Search CVE reports
191 – 200 of 29881 results
[RNP PKESK Session Keys Generated as All-Zero]
1 affected package
rnp
| Package | 24.04 LTS |
|---|---|
| rnp | Needs evaluation |
An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local users to crash OpenSMTPD. This issue affects openSUSE Tumbleweed: from ? before 7.8.0p0-1.1.
1 affected package
opensmtpd
| Package | 24.04 LTS |
|---|---|
| opensmtpd | Needs evaluation |
phpPgAdmin 7.13.0 and earlier contains an incorrect access control vulnerability in sql.php at lines 68-76. The application allows unauthorized manipulation of session variables by accepting user-controlled parameters ('subject',...
1 affected package
phppgadmin
| Package | 24.04 LTS |
|---|---|
| phppgadmin | Needs evaluation |
phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability in display.php at line 396. The application passes user-controlled input from $_REQUEST['query'] directly to the browseQuery function without...
1 affected package
phppgadmin
| Package | 24.04 LTS |
|---|---|
| phppgadmin | Needs evaluation |
phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability in dataexport.php at line 118. The application directly executes user-supplied SQL queries from the $_REQUEST['query'] parameter without any sanitization or...
1 affected package
phppgadmin
| Package | 24.04 LTS |
|---|---|
| phppgadmin | Needs evaluation |
phpPgAdmin 7.13.0 and earlier contains multiple cross-site scripting (XSS) vulnerabilities across various components. User-supplied input from $_REQUEST parameters is reflected in HTML output without proper encoding...
1 affected package
phppgadmin
| Package | 24.04 LTS |
|---|---|
| phppgadmin | Needs evaluation |
cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. In versions 2.0.1 and prior, a heap-buffer-overflow vulnerability in...
2 affected packages
cups-filters, libcupsfilters
| Package | 24.04 LTS |
|---|---|
| cups-filters | Fixed |
| libcupsfilters | Not affected |
7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Interaction with this product is required to...
2 affected packages
7zip, p7zip
| Package | 24.04 LTS |
|---|---|
| 7zip | Needs evaluation |
| p7zip | Not affected |
SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.
4 affected packages
lxd, golang-go.crypto, snapd, google-guest-agent
| Package | 24.04 LTS |
|---|---|
| lxd | Not in release |
| golang-go.crypto | Needs evaluation |
| snapd | Needs evaluation |
| google-guest-agent | Needs evaluation |
SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.
4 affected packages
golang-go.crypto, snapd, lxd, google-guest-agent
| Package | 24.04 LTS |
|---|---|
| golang-go.crypto | Needs evaluation |
| snapd | Needs evaluation |
| lxd | Not in release |
| google-guest-agent | Needs evaluation |