Search CVE reports
41231 – 41240 of 69301 results
The Apache Qpid Proton-J transport includes an optional wrapper layer to perform TLS, enabled by use of the 'transport.ssl(...)' methods. Unless a verification mode was explicitly configured, client and server modes previously...
1 affected package
qpid-proton
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| qpid-proton | Not affected | Not affected | Not affected | Not affected | Needs evaluation |
Some fixes available 2 of 7
NVIDIA graphics driver contains a vulnerability that may allow access to application data processed on the GPU through a side channel exposed by the GPU performance counters. Local user access is required. This is not a network or...
19 affected packages
nvidia-graphics-drivers-173, nvidia-graphics-drivers-346, nvidia-graphics-drivers-304, nvidia-graphics-drivers-304-updates, nvidia-graphics-drivers-310-updates...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| nvidia-graphics-drivers-173 | — | — | — | — | Not in release |
| nvidia-graphics-drivers-346 | — | — | — | — | Not in release |
| nvidia-graphics-drivers-304 | — | — | — | — | Not in release |
| nvidia-graphics-drivers-304-updates | — | — | — | — | Not in release |
| nvidia-graphics-drivers-310-updates | — | — | — | — | Not in release |
| nvidia-graphics-drivers-319 | — | — | — | — | Not in release |
| nvidia-graphics-drivers-319-updates | — | — | — | — | Not in release |
| nvidia-graphics-drivers-331 | — | — | — | — | Not in release |
| nvidia-graphics-drivers-331-updates | — | — | — | — | Not in release |
| nvidia-graphics-drivers-340 | — | — | — | — | Ignored |
| nvidia-graphics-drivers-340-updates | — | — | — | — | Not affected |
| nvidia-graphics-drivers-346-updates | — | — | — | — | Not in release |
| nvidia-graphics-drivers-352 | — | — | — | — | Not affected |
| nvidia-graphics-drivers-352-updates | — | — | — | — | Not affected |
| nvidia-graphics-drivers-361 | — | — | — | — | Not affected |
| nvidia-graphics-drivers-367 | — | — | — | — | Not affected |
| nvidia-graphics-drivers-375 | — | — | — | — | Not affected |
| nvidia-graphics-drivers-384 | — | — | — | — | Not affected |
| nvidia-graphics-drivers-390 | — | — | — | — | Fixed |
Some fixes available 3 of 4
There is a possible XSS vulnerability in Rack before 2.0.6 and 1.6.11. Carefully crafted requests can impact the data returned by the `scheme` method on `Rack::Request`. Applications that expect the scheme to be limited to 'http'...
1 affected package
ruby-rack
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ruby-rack | — | — | Not affected | Not affected | Fixed |
In LibSass 3.5-stable, there is an illegal address access at Sass::Eval::operator that will lead to a DoS attack.
1 affected package
libsass
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libsass | Not affected | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
In LibSass 3.5-stable, there is an illegal address access at Sass::Parser::parse_css_variable_value_token that will lead to a DoS attack.
1 affected package
libsass
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libsass | Not affected | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
In ncurses, possibly a 6.x version, there is a NULL pointer dereference at the function _nc_name_match that will lead to a denial of service attack. NOTE: the original report stated version 6.1, but the issue did not reproduce for...
1 affected package
ncurses
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ncurses | — | — | Not affected | Not affected | Not affected |
Netwide Assembler (NASM) before 2.13.02 has a use-after-free in detoken at asm/preproc.c.
1 affected package
nasm
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| nasm | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Not affected |
Netwide Assembler (NASM) 2.14rc16 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for the special cases of the % and $ and ! characters.
1 affected package
nasm
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| nasm | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
Netwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for insufficient input.
1 affected package
nasm
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| nasm | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
Netwide Assembler (NASM) through 2.14rc16 has memory leaks that may lead to DoS, related to nasm_malloc in nasmlib/malloc.c.
1 affected package
nasm
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| nasm | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |