Search CVE reports
37781 – 37790 of 69503 results
Unbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec module that can cause shell code execution after receiving a specially crafted answer. This issue can only be triggered if unbound was compiled...
1 affected package
unbound
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| unbound | — | — | — | — | Not affected |
Node-cookie-signature before 1.0.6 is affected by a timing attack due to the type of comparison used.
1 affected package
node-cookie-signature
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| node-cookie-signature | Not affected | Not affected | Not affected | Not affected | Vulnerable |
RubyGems passenger 4.0.0 betas 1 and 2 allows remote attackers to delete arbitrary files during the startup process.
1 affected package
ruby-passenger
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ruby-passenger | — | — | — | — | — |
nuSOAP before 0.7.3-5 does not properly check the hostname of a cert.
1 affected package
nusoap
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| nusoap | — | — | — | — | — |
Falconpl before 0.9.6.9-git20120606 misuses the libcurl API which may allow remote attackers to interfere with security checks.
1 affected package
falconpl
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| falconpl | — | — | — | — | — |
ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executing user specified commands, which can result in command execution with root privileges.
1 affected package
ktsuss
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ktsuss | — | — | — | — | — |
Some fixes available 2 of 4
Multiple Stack-based Buffer Overflow vulnerabilities exists in Sniffit prior to 0.3.7 via a crafted configuration file that will bypass Non-eXecutable bit NX, stack smashing protector SSP, and address space layout randomization...
1 affected package
sniffit
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| sniffit | — | — | — | Not affected | Not affected |
uzbl: Information disclosure via world-readable cookies storage file
1 affected package
uzbl
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| uzbl | — | — | — | — | — |
gnusound 0.7.5 has format string issue
1 affected package
gnusound
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gnusound | — | — | — | — | — |
nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM)
1 affected package
nginx
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| nginx | — | — | — | — | — |