Search CVE reports

41 – 50 of 1736 results

Detailed view

Sort by:

CVE-2014-8181

Low priority

Ignored

The kernel in Red Hat Enterprise Linux 7 and MRG-2 does not clear garbage data for SG_IO buffer, which may leaking sensitive information to userspace.

27 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-gke...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Not affected
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Not affected
linux-flo	—	—	—	—	Not affected
linux-gke	—	—	—	—	Not affected
linux-goldfish	—	—	—	—	Not affected
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Not affected
linux-hwe-edge	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Not affected
linux-manta	—	—	—	—	Not in release
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Not affected
linux-snapdragon	—	—	—	—	Not affected
linux-ti-omap4	—	—	—	—	Not in release

PhantomJS through 2.1.1 has an arbitrary file read vulnerability, as demonstrated by an XMLHttpRequest for a file:// URI. The vulnerability exists in the page.open() function of the webpage module, which loads a specified URL and...

1 affected package

phantomjs

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
phantomjs	Not in release	Not in release	Vulnerable	Vulnerable	Vulnerable

CVE-2013-2255

Low priority

Ignored

HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate server-side SSL certificates.

6 affected packages

cinder, keystone, nova, python-keystoneclient, quantum, swift

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cinder	—	—	—	—	—
keystone	—	—	—	—	—
nova	—	—	—	—	—
python-keystoneclient	—	—	—	—	—
quantum	—	—	—	—	—
swift	—	—	—	—	—

CVE-2013-1934

Medium priority

Ignored

A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.0rc1 before 1.2.14 allows remote authenticated users to inject arbitrary web script or HTML via a complex value.

1 affected package

mantis

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mantis	—	—	—	—	Not in release

CVE-2013-1932

Medium priority

Not affected

A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via a project name.

1 affected package

mantis

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mantis	—	—	—	—	—

CVE-2013-1931

Medium priority

Not affected

A cross-site scripting (XSS) vulnerability in MantisBT 1.2.14 allows remote attackers to inject arbitrary web script or HTML via a version, related to deleting a version.

1 affected package

mantis

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mantis	—	—	—	—	—

CVE-2013-1930

Medium priority

Not affected

MantisBT 1.2.12 before 1.2.15 allows authenticated users to by the workflow restriction and close issues.

1 affected package

mantis

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
mantis	—	—	—	—	—

CVE-2019-16707

Low priority

Needs evaluation

Hunspell 1.7.0 has an invalid read operation in SuggestMgr::leftcommonsubstring in suggestmgr.cxx.

10 affected packages

calibre, chromium, enchant, firefox, focuswriter...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
calibre	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation
chromium	Not in release	Not in release	Not in release	Not in release	Not in release
enchant	Not in release	Not in release	Needs evaluation	Needs evaluation	Needs evaluation
firefox	Not affected	Not affected	Not affected	Not affected	Not affected
focuswriter	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation
hunspell	Not affected	Not affected	Needs evaluation	Needs evaluation	Needs evaluation
postbooks	Not in release	Not in release	Not in release	Needs evaluation	Needs evaluation
qtwebengine-opensource-src	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Not in release
texmaker	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation
thunderbird	Not affected	Not affected	Not affected	Not affected	Not affected

CVE-2019-16275

Medium priority

Fixed

hostapd before 2.10 and wpa_supplicant before 2.10 allow an incorrect indication of disconnection in certain situations because source address validation is mishandled. This is a denial of service that should have been prevented...

2 affected packages

wpa, wpasupplicant

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
wpa	—	—	—	Fixed	Fixed
wpasupplicant	—	—	—	Not in release	Not in release

CVE-2018-16871

Medium priority

Some fixes available 26 of 31

A flaw was found in the Linux kernel’s NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an...

74 affected packages

linux, linux-aws, linux-aws-5.15, linux-aws-5.4, linux-aws-fips...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	Not affected	Not affected	Not affected	Fixed	Not affected
linux-aws	Not affected	Not affected	Not affected	Fixed	Not affected
linux-aws-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-aws-5.4	Not in release	Not in release	Not in release	Not affected	Not in release
linux-aws-fips	Not in release	Not affected	Not affected	Not in release	Ignored
linux-aws-hwe	Not in release	Not in release	Not in release	Not in release	Fixed
linux-azure	Not affected	Not affected	Not affected	Fixed	Fixed
linux-azure-4.15	Not in release	Not in release	Not in release	Not affected	Not in release
linux-azure-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-azure-5.4	Not in release	Not in release	Not in release	Not affected	Not in release
linux-azure-edge	Not in release	Not in release	Not in release	Fixed	Not in release
linux-azure-fde	Not in release	Not affected	Ignored	Not in release	Not in release
linux-azure-fde-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-azure-fips	Not in release	Not affected	Not affected	Not in release	Ignored
linux-bluefield	Not in release	Not in release	Not affected	Not in release	Not in release
linux-euclid	—	—	—	Not in release	Ignored
linux-fips	Not in release	Not affected	Not affected	Not in release	Not in release
linux-flo	—	—	—	Not in release	Ignored
linux-gcp	Not affected	Not affected	Not affected	Fixed	Fixed
linux-gcp-4.15	Not in release	Not in release	Not in release	Not affected	Not in release
linux-gcp-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-gcp-5.4	Not in release	Not in release	Not in release	Not affected	Not in release
linux-gcp-edge	—	—	—	Fixed	Not in release
linux-gcp-fips	Not in release	Not affected	Not affected	Not in release	Ignored
linux-gke	Not affected	Not affected	Ignored	Not in release	Ignored
linux-gke-4.15	Not in release	Not in release	Not in release	Not affected	Not in release
linux-gkeop	Not affected	Not affected	Not affected	Not in release	Not in release
linux-gkeop-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-goldfish	—	—	—	Not in release	Ignored
linux-grouper	—	—	—	Not in release	Not in release
linux-hwe	Not in release	Not in release	Not in release	Fixed	Fixed
linux-hwe-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-hwe-5.4	Not in release	Not in release	Not in release	Not affected	Not in release
linux-hwe-6.8	Not in release	Not affected	Not in release	Not in release	Not in release
linux-hwe-edge	Not in release	Not in release	Not in release	Not affected	Fixed
linux-ibm	Not affected	Not affected	Not affected	Not in release	Not in release
linux-ibm-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-ibm-5.4	Not in release	Not in release	Not in release	Not affected	Not in release
linux-intel	Not affected	Not in release	Not in release	Not in release	Not in release
linux-intel-iot-realtime	Not in release	Not affected	Not in release	Not in release	Not in release
linux-intel-iotg	Not in release	Not affected	Not in release	Not in release	Not in release
linux-intel-iotg-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-iot	Not in release	Not in release	Not affected	Not in release	Not in release
linux-kvm	Not in release	Not affected	Not affected	Fixed	Not affected
linux-lowlatency	Not affected	Not affected	Not in release	Not in release	Not in release
linux-lowlatency-hwe-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-lowlatency-hwe-6.8	Not in release	Not affected	Not in release	Not in release	Not in release
linux-lts-trusty	—	—	—	Not in release	Not in release
linux-lts-utopic	—	—	—	Not in release	Not in release
linux-lts-vivid	—	—	—	Not in release	Not in release
linux-lts-wily	—	—	—	Not in release	Not in release
linux-lts-xenial	Not in release	Not in release	Not in release	Not in release	Not in release
linux-maguro	—	—	—	Not in release	Not in release
linux-mako	—	—	—	Not in release	Ignored
linux-manta	—	—	—	Not in release	Not in release
linux-nvidia	Not affected	Not affected	Not in release	Not in release	Not in release
linux-nvidia-6.5	Not in release	Not affected	Not in release	Not in release	Not in release
linux-nvidia-6.8	Not in release	Not affected	Not in release	Not in release	Not in release
linux-nvidia-lowlatency	Not affected	Not in release	Not in release	Not in release	Not in release
linux-oem	Not in release	Not in release	Not in release	Fixed	Ignored
linux-oem-6.8	Not affected	Not in release	Not in release	Not in release	Not in release
linux-oracle	Not affected	Not affected	Not affected	Fixed	Fixed
linux-oracle-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-oracle-5.4	Not in release	Not in release	Not in release	Not affected	Not in release
linux-raspi	Not affected	Not affected	Not affected	Not in release	Not in release
linux-raspi-5.4	Not in release	Not in release	Not in release	Not affected	Not in release
linux-raspi-realtime	Not affected	Not in release	Not in release	Not in release	Not in release
linux-raspi2	Not in release	Not in release	Ignored	Fixed	Not affected
linux-realtime	Not affected	Not affected	Not in release	Not in release	Not in release
linux-riscv	Not affected	Ignored	Ignored	Not in release	Not in release
linux-riscv-5.15	Not in release	Not in release	Not affected	Not in release	Not in release
linux-riscv-6.8	Not in release	Not affected	Not in release	Not in release	Not in release
linux-snapdragon	Not in release	Not in release	Not in release	Not affected	Not affected
linux-xilinx-zynqmp	Not in release	Not affected	Not affected	Not in release	Not in release

Export to JSON

Results by page: