Search CVE reports
35851 – 35860 of 65781 results
An access-control flaw was found in the Octavia service when the cloud platform was deployed using Red Hat OpenStack Platform Director. An attacker could cause new amphorae to run based on any arbitrary image. This meant that a...
1 affected package
octavia
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| octavia | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`. Processes run with `rkt enter` are not limited by cgroups during stage 2 (the actual environment in which the applications run)....
1 affected package
rkt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| rkt | Not in release | Not in release | Needs evaluation | Needs evaluation |
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`. Processes run with `rkt enter` do not have seccomp filtering during stage 2 (the actual environment in which the applications run)....
1 affected package
rkt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| rkt | Not in release | Not in release | Needs evaluation | Needs evaluation |
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`. Processes run with `rkt enter` are given all capabilities during stage 2 (the actual environment in which the applications run)....
1 affected package
rkt
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| rkt | Not in release | Not in release | Needs evaluation | Needs evaluation |
Some fixes available 3 of 5
An issue was discovered in Django 1.11 before 1.11.21, 2.1 before 2.1.9, and 2.2 before 2.2.2. The clickable Current URL value displayed by the AdminURLFieldWidget displays the provided value without validating it as a safe URL....
1 affected package
python-django
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| python-django | Not affected | Not affected | Not affected | Fixed |
Some fixes available 13 of 17
In Firejail before 0.9.60, seccomp filters are writable inside the jail, leading to a lack of intended seccomp restrictions for a process that is joined to the jail after a filter has been modified by an attacker.
1 affected package
firejail
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firejail | Fixed | Fixed | Fixed | Vulnerable |
Some fixes available 36 of 45
A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network.
118 affected packages
linux, linux-lts-trusty, linux-flo, linux-goldfish, linux-aws...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | Not affected | Not affected | Not affected | Fixed |
| linux-lts-trusty | — | — | Not in release | Not in release |
| linux-flo | — | — | Not in release | Not in release |
| linux-goldfish | — | — | Not in release | Not in release |
| linux-aws | Not affected | Not affected | Not affected | Fixed |
| linux-azure | Not affected | Not affected | Not affected | Not affected |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-edge | Not in release | Not in release | Not in release | Not affected |
| linux-euclid | — | — | Not in release | Not in release |
| linux-gcp | Not affected | Not affected | Not affected | Fixed |
| linux-gcp-edge | — | — | Not in release | Fixed |
| linux-gke | Not affected | Not affected | Ignored | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Fixed |
| linux-gke-5.0 | Not in release | Not in release | Not in release | Not affected |
| linux-grouper | — | — | Not in release | Not in release |
| linux-hwe | Not in release | Not in release | Not in release | Fixed |
| linux-hwe-edge | Not in release | Not in release | Not in release | Ignored |
| linux-kvm | Not in release | Not affected | Not affected | Not affected |
| linux-lts-utopic | — | — | Not in release | Not in release |
| linux-lts-vivid | — | — | Not in release | Not in release |
| linux-lts-wily | — | — | Not in release | Not in release |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-maguro | — | — | Not in release | Not in release |
| linux-mako | — | — | Not in release | Not in release |
| linux-manta | — | — | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Fixed |
| linux-oem-osp1 | Not in release | Not in release | Not in release | Fixed |
| linux-oracle | Not affected | Not affected | Not affected | Fixed |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Not affected |
| linux-raspi2 | Not in release | Not in release | Not affected | Fixed |
| linux-raspi2-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-snapdragon | Not in release | Not in release | Not in release | Fixed |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fde | Not affected | Not affected | Ignored | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-bluefield | Not in release | Not in release | Not affected | Not in release |
| linux-fips | Not affected | Not affected | Not affected | Fixed |
| linux-aws-fips | Not affected | Not affected | Not affected | Fixed |
| linux-azure-fips | Not affected | Not affected | Not affected | Fixed |
| linux-gcp-fips | Not affected | Not affected | Not affected | Not affected |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gkeop | Not affected | Not affected | Not affected | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-ibm | Not affected | Not affected | Not affected | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-intel | Not affected | Not in release | Not in release | Not in release |
| linux-intel-iotg | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-iot | Not in release | Not in release | Not affected | Not in release |
| linux-intel-iot-realtime | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency | Not affected | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release |
| linux-raspi | Not affected | Not affected | Not affected | Not in release |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-raspi-realtime | Not affected | Not in release | Not in release | Not in release |
| linux-realtime | Not affected | Not affected | Not in release | Not in release |
| linux-riscv | Not affected | Ignored | Ignored | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release |
| linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-lowlatency-hwe-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-tegra | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-tegra-igx | Not in release | Not affected | Not in release | Not in release |
| linux-azure-nvidia | Not affected | Not in release | Not in release | Not in release |
| linux-azure-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-tegra-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-riscv-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-ibm-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-oracle-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-realtime-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-realtime-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-fde-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-nvidia-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-xilinx | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-fde-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-oracle-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-riscv-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-fde-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-realtime-6.17 | Not affected | Not in release | Not in release | Not in release |
Some fixes available 16 of 20
An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of prop->name, which might allow an attacker to cause a denial of...
112 affected packages
linux-aws, linux-flo, linux-azure, linux-azure-edge, linux-aws-5.0...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-aws | Not affected | Not affected | Not affected | Not affected |
| linux-flo | — | — | Not in release | Not in release |
| linux-azure | Not affected | Not affected | Not affected | Not affected |
| linux-azure-edge | Not in release | Not in release | Not in release | Not affected |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux | Not affected | Not affected | Not affected | Fixed |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-euclid | — | — | Not in release | Not in release |
| linux-gcp | Not affected | Not affected | Not affected | Not affected |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-edge | — | — | Not in release | Not affected |
| linux-gke | Not affected | Not affected | Ignored | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Fixed |
| linux-gke-5.0 | Not in release | Not in release | Not in release | Not affected |
| linux-goldfish | — | — | Not in release | Not in release |
| linux-hwe | Not in release | Not in release | Not in release | Fixed |
| linux-hwe-edge | Not in release | Not in release | Not in release | Ignored |
| linux-kvm | Not in release | Not affected | Not affected | Not affected |
| linux-lts-trusty | — | — | Not in release | Not in release |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-mako | — | — | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Not affected |
| linux-oem-osp1 | Not in release | Not in release | Not in release | Fixed |
| linux-oracle | Not affected | Not affected | Not affected | Not affected |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Not affected |
| linux-raspi2 | Not in release | Not in release | Not affected | Not affected |
| linux-raspi2-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-snapdragon | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fde | Not affected | Not affected | Ignored | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-bluefield | Not in release | Not in release | Not affected | Not in release |
| linux-fips | Not affected | Not affected | Not affected | Fixed |
| linux-aws-fips | Not affected | Not affected | Not affected | Fixed |
| linux-azure-fips | Not affected | Not affected | Not affected | Fixed |
| linux-gcp-fips | Not affected | Not affected | Not affected | Not affected |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gkeop | Not affected | Not affected | Not affected | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-ibm | Not affected | Not affected | Not affected | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-intel | Not affected | Not in release | Not in release | Not in release |
| linux-intel-iotg | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-iot | Not in release | Not in release | Not affected | Not in release |
| linux-intel-iot-realtime | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency | Not affected | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release |
| linux-raspi | Not affected | Not affected | Not affected | Not in release |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-raspi-realtime | Not affected | Not in release | Not in release | Not in release |
| linux-realtime | Not affected | Not affected | Not in release | Not in release |
| linux-riscv | Not affected | Ignored | Ignored | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release |
| linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-lowlatency-hwe-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-tegra | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-tegra-igx | Not in release | Not affected | Not in release | Not in release |
| linux-azure-nvidia | Not affected | Not in release | Not in release | Not in release |
| linux-azure-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-tegra-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-riscv-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-ibm-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-oracle-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-realtime-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-realtime-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-fde-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-nvidia-6.14 | Not affected | Not in release | Not in release | Not in release |
| linux-xilinx | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-fde-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-oracle-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-riscv-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-fde-6.17 | Not affected | Not in release | Not in release | Not in release |
| linux-realtime-6.17 | Not affected | Not in release | Not in release | Not in release |
When PHP EXIF extension is parsing EXIF information from an image, e.g. via exif_read_data() function, in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 it is possible to supply it with data what will...
4 affected packages
php5, php7.0, php7.2, php7.3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| php5 | — | — | — | Not in release |
| php7.0 | — | — | — | Not in release |
| php7.2 | — | — | — | Fixed |
| php7.3 | — | — | — | Not in release |
Function iconv_mime_decode_headers() in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 may perform out-of-buffer read due to integer overflow when parsing MIME headers. This may lead to...
4 affected packages
php7.0, php7.2, php5, php7.3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| php7.0 | — | — | — | Not in release |
| php7.2 | — | — | — | Fixed |
| php5 | — | — | — | Not in release |
| php7.3 | — | — | — | Not in release |