Search CVE reports
12751 – 12760 of 63054 results
Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 on Windows allows command injection via im_convert_path and im_identify_path. NOTE: this issue exists because of an incomplete fix for CVE-2020-12641.
1 affected package
roundcube
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| roundcube | Not affected | Not affected | Not affected | Not affected |
Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via list columns from user preferences.
1 affected package
roundcube
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| roundcube | Not affected | Fixed | Fixed | Fixed |
Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via SVG animate attributes.
1 affected package
roundcube
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| roundcube | Not affected | Fixed | Fixed | Fixed |
Some fixes available 7 of 8
netplan leaks the private key of wireguard to local users. Versions after 1.0 are not affected.
1 affected package
netplan.io
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| netplan.io | Fixed | Fixed | Fixed | Vulnerable |
Some fixes available 1 of 2
smartdns commit 54b4dc was discovered to contain a misaligned address at smartdns/src/dns.c.
1 affected package
smartdns
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| smartdns | Not affected | Fixed | Not in release | — |
Some fixes available 1 of 2
smartdns commit 54b4dc was discovered to contain a misaligned address at smartdns/src/util.c.
1 affected package
smartdns
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| smartdns | Not affected | Fixed | Not in release | — |
An issue in obgm and Libcoap v.a3ed466 allows a remote attacker to cause a denial of service via thecoap_context_t function in the src/coap_threadsafe.c:297:3 component.
3 affected packages
libcoap, libcoap2, libcoap3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libcoap | Not in release | Not in release | Not in release | Needs evaluation |
| libcoap2 | Not in release | Needs evaluation | Needs evaluation | — |
| libcoap3 | Needs evaluation | Needs evaluation | Not in release | — |
dnsmasq 2.9 is vulnerable to Integer Overflow via forward_query.
1 affected package
dnsmasq
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| dnsmasq | Not affected | Fixed | Fixed | Fixed |
The iSTAR door controllers running firmware prior to version 6.6.B, does not support authenticated communications with ICU, which may allow an attacker to gain unauthorized access
1 affected package
icu
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| icu | Not affected | Not affected | Not affected | Not affected |
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
1 affected package
pytorch
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| pytorch | Not in release | Not affected | Not in release | — |