Search CVE reports
3341 – 3350 of 45617 results
An authorization issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4, watchOS 26.4. A maliciously crafted webpage may be able...
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 18.04 LTS |
|---|---|
| qtwebkit-opensource-src | Ignored |
| qtwebkit-source | Ignored |
| webkit2gtk | Ignored |
| webkitgtk | Ignored |
| wpewebkit | — |
This issue was addressed through improved state management. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4....
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 18.04 LTS |
|---|---|
| qtwebkit-opensource-src | Ignored |
| qtwebkit-source | Ignored |
| webkit2gtk | Ignored |
| webkitgtk | Ignored |
| wpewebkit | — |
The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. Processing maliciously crafted web content may lead to an unexpected process crash.
5 affected packages
qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk, wpewebkit
| Package | 18.04 LTS |
|---|---|
| qtwebkit-opensource-src | Ignored |
| qtwebkit-source | Ignored |
| webkit2gtk | Ignored |
| webkitgtk | Ignored |
| wpewebkit | — |
Sending a maliciously crafted message to the kea-ctrl-agent, kea-dhcp-ddns, kea-dhcp4, or kea-dhcp6 daemons over any configured API socket or HA listener can cause the receiving daemon to exit with a stack overflow error. This...
1 affected package
isc-kea
| Package | 18.04 LTS |
|---|---|
| isc-kea | Needs evaluation |
A use-after-return vulnerability exists in the `named` server when handling DNS queries signed with SIG(0). Using a specially-crafted DNS request, an attacker may be able to cause an ACL to improperly (mis)match an IP address. In...
3 affected packages
bind9, bind9-libs, isc-dhcp
| Package | 18.04 LTS |
|---|---|
| bind9 | Not affected |
| bind9-libs | — |
| isc-dhcp | Needs evaluation |
Under certain conditions, `named` may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction signature (TSIG) from a key...
3 affected packages
bind9, bind9-libs, isc-dhcp
| Package | 18.04 LTS |
|---|---|
| bind9 | Not affected |
| bind9-libs | — |
| isc-dhcp | Needs evaluation |
A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain. This issue affects BIND 9 versions 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, and 9.20.9-S1 through...
3 affected packages
bind9, bind9-libs, isc-dhcp
| Package | 18.04 LTS |
|---|---|
| bind9 | Not affected |
| bind9-libs | — |
| isc-dhcp | Needs evaluation |
If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-only servers are generally unaffected, although there are circumstances where...
3 affected packages
bind9, bind9-libs, isc-dhcp
| Package | 18.04 LTS |
|---|---|
| bind9 | Needs evaluation |
| bind9-libs | — |
| isc-dhcp | Needs evaluation |
A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
| Package | 18.04 LTS |
|---|---|
| firefox | — |
| mozjs102 | — |
| mozjs115 | — |
| mozjs38 | Needs evaluation |
| mozjs52 | Ignored |
| mozjs68 | — |
| mozjs78 | — |
| mozjs91 | — |
| thunderbird | — |
Spoofing issue in Thunderbird. This vulnerability was fixed in Thunderbird 149 and Thunderbird 140.9.
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
| Package | 18.04 LTS |
|---|---|
| firefox | — |
| mozjs102 | — |
| mozjs115 | — |
| mozjs38 | Needs evaluation |
| mozjs52 | Ignored |
| mozjs68 | — |
| mozjs78 | — |
| mozjs91 | — |
| thunderbird | — |