Search CVE reports
51451 – 51460 of 63054 results
Some fixes available 3 of 6
Unspecified vulnerability in Oracle MySQL 5.5.30 and earlier and 5.6.10 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.
5 affected packages
mysql-5.1, mysql-5.5, mysql-cluster-7.0, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mysql-5.1 | — | — | — | — |
| mysql-5.5 | — | — | — | — |
| mysql-cluster-7.0 | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — |
Some fixes available 5 of 8
Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier, 5.5.29 and earlier, and 5.6.10 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Locking.
5 affected packages
mysql-5.1, mysql-5.5, mysql-cluster-7.0, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mysql-5.1 | — | — | — | — |
| mysql-5.5 | — | — | — | — |
| mysql-cluster-7.0 | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — |
Some fixes available 3 of 6
Unspecified vulnerability in Oracle MySQL 5.5.30 and earlier and 5.6.9 and earlier allows local users to affect availability via unknown vectors related to Server Partition.
5 affected packages
mysql-5.1, mysql-5.5, mysql-cluster-7.0, mysql-dfsg-5.0, mysql-dfsg-5.1
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mysql-5.1 | — | — | — | — |
| mysql-5.5 | — | — | — | — |
| mysql-cluster-7.0 | — | — | — | — |
| mysql-dfsg-5.0 | — | — | — | — |
| mysql-dfsg-5.1 | — | — | — | — |
Multiple cross-site scripting (XSS) vulnerabilities in tbl_gis_visualization.php in phpMyAdmin 3.5.x before 3.5.8 might allow remote attackers to inject arbitrary web script or HTML via the (1) visualizationSettings[width] or (2)...
1 affected package
phpmyadmin
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| phpmyadmin | — | — | — | — |
qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the header to identify a different...
2 affected packages
qemu, qemu-kvm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qemu | — | — | — | — |
| qemu-kvm | — | — | — | — |
Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the Linux kernel before 3.8.9, as used in a certain Motorola build of Android 4.1.2 and other products, allows local users to create a read-write memory mapping...
41 affected packages
linux, linux-lts-xenial, linux-gkeop-5.4, linux-oem-5.6, linux-aws...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | — | — | Not affected | Not affected |
| linux-lts-xenial | — | — | Not in release | Not in release |
| linux-gkeop-5.4 | — | — | Not in release | Not affected |
| linux-oem-5.6 | — | — | Not affected | Not in release |
| linux-aws | — | — | Not affected | Not affected |
| linux-aws-5.0 | — | — | Not in release | Ignored |
| linux-aws-5.3 | — | — | Not in release | Not affected |
| linux-aws-5.4 | — | — | Not in release | Not affected |
| linux-aws-hwe | — | — | Not in release | Not in release |
| linux-azure | — | — | Not affected | Ignored |
| linux-azure-4.15 | — | — | Not in release | Not affected |
| linux-azure-5.3 | — | — | Not in release | Not affected |
| linux-azure-5.4 | — | — | Not in release | Not affected |
| linux-azure-edge | — | — | Not in release | Ignored |
| linux-gcp | — | — | Not affected | Ignored |
| linux-gcp-4.15 | — | — | Not in release | Not affected |
| linux-gcp-5.3 | — | — | Not in release | Not affected |
| linux-gcp-5.4 | — | — | Not in release | Not affected |
| linux-gcp-edge | — | — | Not in release | Ignored |
| linux-gke-4.15 | — | — | Not in release | Not affected |
| linux-gke-5.0 | — | — | Not in release | Not affected |
| linux-gke-5.3 | — | — | Not in release | Not affected |
| linux-gke-5.4 | — | — | Not in release | Not affected |
| linux-hwe | — | — | Not in release | Not affected |
| linux-hwe-5.4 | — | — | Not in release | Not affected |
| linux-hwe-5.8 | — | — | Not affected | Not in release |
| linux-hwe-edge | — | — | Not in release | Ignored |
| linux-kvm | — | — | Not affected | Not affected |
| linux-lts-trusty | — | — | Not in release | Not in release |
| linux-oem | — | — | Not in release | Not affected |
| linux-oem-osp1 | — | — | Not in release | Not affected |
| linux-oracle | — | — | Not affected | Not affected |
| linux-oracle-5.0 | — | — | Not in release | Ignored |
| linux-oracle-5.3 | — | — | Not in release | Not affected |
| linux-oracle-5.4 | — | — | Not in release | Not affected |
| linux-raspi | — | — | Not affected | Not in release |
| linux-raspi-5.4 | — | — | Not in release | Not affected |
| linux-raspi2 | — | — | Ignored | Not affected |
| linux-raspi2-5.3 | — | — | Not in release | Not affected |
| linux-riscv | — | — | Not affected | Not in release |
| linux-snapdragon | — | — | Not in release | Not affected |
Xen 4.2.x, 4.1.x, and earlier, when the hypervisor is running "under memory pressure" and the Xen Security Module (XSM) is enabled, uses the wrong ordering of operations when extending the per-domain event channel tracking table,...
4 affected packages
xen, xen-3.1, xen-3.2, xen-3.3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xen | — | — | — | — |
| xen-3.1 | — | — | — | — |
| xen-3.2 | — | — | — | — |
| xen-3.3 | — | — | — | — |
OpenStack Keystone Grizzly before 2013.1, Folsom, and possibly earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via a large HTTP request, as demonstrated by a long tenant_name when...
1 affected package
keystone
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| keystone | — | — | — | — |
The tailMatch function in cookie.c in cURL and libcurl before 7.30.0 does not properly match the path domain when sending cookies, which allows remote attackers to steal cookies via a matching suffix in the domain of a URL.
1 affected package
curl
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| curl | — | — | — | — |
Red Hat OpenStack Essex and Folsom creates the /var/log/puppet directory with world-readable permissions, which allows local users to obtain sensitive information such as Puppet log files.
1 affected package
puppet
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| puppet | — | — | — | — |