Search CVE reports
41 – 50 of 48196 results
[Unknown description]
1 affected package
libsereal-encoder-perl
| Package | 16.04 LTS |
|---|---|
| libsereal-encoder-perl | Needs evaluation |
[Unknown description]
1 affected package
libsereal-encoder-perl
| Package | 16.04 LTS |
|---|---|
| libsereal-encoder-perl | Needs evaluation |
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image....
1 affected package
gdk-pixbuf
| Package | 16.04 LTS |
|---|---|
| gdk-pixbuf | Needs evaluation |
OpenStack Glance <29.1.1, >=30.0.0 <30.1.1, ==31.0.0 is affected by Server-Side Request Forgery (SSRF). By use of HTTP redirects, an authenticated user can bypass URL validation checks and redirect to internal services. Only...
1 affected package
glance
| Package | 16.04 LTS |
|---|---|
| glance | Needs evaluation |
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer...
1 affected package
python-cryptography
| Package | 16.04 LTS |
|---|---|
| python-cryptography | Needs evaluation |
Moby is an open source container framework. Prior to version 29.3.1, a security vulnerability has been detected that allows attackers to bypass authorization plugins (AuthZ). This issue has been patched in version 29.3.1.
2 affected packages
docker.io, docker.io-app
| Package | 16.04 LTS |
|---|---|
| docker.io | Needs evaluation |
| docker.io-app | — |
Dolibarr is an enterprise resource planning (ERP) and customer relationship management (CRM) software package. In versions 22.0.4 and prior, there is a Local File Inclusion (LFI) vulnerability in the core AJAX...
1 affected package
dolibarr
| Package | 16.04 LTS |
|---|---|
| dolibarr | Needs evaluation |
Moby is an open source container framework. Prior to version 29.3.1, a security vulnerability has been detected that allows plugins privilege validation to be bypassed during docker plugin install. Due to an error in the daemon's...
2 affected packages
docker.io, docker.io-app
| Package | 16.04 LTS |
|---|---|
| docker.io | Needs evaluation |
| docker.io-app | — |
[Whitespace padding in filenames bypasses file upload extension checks]
1 affected package
modsecurity-crs
| Package | 16.04 LTS |
|---|---|
| modsecurity-crs | Needs evaluation |
Botan is a C++ cryptography library. Prior to version 3.11.0, during processing of an X.509 certificate path using name constraints which restrict the set of allowable DNS names, if no subject alternative name is defined in the...
3 affected packages
botan, botan1.10, botan3
| Package | 16.04 LTS |
|---|---|
| botan | — |
| botan1.10 | Needs evaluation |
| botan3 | — |