Search CVE reports
37701 – 37710 of 69503 results
gksu-polkit: permissive PolicyKit policy configuration file allows privilege escalation
1 affected package
gksu-polkit
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gksu-polkit | — | — | — | — | — |
opendnssec misuses libcurl API
1 affected package
opendnssec
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| opendnssec | — | — | — | — | — |
gnome-system-log polkit policy allows arbitrary files on the system to be read
1 affected package
gnome-system-log
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gnome-system-log | — | — | — | — | — |
Claws Mail vCalendar plugin: credentials exposed on interface
1 affected package
claws-mail-extra-plugins
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| claws-mail-extra-plugins | — | — | — | — | — |
quagga (ospf6d) 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal
1 affected package
quagga
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| quagga | Not in release | Not in release | Not in release | Vulnerable | Vulnerable |
Some fixes available 5 of 6
Python keyring has insecure permissions on new databases allowing world-readable files to be created
1 affected package
python-keyring
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| python-keyring | — | — | — | — | — |
Not in release
A flaw was found in cri-o, as a result of all pod-related processes being placed in the same memory cgroup. This can result in container management (conmon) processes being killed if a workload process triggers an out-of-memory...
1 affected package
cri-o
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| cri-o | — | Not in release | Not in release | Not in release | — |
The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry...
2 affected packages
golang-github-containers-image, singularity-container
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| golang-github-containers-image | Needs evaluation | Needs evaluation | Needs evaluation | Ignored | Not in release |
| singularity-container | Not affected | Needs evaluation | Not in release | Not in release | Ignored |
A vulnerability in the email parsing module Clam AntiVirus (ClamAV) Software versions 0.102.0, 0.101.4 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The...
1 affected package
clamav
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| clamav | — | — | — | — | Fixed |
Some fixes available 12 of 13
When encrypting with a block cipher, if a call to NSC_EncryptUpdate was made with data smaller than the block size, a small out of bounds write could occur. This could have caused heap corruption and a potentially exploitable...
3 affected packages
firefox, nss, thunderbird
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| firefox | — | — | — | — | Fixed |
| nss | — | — | — | — | Fixed |
| thunderbird | — | — | — | — | Fixed |