Debian repository metadata. An attacker could exploit this by providing...
1 affected package
libsolv
| Package | 20.04 LTS |
|---|---|
| libsolv | Needs evaluation |
A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted `.solv` file containing negative size values in the `repo_add_solv` function. This leads to an undersized...
1 affected package
libsolv
| Package | 20.04 LTS |
|---|---|
| libsolv | Needs evaluation |
The MongoDB C Driver's legacy GridFS API accepts malformed file metadata from the database without adequate validation. Crafted documents in a GridFS collection may cause any application that reads those files via the legacy API...
1 affected package
mongo-c-driver
| Package | 20.04 LTS |
|---|---|
| mongo-c-driver | Needs evaluation |
[Unknown description]
2 affected packages
request-tracker4, request-tracker5
| Package | 20.04 LTS |
|---|---|
| request-tracker4 | Needs evaluation |
| request-tracker5 | — |
[Unknown description]
1 affected package
php-twig
| Package | 20.04 LTS |
|---|---|
| php-twig | Needs evaluation |
[Unknown description]
1 affected package
php-twig
| Package | 20.04 LTS |
|---|---|
| php-twig | Needs evaluation |
Crypt::SaltedHash versions through 0.09 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash.
1 affected package
libcrypt-saltedhash-perl
| Package | 20.04 LTS |
|---|---|
| libcrypt-saltedhash-perl | Needs evaluation |
Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography.
1 affected package
libcrypt-saltedhash-perl
| Package | 20.04 LTS |
|---|---|
| libcrypt-saltedhash-perl | Needs evaluation |
[Unknown description]
1 affected package
symfony
| Package | 20.04 LTS |
|---|---|
| symfony | Needs evaluation |
[Unknown description]
1 affected package
imagemagick
| Package | 20.04 LTS |
|---|---|
| imagemagick | Needs evaluation |