Search CVE reports
37741 – 37750 of 69503 results
An issue was discovered in Symfony 4.2.0 to 4.2.11 and 4.3.0 to 4.3.7. The ability to enumerate users was possible due to different handling depending on whether the user existed when making unauthorized attempts to use the switch...
1 affected package
symfony
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| symfony | — | — | Not affected | Not affected | Not affected |
Some fixes available 3 of 6
An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools 1.0.7. An integer overflow can occur while calculating the row's allocation size, that could...
1 affected package
xcftools
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| xcftools | — | — | Not in release | Fixed | Fixed |
Some fixes available 3 of 6
An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools, version 1.0.7. An integer overflow can occur while walking through tiles that could be...
1 affected package
xcftools
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| xcftools | — | — | Not in release | Fixed | Fixed |
Some fixes available 1 of 7
python-rply before 0.7.4 insecurely creates temporary files.
1 affected package
python-rply
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| python-rply | — | — | — | — | Not affected |
Gamera before 3.4.1 insecurely creates temporary files.
1 affected package
gamera
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gamera | — | — | — | — | Not affected |
rc before 1.7.1-5 insecurely creates temporary files.
1 affected package
rc
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| rc | — | — | — | — | — |
9base 1:6-6 and 1:6-7 insecurely creates temporary files which results in predictable filenames.
1 affected package
9base
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| 9base | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
xlockmore before 5.43 'dclock' security bypass vulnerability
1 affected package
xlockmore
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| xlockmore | — | — | — | — | — |
The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords.
1 affected package
ruby-net-ldap
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ruby-net-ldap | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
Slackware 13.1, 13.37, 14.0 and 14.1 contain world-writable permissions on the iodbctest and iodbctestw programs within the libiodbc package, which could allow local users to use RPATH information to execute arbitrary code with...
1 affected package
libiodbc2
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libiodbc2 | — | — | — | — | — |