CVE search results

81 – 90 of 132 results

Detailed view

Sort by:

CVE-2015-7747

Medium priority

Fixed

Buffer overflow in the afReadFrames function in audiofile (aka libaudiofile and Audio File Library) allows user-assisted remote attackers to cause a denial of service (program crash) or possibly execute arbitrary code via...

1 affected packages

audiofile

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
audiofile	—	—	—	—	—

CVE-2015-4605

Low priority

Fixed

The mcopy function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly restrict a certain offset value, which allows remote attackers...

2 affected packages

file, php5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
file	—	—	—	—	—
php5	—	—	—	—	—

CVE-2015-4604

Low priority

Some fixes available 2 of 4

The mget function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly maintain a certain pointer relationship, which allows remote...

2 affected packages

file, php5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
file	—	—	—	—	Not affected
php5	—	—	—	—	Not in release

CVE-2014-9653

Low priority

Some fixes available 1 of 5

readelf.c in file before 5.22, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5, does not consider that pread calls sometimes read only a subset of the available data, which...

2 affected packages

file, php5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
file	—	—	Not affected	Not affected	Not affected
php5	—	—	Not in release	Not in release	Not in release

CVE-2014-9621

Low priority

Some fixes available 1 of 5

The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string.

2 affected packages

file, php5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
file	—	—	Not affected	Not affected	Not affected
php5	—	—	Not in release	Not in release	Not in release

CVE-2014-9620

Low priority

Some fixes available 1 of 5

The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes.

2 affected packages

file, php5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
file	—	—	Not affected	Not affected	Not affected
php5	—	—	Not in release	Not in release	Not in release

CVE-2014-9496

Low priority

Some fixes available 2 of 4

The sd2_parse_rsrc_fork function in sd2.c in libsndfile allows attackers to have unspecified impact via vectors related to a (1) map offset or (2) rsrc marker, which triggers an out-of-bounds read.

1 affected packages

libsndfile

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsndfile	—	—	—	—	—

CVE-2014-9652

Low priority

Fixed

The mconvert function in softmagic.c in file before 5.21, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5, does not properly handle a certain string-length field during a copy of...

2 affected packages

file, php5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
file	—	—	—	—	—
php5	—	—	—	—	—

CVE-2014-9426

Medium priority

Not affected

** DISPUTED ** The apprentice_load function in libmagic/apprentice.c in the Fileinfo component in PHP through 5.6.4 attempts to perform a free operation on a stack-based character array, which allows remote attackers to cause a...

2 affected packages

file, php5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
file	—	—	—	—	—
php5	—	—	—	—	—

CVE-2014-8117

Low priority

Fixed

softmagic.c in file before 5.21 does not properly limit recursion, which allows remote attackers to cause a denial of service (CPU consumption or crash) via unspecified vectors.

2 affected packages

file, php5

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
file	—	—	—	—	—
php5	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports