Search CVE reports
151 – 160 of 39594 results
phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability in dataexport.php at line 118. The application directly executes user-supplied SQL queries from the $_REQUEST['query'] parameter without any sanitization or...
1 affected package
phppgadmin
| Package | 18.04 LTS |
|---|---|
| phppgadmin | Needs evaluation |
phpPgAdmin 7.13.0 and earlier contains multiple cross-site scripting (XSS) vulnerabilities across various components. User-supplied input from $_REQUEST parameters is reflected in HTML output without proper encoding...
1 affected package
phppgadmin
| Package | 18.04 LTS |
|---|---|
| phppgadmin | Needs evaluation |
cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. In versions 2.0.1 and prior, a heap-buffer-overflow vulnerability in...
2 affected packages
cups-filters, libcupsfilters
| Package | 18.04 LTS |
|---|---|
| cups-filters | Fixed |
| libcupsfilters | — |
7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Interaction with this product is required to...
2 affected packages
7zip, p7zip
| Package | 18.04 LTS |
|---|---|
| 7zip | — |
| p7zip | Needs evaluation |
SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.
4 affected packages
lxd, golang-go.crypto, snapd, google-guest-agent
| Package | 18.04 LTS |
|---|---|
| lxd | Needs evaluation |
| golang-go.crypto | Needs evaluation |
| snapd | Needs evaluation |
| google-guest-agent | Needs evaluation |
SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.
4 affected packages
golang-go.crypto, snapd, lxd, google-guest-agent
| Package | 18.04 LTS |
|---|---|
| golang-go.crypto | Needs evaluation |
| snapd | Needs evaluation |
| lxd | Needs evaluation |
| google-guest-agent | Needs evaluation |
[HMAC verification check: fix incorrect memcmp() call]
1 affected package
openvpn
| Package | 18.04 LTS |
|---|---|
| openvpn | Not affected |
A mongoc_bulk_operation_t may read invalid memory if large options are passed.
2 affected packages
mongo-c-driver, php-mongodb
| Package | 18.04 LTS |
|---|---|
| mongo-c-driver | — |
| php-mongodb | Needs evaluation |
A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normal_exit command is not properly unregistered when its related module is unloaded....
3 affected packages
grub2, grub2-unsigned, grub2-signed
| Package | 18.04 LTS |
|---|---|
| grub2 | Not affected |
| grub2-unsigned | Needs evaluation |
| grub2-signed | Needs evaluation |
A vulnerability has been identified in the GRUB2 bootloader's normal command that poses an immediate Denial of Service (DoS) risk. This flaw is a Use-after-Free issue, caused because the normal command is not properly unregistered...
3 affected packages
grub2, grub2-unsigned, grub2-signed
| Package | 18.04 LTS |
|---|---|
| grub2 | Not affected |
| grub2-unsigned | Needs evaluation |
| grub2-signed | Needs evaluation |