Search CVE reports
361 – 370 of 38044 results
NULL Pointer Dereference vulnerability in tmate-io tmate.This issue affects tmate: before 2.4.0.
1 affected package
tmate
| Package | 20.04 LTS |
|---|---|
| tmate | Needs evaluation |
A flaw was found in Undertow. A remote attacker could exploit this vulnerability by sending an HTTP GET request containing multipart/form-data content. If the underlying application processes parameters using methods like...
1 affected package
undertow
| Package | 20.04 LTS |
|---|---|
| undertow | Needs evaluation |
Integer Overflow or Wraparound vulnerability in InsightSoftwareConsortium ITK (Modules/ThirdParty/Expat/src/expat modules).This issue affects ITK: before 2.7.1.
23 affected packages
smart, expat, apache2, apr-util, cmake...
| Package | 20.04 LTS |
|---|---|
| smart | — |
| expat | Needs evaluation |
| apache2 | Not affected |
| apr-util | Not affected |
| cmake | Not affected |
| ghostscript | Not affected |
| texlive-bin | Not affected |
| xmlrpc-c | Needs evaluation |
| vnc4 | — |
| wbxml2 | Needs evaluation |
| swish-e | Needs evaluation |
| insighttoolkit4 | Needs evaluation |
| cadaver | Needs evaluation |
| gdcm | Not affected |
| ayttm | — |
| cableswig | — |
| coin3 | Not affected |
| matanza | Ignored |
| tdom | Needs evaluation |
| vtk | — |
| firefox | — |
| thunderbird | — |
| libxmltok | Needs evaluation |
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in OSGeo gdal (frmts/zlib/contrib/infback9 modules). This vulnerability is associated with program files inftree9.C. This issue affects gdal:...
1 affected package
gdal
| Package | 20.04 LTS |
|---|---|
| gdal | Needs evaluation |
Mod_gnutls is a TLS module for Apache HTTPD based on GnuTLS. Prior to version 0.13.0, code for client certificate verification did not check the key purpose as set in the Extended Key Usage extension. An attacker with access to...
1 affected package
mod-gnutls
| Package | 20.04 LTS |
|---|---|
| mod-gnutls | Needs evaluation |
Mod_gnutls is a TLS module for Apache HTTPD based on GnuTLS. In versions prior to 0.12.3 and 0.13.0, code for client certificate verification imported the certificate chain sent by the client into a fixed size `gnutls_x509_crt_t...
1 affected package
mod-gnutls
| Package | 20.04 LTS |
|---|---|
| mod-gnutls | Needs evaluation |
Freeciv21 is a free open source, turn-based, empire-building strategy game. Versions prior to 3.1.1 crash with a stack overflow when receiving specially-crafted packets. A remote attacker can use this to take down any public...
1 affected package
freeciv
| Package | 20.04 LTS |
|---|---|
| freeciv | Needs evaluation |
Active Storage allows users to attach cloud and local files in Rails applications. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, Active Storage's `DiskService#delete_prefixed` passes blob keys directly to `Dir.glob` without...
1 affected package
rails
| Package | 20.04 LTS |
|---|---|
| rails | Needs evaluation |
Active Storage allows users to attach cloud and local files in Rails applications. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, Active Storage's `DiskService#path_for` does not validate that the resolved filesystem path...
1 affected package
rails
| Package | 20.04 LTS |
|---|---|
| rails | Needs evaluation |
Active Support is a toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, Active Support number helpers accept strings containing...
1 affected package
rails
| Package | 20.04 LTS |
|---|---|
| rails | Needs evaluation |