Search CVE reports
37721 – 37730 of 69503 results
An issue was discovered in channels/chan_sip.c in Sangoma Asterisk 13.x before 13.29.2, 16.x before 16.6.2, and 17.x before 17.0.1, and Certified Asterisk 13.21 before cert5. A SIP request can be sent to Asterisk that can change a...
1 affected package
asterisk
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| asterisk | Not affected | Not affected | Not affected | Needs evaluation | Needs evaluation |
libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files
1 affected package
libbluray
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libbluray | Not affected | Not affected | Not affected | Not affected | Not affected |
Designate does not enforce the DNS protocol limit concerning record set sizes
1 affected package
designate
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| designate | — | — | — | — | — |
Some fixes available 34 of 46
In the AppleTalk subsystem in the Linux kernel before 5.1, there is a potential NULL pointer dereference because register_snap_client may return NULL. This will lead to denial of service in net/appletalk/aarp.c...
115 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.15, linux-aws-5.4...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| linux | Not affected | Not affected | Not affected | Not affected | Fixed |
| linux-aws | Not affected | Not affected | Not affected | Not affected | Fixed |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Not in release | Fixed |
| linux-aws-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-aws-6.14 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-aws-6.17 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-aws-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-aws-fips | Not in release | Not affected | Not affected | Not affected | Fixed |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release | Not in release |
| linux-azure | Not affected | Not affected | Not affected | Not affected | Fixed |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-azure-6.11 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-azure-6.14 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-azure-6.17 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-azure-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-azure-edge | Not in release | Not in release | Not in release | Not in release | Ignored |
| linux-azure-fde | Not affected | Not affected | Not affected | Ignored | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fde-6.14 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-azure-fde-6.17 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-azure-fde-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-azure-fips | Not in release | Not affected | Not affected | Not affected | Fixed |
| linux-azure-nvidia | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-azure-nvidia-6.14 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-bluefield | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-fips | Not in release | Not affected | Not affected | Not affected | Fixed |
| linux-gcp | Not affected | Not affected | Not affected | Not affected | Fixed |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-6.11 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.14 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.17 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-edge | — | — | — | Not in release | Ignored |
| linux-gcp-fips | Not in release | Not affected | Not affected | Not affected | Not affected |
| linux-gke | Not in release | Not affected | Not affected | Ignored | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Not in release | Fixed |
| linux-gke-5.0 | Not in release | Not in release | Not in release | Not in release | Fixed |
| linux-gke-5.3 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-gkeop | Not in release | Not affected | Not affected | Not affected | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-hwe | Not in release | Not in release | Not in release | Not in release | Fixed |
| linux-hwe-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-6.11 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.14 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.17 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-edge | Not in release | Not in release | Not in release | Not in release | Ignored |
| linux-ibm | Not affected | Not affected | Not affected | Not affected | Not in release |
| linux-ibm-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-ibm-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-intel | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-intel-iot-realtime | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-iot | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-kvm | Not in release | Not in release | Not affected | Not affected | Fixed |
| linux-lowlatency | Not in release | Not affected | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency-hwe-6.11 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-lts-trusty | — | — | — | Not in release | Not in release |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release | Not in release |
| linux-nvidia | Not affected | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-6.11 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-6.17 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-7.0 | Not in release | Not in release | Not in release | Not in release | Not in release |
| linux-nvidia-bos | Not in release | Not in release | Not in release | Not in release | Not in release |
| linux-nvidia-bos-7.0 | Not in release | Not in release | Not in release | Not in release | Not in release |
| linux-nvidia-lowlatency | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-tegra | Not in release | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-tegra-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-nvidia-tegra-igx | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Not in release | Fixed |
| linux-oem-5.6 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-oem-6.11 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.14 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.17 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-oem-osp1 | Not in release | Not in release | Not in release | Not in release | Fixed |
| linux-oracle | Not affected | Not affected | Not affected | Not affected | Fixed |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Not in release | Fixed |
| linux-oracle-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.3 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-oracle-6.14 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-oracle-6.17 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-oracle-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-raspi | Not affected | Not affected | Not affected | Not affected | Not in release |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-raspi-realtime | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-raspi2 | Not in release | Not in release | Not in release | Not affected | Fixed |
| linux-raspi2-5.3 | Not in release | Not in release | Not in release | Not in release | Not affected |
| linux-realtime | Not affected | Not affected | Not affected | Not in release | Not in release |
| linux-realtime-6.14 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-realtime-6.17 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-realtime-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-riscv | Not affected | Not affected | Ignored | Ignored | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-6.14 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-riscv-6.17 | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-riscv-6.8 | Not in release | Not in release | Not affected | Not in release | Not in release |
| linux-snapdragon | Not in release | Not in release | Not in release | Not in release | Fixed |
| linux-xilinx | Not in release | Not affected | Not in release | Not in release | Not in release |
| linux-xilinx-zynqmp | Not in release | Not in release | Not affected | Not affected | Not in release |
Some fixes available 2 of 4
ansible-playbook -k and ansible cli tools, all versions 2.8.x before 2.8.4, all 2.7.x before 2.7.13 and all 2.6.x before 2.6.19, prompt passwords by expanding them from templates as they could contain special characters. Passwords...
1 affected package
ansible
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ansible | — | Not affected | Not affected | Not affected | Fixed |
Some fixes available 16 of 17
In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive.
1 affected package
libarchive
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libarchive | — | Fixed | Fixed | Fixed | Fixed |
An issue was discovered in Symfony 3.4.0 through 3.4.34, 4.2.0 through 4.2.11, and 4.3.0 through 4.3.7. Serializing certain cache adapter interfaces could result in remote code injection. This is related to symfony/cache.
1 affected package
symfony
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| symfony | Not affected | Not affected | Not affected | Not affected | Vulnerable |
An issue was discovered in Symfony 2.8.0 through 2.8.50, 3.4.0 through 3.4.34, 4.2.0 through 4.2.11, and 4.3.0 through 4.3.7. If an application passes unvalidated user input as the file for which MIME type validation should occur,...
1 affected package
symfony
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| symfony | Not affected | Not affected | Not affected | Not affected | Vulnerable |
An issue was discovered in Symfony 2.8.0 through 2.8.50, 3.4.0 through 3.4.34, 4.2.0 through 4.2.11, and 4.3.0 through 4.3.7. The UriSigner was subject to timing attacks. This is related to symfony/http-kernel.
1 affected package
symfony
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| symfony | Not affected | Not affected | Not affected | Not affected | Vulnerable |
An issue was discovered in Symfony before 4.2.12 and 4.3.x before 4.3.8. The VarExport component incorrectly escapes strings, allowing some specially crafted ones to escalate to execution of arbitrary PHP code. This is related to...
1 affected package
symfony
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| symfony | — | — | Not affected | Not affected | Not affected |