Search CVE reports
51 – 60 of 33037 results
A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser...
9 affected packages
firefox, thunderbird, mozjs38, mozjs52, mozjs68...
| Package | 24.04 LTS |
|---|---|
| firefox | Not affected |
| thunderbird | Not affected |
| mozjs38 | Not in release |
| mozjs52 | Not in release |
| mozjs68 | Not in release |
| mozjs78 | Not in release |
| mozjs91 | Not in release |
| mozjs102 | Ignored |
| mozjs115 | Ignored |
Spoofing issue in Thunderbird. This vulnerability affects Thunderbird < 149 and Thunderbird < 140.9.
9 affected packages
firefox, thunderbird, mozjs38, mozjs52, mozjs68...
| Package | 24.04 LTS |
|---|---|
| firefox | Not affected |
| thunderbird | Not affected |
| mozjs38 | Not in release |
| mozjs52 | Not in release |
| mozjs68 | Not in release |
| mozjs78 | Not in release |
| mozjs91 | Not in release |
| mozjs102 | Ignored |
| mozjs115 | Ignored |
Not in release
[Unknown description]
1 affected package
dnf5
| Package | 24.04 LTS |
|---|---|
| dnf5 | Not in release |
(fontconfig before 2.17.1 has an off-by-one error in allocation during ...)
1 affected package
fontconfig
| Package | 24.04 LTS |
|---|---|
| fontconfig | Needs evaluation |
[Unknown description]
2 affected packages
pypdf, pypdf2
| Package | 24.04 LTS |
|---|---|
| pypdf | Needs evaluation |
| pypdf2 | Needs evaluation |
ipmi-oem in FreeIPMI before 1.16.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface (IPMI) specification defines a set of interfaces for platform management. It is implemented...
1 affected package
freeipmi
| Package | 24.04 LTS |
|---|---|
| freeipmi | Needs evaluation |
[Unknown description]
2 affected packages
squid, squid3
| Package | 24.04 LTS |
|---|---|
| squid | Needs evaluation |
| squid3 | Not in release |
[Unknown description]
2 affected packages
squid, squid3
| Package | 24.04 LTS |
|---|---|
| squid | Needs evaluation |
| squid3 | Not in release |
league/commonmark is a PHP Markdown parser. From version 2.3.0 to before version 2.8.2, the DomainFilteringAdapter in the Embed extension is vulnerable to an allowlist bypass due to a missing hostname boundary assertion in the...
1 affected package
php-league-commonmark
| Package | 24.04 LTS |
|---|---|
| php-league-commonmark | Needs evaluation |
Dasel is a command-line tool and library for querying, modifying, and transforming data structures. Starting in version 3.0.0 and prior to version 3.3.1, Dasel's YAML reader allows an attacker who can supply YAML for processing to...
1 affected package
dasel
| Package | 24.04 LTS |
|---|---|
| dasel | Needs evaluation |