Search CVE reports
41471 – 41480 of 69070 results
Some fixes available 1 of 2
When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address,...
1 affected package
neutron
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| neutron | Not affected | Not affected | Not affected | Not affected | Fixed |
An issue was discovered in Docker Moby before 17.06.0. The Docker engine validated a client TLS certificate using both the configured client CA root certificate and all system roots on non-Windows systems. This allowed a client...
1 affected package
docker.io
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| docker.io | — | — | — | — | Fixed |
An issue has been found in PowerDNS Authoritative Server before 3.4.11 and 4.0.2 allowing a remote, unauthenticated attacker to cause a denial of service by opening a large number of TCP connections to the web server. If the web...
1 affected package
pdns
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| pdns | Not affected | Not affected | Not affected | Not affected | Not affected |
It was found that Kubernetes as used by Openshift Enterprise 3 did not correctly validate X.509 client intermediate certificate host name fields. An attacker could use this flaw to bypass authentication requirements by using a...
1 affected package
kubernetes
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| kubernetes | — | Not affected | Not affected | Not affected | Not in release |
Some fixes available 2 of 5
Monit before version 5.20.0 is vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host or disable/enable monitoring for a specific service.
1 affected package
monit
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| monit | — | — | — | — | Not affected |
Some fixes available 2 of 3
_bson_iter_next_internal in bson-iter.c in libbson 1.12.0, as used in MongoDB mongo-c-driver and other products, has a heap-based buffer over-read via a crafted bson buffer.
1 affected package
libbson
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| libbson | — | — | Not in release | Not in release | Fixed |
Some fixes available 20 of 22
In nfc_llcp_build_sdreq_tlv of llcp_commands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is...
77 affected packages
linux-aws, linux-azure, linux-azure-edge, linux-euclid, linux-oem...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| linux-aws | — | Not affected | Not affected | Not affected | Fixed |
| linux-azure | — | Not affected | Not affected | Not affected | Fixed |
| linux-azure-edge | — | Not in release | Not in release | Not in release | Not affected |
| linux-euclid | — | — | — | — | Not in release |
| linux-oem | — | Not in release | Not in release | Not in release | Fixed |
| linux | — | Not affected | Not affected | Not affected | Fixed |
| linux-flo | — | — | — | — | Not in release |
| linux-gcp | — | Not affected | Not affected | Not affected | Fixed |
| linux-gke | — | Not affected | Not affected | Ignored | Not in release |
| linux-goldfish | — | — | — | — | Not in release |
| linux-grouper | — | — | — | — | Not in release |
| linux-hwe | — | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-edge | — | Not in release | Not in release | Not in release | Not affected |
| linux-kvm | — | Not in release | Not affected | Not affected | Fixed |
| linux-lts-trusty | — | — | — | — | Not in release |
| linux-lts-utopic | — | — | — | — | Not in release |
| linux-lts-vivid | — | — | — | — | Not in release |
| linux-lts-wily | — | — | — | — | Not in release |
| linux-lts-xenial | — | Not in release | Not in release | Not in release | Not in release |
| linux-maguro | — | — | — | — | Not in release |
| linux-mako | — | — | — | — | Not in release |
| linux-manta | — | — | — | — | Not in release |
| linux-raspi2 | — | Not in release | Not in release | Ignored | Fixed |
| linux-snapdragon | — | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-5.4 | — | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-6.8 | — | Not in release | Not affected | Not in release | Not in release |
| linux-aws-5.4 | — | Not in release | Not in release | Not in release | Not affected |
| linux-aws-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-aws-hwe | — | Not in release | Not in release | Not in release | Not in release |
| linux-azure-4.15 | — | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.4 | — | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fde | — | Not affected | Not affected | Ignored | Not in release |
| linux-azure-fde-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-bluefield | — | Not in release | Not in release | Not affected | Not in release |
| linux-fips | — | Not in release | Not affected | Not affected | Not affected |
| linux-aws-fips | — | Not in release | Not affected | Not affected | Not affected |
| linux-azure-fips | — | Not in release | Not affected | Not affected | Not affected |
| linux-gcp-fips | — | Not in release | Not affected | Not affected | Not affected |
| linux-gcp-4.15 | — | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.4 | — | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-gkeop | — | Not affected | Not affected | Not affected | Not in release |
| linux-gkeop-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-ibm | — | Not affected | Not affected | Not affected | Not in release |
| linux-ibm-5.4 | — | Not in release | Not in release | Not in release | Not affected |
| linux-ibm-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-intel | — | Not affected | Not in release | Not in release | Not in release |
| linux-intel-iotg | — | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-iot | — | Not in release | Not in release | Not affected | Not in release |
| linux-intel-iot-realtime | — | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency | — | Not affected | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency-hwe-6.8 | — | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia | — | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-6.5 | — | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.8 | — | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-lowlatency | — | Not affected | Not in release | Not in release | Not in release |
| linux-oracle | — | Not affected | Not affected | Not affected | Not affected |
| linux-oracle-5.4 | — | Not in release | Not in release | Not in release | Not affected |
| linux-oracle-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-oem-6.8 | — | Not affected | Not in release | Not in release | Not in release |
| linux-raspi | — | Not affected | Not affected | Not affected | Not in release |
| linux-raspi-5.4 | — | Not in release | Not in release | Not in release | Not affected |
| linux-raspi-realtime | — | Not affected | Not in release | Not in release | Not in release |
| linux-realtime | — | Not affected | Not affected | Not in release | Not in release |
| linux-riscv | — | Not affected | Ignored | Ignored | Not in release |
| linux-riscv-5.15 | — | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-6.8 | — | Not in release | Not affected | Not in release | Not in release |
| linux-xilinx-zynqmp | — | Not in release | Not affected | Not affected | Not in release |
| linux-aws-6.8 | — | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.8 | — | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-6.8 | — | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.8 | — | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.11 | — | Not affected | Not in release | Not in release | Not in release |
An issue was discovered in Artifex Ghostscript before 9.25. Incorrect "restoration of privilege" checking when running out of stack during exception handling could be used by attackers able to supply crafted PostScript to execute...
1 affected package
ghostscript
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ghostscript | — | — | — | — | Fixed |
A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. A race condition between connect() and close() function may allow an attacker using the...
42 affected packages
linux-aws, linux-aws-hwe, linux-azure, linux-aws-5.0, linux-aws-5.3...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| linux-aws | — | — | — | Not affected | Fixed |
| linux-aws-hwe | — | — | — | Not in release | Not in release |
| linux-azure | — | — | — | Not affected | Fixed |
| linux-aws-5.0 | — | — | — | Not in release | Not affected |
| linux-aws-5.3 | — | — | — | Not in release | Not affected |
| linux-azure-4.15 | — | — | — | Not in release | Not affected |
| linux | — | — | — | Not affected | Fixed |
| linux-azure-5.3 | — | — | — | Not in release | Not affected |
| linux-azure-edge | — | — | — | Not in release | Fixed |
| linux-euclid | — | — | — | Not in release | Not in release |
| linux-flo | — | — | — | Not in release | Not in release |
| linux-gcp | — | — | — | Not affected | Fixed |
| linux-gcp-5.3 | — | — | — | Not in release | Not affected |
| linux-gcp-edge | — | — | — | Not in release | Ignored |
| linux-gke | — | — | — | Not affected | Not in release |
| linux-gke-4.15 | — | — | — | Not in release | Not affected |
| linux-gke-5.0 | — | — | — | Not in release | Not affected |
| linux-gke-5.3 | — | — | — | Not in release | Not affected |
| linux-goldfish | — | — | — | Not in release | Not in release |
| linux-grouper | — | — | — | Not in release | Not in release |
| linux-hwe | — | — | — | Not in release | Fixed |
| linux-hwe-edge | — | — | — | Not in release | Not affected |
| linux-kvm | — | — | — | Not affected | Fixed |
| linux-lts-trusty | — | — | — | Not in release | Not in release |
| linux-lts-utopic | — | — | — | Not in release | Not in release |
| linux-lts-vivid | — | — | — | Not in release | Not in release |
| linux-lts-wily | — | — | — | Not in release | Not in release |
| linux-lts-xenial | — | — | — | Not in release | Not in release |
| linux-maguro | — | — | — | Not in release | Not in release |
| linux-mako | — | — | — | Not in release | Not in release |
| linux-manta | — | — | — | Not in release | Not in release |
| linux-oem | — | — | — | Not in release | Fixed |
| linux-oem-5.6 | — | — | — | Not affected | Not in release |
| linux-oem-osp1 | — | — | — | Not in release | Not affected |
| linux-oracle | — | — | — | Not affected | Fixed |
| linux-oracle-5.0 | — | — | — | Not in release | Not affected |
| linux-oracle-5.3 | — | — | — | Not in release | Not affected |
| linux-raspi | — | — | — | Not affected | Not in release |
| linux-raspi2 | — | — | — | Not affected | Fixed |
| linux-raspi2-5.3 | — | — | — | Not in release | Not affected |
| linux-riscv | — | — | — | Not affected | Not in release |
| linux-snapdragon | — | — | — | Not in release | Not affected |
In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders/meta.c was found.
1 affected package
imagemagick
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| imagemagick | — | — | — | — | Fixed |