Search CVE reports
11 – 20 of 40688 results
Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) allows a DNS nameConstraints bypass via subject CommonName fallback in TLS hostname verification. Two flaws combine to...
1 affected package
erlang
| Package | 20.04 LTS |
|---|---|
| erlang | Needs evaluation |
Improper Following of a Certificate's Chain of Trust vulnerability in Erlang OTP public_key (pubkey_cert module) allows a non-CA certificate to be accepted as an intermediate issuer, enabling certificate chain forgery. In...
1 affected package
erlang
| Package | 20.04 LTS |
|---|---|
| erlang | Needs evaluation |
[Unknown description]
1 affected package
dulwich
| Package | 20.04 LTS |
|---|---|
| dulwich | Needs evaluation |
[Unknown description]
1 affected package
dulwich
| Package | 20.04 LTS |
|---|---|
| dulwich | Needs evaluation |
bzip2 contains an off‑by‑one error in the bzip2recover utility. When processing a specially crafted file, the application performs an out‑of‑bounds write to a global buffer, resulting in memory corruption and a crash (denial of...
2 affected packages
bzip2, clamav
| Package | 20.04 LTS |
|---|---|
| bzip2 | Needs evaluation |
| clamav | Not affected |
CryptX versions before 0.088_001 for Perl have a stack buffer overflow in four AEAD decrypt_verify helpers. The gcm_decrypt_verify, ccm_decrypt_verify, chacha20poly1305_decrypt_verify and eax_decrypt_verify XS routines copied the...
1 affected package
libcryptx-perl
| Package | 20.04 LTS |
|---|---|
| libcryptx-perl | Needs evaluation |
libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than...
1 affected package
libusb
| Package | 20.04 LTS |
|---|---|
| libusb | Needs evaluation |
A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS backend enabled and performs...
1 affected package
glib-networking
| Package | 20.04 LTS |
|---|---|
| glib-networking | Vulnerable |
[Unknown description]
2 affected packages
znuny, otrs2
| Package | 20.04 LTS |
|---|---|
| znuny | — |
| otrs2 | Needs evaluation |
[Unknown description]
1 affected package
edk2
| Package | 20.04 LTS |
|---|---|
| edk2 | Needs evaluation |