Search CVE reports
41741 – 41750 of 69503 results
Telegram Desktop (aka tdesktop) 1.3.16 alpha, when "Use proxy" is enabled, sends credentials and application data in cleartext over the SOCKS5 protocol.
1 affected package
telegram-desktop
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| telegram-desktop | Not in release | Not in release | Needs evaluation | Ignored | Ignored |
Some fixes available 2 of 5
Tcpreplay v4.3.0 beta1 contains a heap-based buffer over-read. The get_next_packet() function in the send_packets.c file uses the memcpy() function unsafely to copy sequences from the source buffer pktdata to the destination...
1 affected package
tcpreplay
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| tcpreplay | — | — | Not affected | Not affected | Fixed |
Some fixes available 2 of 5
A heap-based buffer over-read exists in the function fast_edit_packet() in the file send_packets.c of Tcpreplay v4.3.0 beta1. This can lead to Denial of Service (DoS) and potentially Information Exposure when the...
1 affected package
tcpreplay
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| tcpreplay | — | — | Not affected | Not affected | Fixed |
Jekyll through 3.6.2, 3.7.x through 3.7.3, and 3.8.x through 3.8.3 allows attackers to access arbitrary files by specifying a symlink in the "include" key in the "_config.yml" file.
1 affected package
jekyll
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| jekyll | Not affected | Not affected | Not affected | Not affected | Vulnerable |
In Open Ticket Request System (OTRS) 4.0.x before 4.0.32, 5.0.x before 5.0.30, and 6.0.x before 6.0.11, an attacker could send a malicious email to an OTRS system. If a user with admin permissions opens it, it causes deletions of...
1 affected package
otrs2
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| otrs2 | Not in release | Not in release | Not affected | Not affected | Vulnerable |
In Open Ticket Request System (OTRS) 4.0.x before 4.0.32, 5.0.x before 5.0.30, and 6.0.x before 6.0.11, an attacker could send a malicious email to an OTRS system. If a logged in user opens it, the email could cause the browser to...
1 affected package
otrs2
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| otrs2 | Not in release | Not in release | Not affected | Not affected | Vulnerable |
Some fixes available 13 of 29
A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
5 affected packages
qtwebkit, qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| qtwebkit | — | Not in release | Not in release | Not in release | Not in release |
| qtwebkit-opensource-src | — | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | — | Not in release | Not in release | Not in release | Ignored |
| webkit2gtk | — | Fixed | Fixed | Fixed | Fixed |
| webkitgtk | — | Not in release | Not in release | Not in release | Ignored |
Some fixes available 13 of 29
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
5 affected packages
qtwebkit, qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| qtwebkit | — | Not in release | Not in release | Not in release | Not in release |
| qtwebkit-opensource-src | — | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | — | Not in release | Not in release | Not in release | Ignored |
| webkit2gtk | — | Fixed | Fixed | Fixed | Fixed |
| webkitgtk | — | Not in release | Not in release | Not in release | Ignored |
Some fixes available 13 of 29
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
5 affected packages
qtwebkit, qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| qtwebkit | — | Not in release | Not in release | Not in release | Not in release |
| qtwebkit-opensource-src | — | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | — | Not in release | Not in release | Not in release | Ignored |
| webkit2gtk | — | Fixed | Fixed | Fixed | Fixed |
| webkitgtk | — | Not in release | Not in release | Not in release | Ignored |
Some fixes available 13 of 29
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
5 affected packages
qtwebkit, qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| qtwebkit | — | Not in release | Not in release | Not in release | Not in release |
| qtwebkit-opensource-src | — | Ignored | Ignored | Ignored | Ignored |
| qtwebkit-source | — | Not in release | Not in release | Not in release | Ignored |
| webkit2gtk | — | Fixed | Fixed | Fixed | Fixed |
| webkitgtk | — | Not in release | Not in release | Not in release | Ignored |