Search CVE reports
1461 – 1470 of 39943 results
(Improper neutralization of special elements used in an LDAP query ('LD ...)
1 affected package
bouncycastle
| Package | 20.04 LTS |
|---|---|
| bouncycastle | Needs evaluation |
(Insufficient checks of the RMP on host buffer access in IOMMU may allo ...)
1 affected package
amd64-microcode
| Package | 20.04 LTS |
|---|---|
| amd64-microcode | Needs evaluation |
openCryptoki is a PKCS#11 library and provides tooling for Linux and AIX. In versions 3.26.0 and below, the BER/DER decoding functions in the shared common library (asn1.c) accept a raw pointer but no buffer length parameter, and...
1 affected package
opencryptoki
| Package | 20.04 LTS |
|---|---|
| opencryptoki | Needs evaluation |
zlib is a Ruby interface for the zlib compression/decompression library. Versions 3.0.0 and below, 3.1.0, 3.1.1, 3.2.0 and 3.2.1 contain a buffer overflow vulnerability in the Zlib::GzipReader. The zstream_buffer_ungets function...
7 affected packages
ruby2.3, ruby2.5, ruby2.7, ruby3.0, ruby3.2...
| Package | 20.04 LTS |
|---|---|
| ruby2.3 | — |
| ruby2.5 | — |
| ruby2.7 | Needs evaluation |
| ruby3.0 | — |
| ruby3.2 | — |
| ruby3.3 | — |
| jruby | Needs evaluation |
A Denial of Service (DoS) vulnerability exists in the Protobuf PHP library during the parsing of untrusted input. Maliciously structured messages—specifically those containing negative varints or deep recursion—can be used to...
1 affected package
protobuf
| Package | 20.04 LTS |
|---|---|
| protobuf | Vulnerable |
A NULL pointer dereference vulnerability exists in fio (Flexible I/O Tester) v3.41 when parsing job files containing the fdp_pli option. The callback function str_fdp_pli_cb() does not validate the input pointer and calls strdup()...
1 affected package
fio
| Package | 20.04 LTS |
|---|---|
| fio | Needs evaluation |
radare2 before 9236f44, when configured on UNIX without SSL, allows command injection via a PDB name to rabin2 -PP. NOTE: although users are supposed to use the latest version from git (not a release), the date range for...
1 affected package
radare2
| Package | 20.04 LTS |
|---|---|
| radare2 | Needs evaluation |
FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds write via CENC (Common Encryption) subsample data to libavformat/mov.c.
2 affected packages
ffmpeg, libav
| Package | 20.04 LTS |
|---|---|
| ffmpeg | Needs evaluation |
| libav | — |
Yubico libfido2 before 1.17.0, python-fido2 before 2.2.0, and yubikey-manager before 5.9.1 have an unintended DLL search path.
3 affected packages
libfido2, python-fido2, yubikey-manager
| Package | 20.04 LTS |
|---|---|
| libfido2 | Not affected |
| python-fido2 | Not affected |
| yubikey-manager | Not affected |
[Unknown description]
2 affected packages
ffmpeg, libav
| Package | 20.04 LTS |
|---|---|
| ffmpeg | Needs evaluation |
| libav | — |