Search CVE reports
21 – 30 of 34561 results
[Unknown description]
1 affected package
qemu
| Package | 22.04 LTS |
|---|---|
| qemu | Needs evaluation |
Mismatched length fields in Zlib compressed protocol headers may allow a read of uninitialized heap memory by an unauthenticated client. This issue affects all MongoDB Server v7.0 prior to 7.0.28 versions, MongoDB Server v8.0...
5 affected packages
mongodb, zlib, rsync, klibc, zsync
| Package | 22.04 LTS |
|---|---|
| mongodb | Not in release |
| zlib | Needs evaluation |
| rsync | Not affected |
| klibc | Needs evaluation |
| zsync | Needs evaluation |
security update
6 affected packages
chromium-browser, webkitgtk, webkit2gtk, qtwebkit-source, qtwebkit-opensource-src, wpewebkit
| Package | 22.04 LTS |
|---|---|
| chromium-browser | Not affected |
| webkitgtk | Not in release |
| webkit2gtk | Needs evaluation |
| qtwebkit-source | Not in release |
| qtwebkit-opensource-src | Ignored |
| wpewebkit | Ignored |
FileZilla Client 3.63.1 contains a DLL hijacking vulnerability that allows attackers to execute malicious code by placing a crafted TextShaping.dll in the application directory. Attackers can generate a reverse shell payload using...
1 affected package
filezilla
| Package | 22.04 LTS |
|---|---|
| filezilla | Needs evaluation |
Not in release
Dotclear 2.25.3 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files with .phar extension through the blog post creation interface. Attackers can upload files containing...
1 affected package
dotclear
| Package | 22.04 LTS |
|---|---|
| dotclear | Not in release |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.1-14, ImageMagick crashes when processing a crafted TIFF file. Version 7.1.1-14 fixes the issue.
1 affected package
imagemagick
| Package | 22.04 LTS |
|---|---|
| imagemagick | Needs evaluation |
Bio.Entrez in Biopython through 186 allows doctype XXE.
1 affected package
python-biopython
| Package | 22.04 LTS |
|---|---|
| python-biopython | Needs evaluation |
Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases.
1 affected package
freedombox
| Package | 22.04 LTS |
|---|---|
| freedombox | Needs evaluation |
Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a Cross-Site-Scripting (XSS) vulnerability via the animate tag in an SVG document.
1 affected package
roundcube
| Package | 22.04 LTS |
|---|---|
| roundcube | Needs evaluation |
Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a information disclosure vulnerability in the HTML style sanitizer.
1 affected package
roundcube
| Package | 22.04 LTS |
|---|---|
| roundcube | Needs evaluation |