Search CVE reports
1661 – 1670 of 35604 results
Use-after-free in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
9 affected packages
firefox, thunderbird, mozjs38, mozjs52, mozjs68...
| Package | 24.04 LTS |
|---|---|
| firefox | Not affected |
| thunderbird | Not affected |
| mozjs38 | Not in release |
| mozjs52 | Not in release |
| mozjs68 | Not in release |
| mozjs78 | Not in release |
| mozjs91 | Not in release |
| mozjs102 | Ignored |
| mozjs115 | Ignored |
Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.
9 affected packages
firefox, thunderbird, mozjs38, mozjs52, mozjs68...
| Package | 24.04 LTS |
|---|---|
| firefox | Not affected |
| thunderbird | Not affected |
| mozjs38 | Not in release |
| mozjs52 | Not in release |
| mozjs68 | Not in release |
| mozjs78 | Not in release |
| mozjs91 | Not in release |
| mozjs102 | Ignored |
| mozjs115 | Ignored |
libXpm Out-of-bounds read in xpmNextWord()
2 affected packages
libxpm, motif
| Package | 24.04 LTS |
|---|---|
| libxpm | Vulnerable |
| motif | Needs evaluation |
In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfs_build_permissions_posix() in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image....
1 affected package
ntfs-3g
| Package | 24.04 LTS |
|---|---|
| ntfs-3g | Fixed |
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.4.0 through 3.4.9, 3.3.0 through 3.3.9, and 3.2.0 through...
1 affected package
openexr
| Package | 24.04 LTS |
|---|---|
| openexr | Not affected |
The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. In versions 6.5 through 7.17.0, when `HTMLExporter.embed_images=True`, nbconvert's markdown renderer allows arbitrary...
1 affected package
nbconvert
| Package | 24.04 LTS |
|---|---|
| nbconvert | Needs evaluation |
Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, the Cassandra export module (`glances/exports/glances_cassandra/__init__.py`) interpolates `keyspace`, `table`, and `replication_factor`...
1 affected package
glances
| Package | 24.04 LTS |
|---|---|
| glances | Needs evaluation |
(Double-Free / Use-After-Free (UAF) in the `IntoIter::drop` and `ThinVe ...)
1 affected package
rust-thin-vec
| Package | 24.04 LTS |
|---|---|
| rust-thin-vec | Needs evaluation |
(KissFFT before commit8a8e66e contains an integer overflow vulnerabilit ...)
1 affected package
kissfft
| Package | 24.04 LTS |
|---|---|
| kissfft | Needs evaluation |
Improper verification of cryptographic signature in ASP.NET Core allows an unauthorized attacker to elevate privileges over a network.
5 affected packages
dotnet6, dotnet7, dotnet8, dotnet9, dotnet10
| Package | 24.04 LTS |
|---|---|
| dotnet6 | Not in release |
| dotnet7 | Not in release |
| dotnet8 | Not affected |
| dotnet9 | Not in release |
| dotnet10 | Fixed |