Search CVE reports
1361 – 1370 of 43859 results
A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext within the initial HTTP CONNECT request. A network-positioned attacker or a...
2 affected packages
libsoup2.4, libsoup3
| Package | 18.04 LTS |
|---|---|
| libsoup2.4 | Needs evaluation |
| libsoup3 | — |
A vulnerability has been found in FRRouting FRR up to 10.5.1. This affects the function process_type2_route of the file bgpd/bgp_evpn.c of the component EVPN Type-2 Route Handler. The manipulation leads to improper access...
2 affected packages
frr, quagga
| Package | 18.04 LTS |
|---|---|
| frr | — |
| quagga | Needs evaluation |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a double-free vulnerability in kerberos_AcceptSecurityContext() and kerberos_InitializeSecurityContextA() (WinPR,...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 18.04 LTS |
|---|---|
| freerdp | Needs evaluation |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in persistent_cache_read_entry_v3() in libfreerdp/cache/persistent.c, persistent->bmpSize is updated before winpr_aligned_recalloc(). If...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 18.04 LTS |
|---|---|
| freerdp | Needs evaluation |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuv_ensure_buffer() in libfreerdp/codec/h264.c, h264->width and h264->height are updated before the reallocation loop. If any...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 18.04 LTS |
|---|---|
| freerdp | Needs evaluation |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is rendered to screen, potentially leaking sensitive data to the attacker. This issue has been patched...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 18.04 LTS |
|---|---|
| freerdp | Needs evaluation |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in resize_vbar_entry() in libfreerdp/codec/clear.c, vBarEntry->size is updated to vBarEntry->count before the winpr_aligned_recalloc() call....
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 18.04 LTS |
|---|---|
| freerdp | Needs evaluation |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, progressive_decompress_tile_upgrade() detects a mismatch via progressive_rfx_quant_cmp_equal() but only emits WLog_WARN,...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 18.04 LTS |
|---|---|
| freerdp | Needs evaluation |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflow READ vulnerability at 24 bytes before the allocation, in winpr_aligned_offset_recalloc(). This issue has...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 18.04 LTS |
|---|---|
| freerdp | Needs evaluation |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a malicious RDP server can crash the FreeRDP client by sending audio data in IMA ADPCM format with an invalid initial step index value (>=...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 18.04 LTS |
|---|---|
| freerdp | Needs evaluation |
| freerdp2 | Needs evaluation |
| freerdp3 | — |