Search CVE reports
1 – 10 of 26733 results
[openpgp: Don't imply missing key flags from key type]
1 affected package
rust-sequoia-openpgp
| Package | 26.04 LTS |
|---|---|
| rust-sequoia-openpgp | Needs evaluation |
[Unknown description]
1 affected package
imagemagick
| Package | 26.04 LTS |
|---|---|
| imagemagick | Needs evaluation |
[Unknown description]
2 affected packages
request-tracker4, request-tracker5
| Package | 26.04 LTS |
|---|---|
| request-tracker4 | Needs evaluation |
| request-tracker5 | Needs evaluation |
[Unknown description]
2 affected packages
request-tracker4, request-tracker5
| Package | 26.04 LTS |
|---|---|
| request-tracker4 | Needs evaluation |
| request-tracker5 | Needs evaluation |
[Unknown description]
2 affected packages
request-tracker4, request-tracker5
| Package | 26.04 LTS |
|---|---|
| request-tracker4 | Needs evaluation |
| request-tracker5 | Needs evaluation |
Twig versions 2.16.x and 3.9.0 through 3.25.x contain a sandbox bypass vulnerability when using a SourcePolicyInterface that allows attackers with template rendering capabilities to pass arbitrary PHP callables to sort, filter,...
1 affected package
php-twig
| Package | 26.04 LTS |
|---|---|
| php-twig | Needs evaluation |
MediaArea MediaInfoLib Channel Splitting heap-based buffer overflow vulnerability
1 affected package
libmediainfo
| Package | 26.04 LTS |
|---|---|
| libmediainfo | Needs evaluation |
In `src/havegecmd.c`, the `socket_handler` function performs a credential check on the abstract UNIX socket (`\0/sys/entropy/haveged`). However, while it detects if the connecting user is not root (`cred.uid != 0`) and prepares a...
1 affected package
haveged
| Package | 26.04 LTS |
|---|---|
| haveged | Needs evaluation |
In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_userdb_checkpass.
1 affected package
memcached
| Package | 26.04 LTS |
|---|---|
| memcached | Needs evaluation |
Memory safety bugs present in Thunderbird 140.10 and Thunderbird 150. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code....
9 affected packages
firefox, thunderbird, mozjs38, mozjs52, mozjs68...
| Package | 26.04 LTS |
|---|---|
| firefox | Not affected |
| thunderbird | Not affected |
| mozjs38 | Not in release |
| mozjs52 | Not in release |
| mozjs68 | Not in release |
| mozjs78 | Not in release |
| mozjs91 | Not in release |
| mozjs102 | Not in release |
| mozjs115 | Not in release |