Search CVE reports

Toggle filters

41501 – 41510 of 69300 results

CVE-2018-11797

Medium priority
Fixed

In Apache PDFBox 1.8.0 to 1.8.15 and 2.0.0RC1 to 2.0.11, a carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree.

2 affected packages

libpdfbox2-java, libpdfbox-java

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libpdfbox2-java Not affected Not affected Not affected Not affected Fixed
libpdfbox-java Not affected Not affected Not affected Not affected Fixed
Show less packages

CVE-2018-18016

Low priority
Fixed

ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePCXImage in coders/pcx.c.

1 affected package

imagemagick

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
imagemagick Not affected Not affected Not affected Fixed
Show less packages

CVE-2018-17985

Low priority

Some fixes available 4 of 9

An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption problem caused by the cplus_demangle_type function making recursive calls to itself in certain scenarios...

2 affected packages

binutils, libiberty

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
binutils Not affected Not affected Not affected Not affected Fixed
libiberty Not affected Not affected Not affected Not affected Fixed
Show less packages

CVE-2018-17983

Medium priority

Some fixes available 2 of 3

cext/manifest.c in Mercurial before 4.7.2 has an out-of-bounds read during parsing of a malformed manifest entry.

1 affected package

mercurial

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mercurial Not affected Not affected Fixed
Show less packages

CVE-2018-13258

Negligible priority
Needs evaluation

Mediawiki 1.31 before 1.31.1 misses .htaccess files in the provided tarball used to protect some directories that shouldn't be web accessible.

1 affected package

mediawiki

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mediawiki Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
Show less packages

CVE-2018-0505

Medium priority
Vulnerable

Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where BotPasswords can bypass CentralAuth's account lock

1 affected package

mediawiki

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mediawiki Not affected Not affected Not affected Not affected Vulnerable
Show less packages

CVE-2018-0504

Medium priority
Vulnerable

Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains an information disclosure flaw in the Special:Redirect/logid

1 affected package

mediawiki

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mediawiki Not affected Not affected Not affected Not affected Vulnerable
Show less packages

CVE-2018-0503

Medium priority
Vulnerable

Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where contrary to the documentation, $wgRateLimits entry for 'user' overrides that for 'newbie'.

1 affected package

mediawiki

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mediawiki Not affected Not affected Not affected Not affected Vulnerable
Show less packages

CVE-2018-11784

Medium priority

Some fixes available 4 of 6

When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory (e.g. redirecting to '/foo/' when the user requested '/foo') a specially crafted URL...

4 affected packages

tomcat6, tomcat7, tomcat8, tomcat8.0

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
tomcat6 Not in release Not in release Not in release Not in release Not in release
tomcat7 Not in release Not in release Not in release Not in release Not affected
tomcat8 Not in release Not in release Not in release Not in release Fixed
tomcat8.0 Not in release Not in release Not in release Not in release Not in release
Show less packages

CVE-2018-17974

Medium priority

Some fixes available 2 of 5

An issue was discovered in Tcpreplay 4.3.0 beta1. A heap-based buffer over-read was triggered in the function dlt_en10mb_encode() of the file plugins/dlt_en10mb/en10mb.c, due to inappropriate values in the function memmove(). The...

1 affected package

tcpreplay

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
tcpreplay Not affected Not affected Fixed
Show less packages
  1. Previous page
  2. 4149
  3. 4150
  4. 4151
  5. 4152
  6. 4153
  7. Next page
Export to JSON