Search CVE reports


Toggle filters

1 – 10 of 68 results


CVE-2024-27508

Medium priority
Not affected

Atheme 7.2.12 contains a memory leak vulnerability in /atheme/src/crypto-benchmark/main.c.

1 affected package

atheme-services

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
atheme-services Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2023-3297

Medium priority
Fixed

In Ubuntu’s accountsservice an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus message to the accounts-daemon process.

1 affected package

accountsservice

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
accountsservice Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-1804

Medium priority
Fixed

accountsservice no longer drops permissions when writing .pam_environment

1 affected package

accountsservice

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
accountsservice Fixed Not affected Not affected Not affected
Show less packages

CVE-2022-29583

Medium priority
Ignored

** DISPUTED ** service_windows.go in the kardianos service package for Go omits quoting that is sometimes needed for execution of a Windows service executable from the intended directory. NOTE: this finding could not be reproduced...

2 affected packages

golang-github-kardianos-service, google-guest-agent

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
golang-github-kardianos-service Not affected Not affected Not in release Not in release
google-guest-agent Not affected Not affected Not affected Not affected
Show less packages

CVE-2022-24976

Medium priority
Needs evaluation

Atheme IRC Services before 7.2.12, when used in conjunction with InspIRCd, allows authentication bypass by ending an IRC handshake at a certain point during a challenge-response login sequence.

1 affected package

atheme-services

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
atheme-services Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2021-3939

High priority
Fixed

Ubuntu-specific modifications to accountsservice (in patch file debian/patches/0010-set-language.patch) caused the fallback_locale variable, pointing to static storage, to be freed, in the user_change_language_authorized_cb...

1 affected package

accountsservice

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
accountsservice Fixed Fixed Not affected Not affected
Show less packages

CVE-2020-23906

Medium priority
Needs evaluation

FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service (DoS) via a crafted audio file due to insufficient verification of data authenticity.

3 affected packages

ffmpeg, qtwebengine-opensource-src, vice

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg Not affected Not affected Not affected Not affected Not affected
qtwebengine-opensource-src Needs evaluation Needs evaluation Needs evaluation Needs evaluation Ignored
vice Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2021-38094

Medium priority

Some fixes available 1 of 22

Integer Overflow vulnerability in function filter_sobel in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

3 affected packages

ffmpeg, qtwebengine-opensource-src, vice

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg Not affected Not affected Fixed Not affected Not affected
qtwebengine-opensource-src Needs evaluation Needs evaluation Needs evaluation Needs evaluation Ignored
vice Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2021-38093

Medium priority

Some fixes available 1 of 22

Integer Overflow vulnerability in function filter_robert in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

3 affected packages

ffmpeg, qtwebengine-opensource-src, vice

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg Not affected Not affected Fixed Not affected Not affected
qtwebengine-opensource-src Needs evaluation Needs evaluation Needs evaluation Needs evaluation Ignored
vice Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2021-38092

Medium priority

Some fixes available 1 of 22

Integer Overflow vulnerability in function filter_prewitt in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

3 affected packages

ffmpeg, qtwebengine-opensource-src, vice

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg Not affected Not affected Fixed Not affected Not affected
qtwebengine-opensource-src Needs evaluation Needs evaluation Needs evaluation Needs evaluation Ignored
vice Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages