Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 9 of 9 results


CVE-2021-38614

Low priority
Needs evaluation

** UNSUPPORTED WHEN ASSIGNED ** Polipo through 1.1.1, when NDEBUG is used, allows a heap-based buffer overflow during parsing of a Range header. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

1 affected packages

polipo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
polipo Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2020-36420

Low priority
Needs evaluation

** UNSUPPORTED WHEN ASSIGNED ** Polipo through 1.1.1, when NDEBUG is omitted, allows denial of service via a reachable assertion during parsing of a malformed Range header. NOTE: This vulnerability only affects products that are...

1 affected packages

polipo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
polipo Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2011-3596

Medium priority
Ignored

Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT request.

1 affected packages

polipo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
polipo Not affected
Show less packages

CVE-2009-4413

Medium priority

Some fixes available 3 of 4

The httpClientDiscardBody function in client.c in Polipo 0.9.8, 0.9.12, 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a request with a large Content-Length value, which...

1 affected packages

polipo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
polipo
Show less packages

CVE-2009-3305

Medium priority

Some fixes available 3 of 4

Polipo 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a request with a Cache-Control header that lacks a value for the max-age field, which triggers a segmentation fault in the...

1 affected packages

polipo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
polipo
Show less packages

CVE-2008-7191

Low priority
Ignored

Unspecified vulnerability in Polipo before 1.0.4 allows remote attackers to cause a denial of service (crash) via a long request URL.

1 affected packages

polipo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
polipo
Show less packages

CVE-2007-4626

Unknown priority

Some fixes available 4 of 8

Unspecified vulnerability in Polipo before 1.0.2 allows remote attackers to cause a denial of service (daemon crash) via certain network traffic associated with entities larger than 2 Gb.

1 affected packages

polipo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
polipo
Show less packages

CVE-2007-4625

Unknown priority

Some fixes available 4 of 8

Polipo before 1.0.2 allows remote HTTP servers to cause a denial of service (daemon crash) by aborting the response to a POST request.

1 affected packages

polipo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
polipo
Show less packages

CVE-2005-3163

Unknown priority

Some fixes available 7 of 8

Unspecified vulnerability in Polipo 0.9.8 and earlier allows attackers to read files outside of the web root.

1 affected packages

polipo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
polipo
Show less packages