Search CVE reports
11 – 20 of 30 results
Some fixes available 9 of 10
An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go unnoticed on little-endian architectures, while big-endian architectures can...
1 affected package
unixodbc
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| unixodbc | — | Fixed | Fixed | Fixed | Fixed |
Some fixes available 1 of 5
Nix is a package manager for Linux and other Unix systems. A fixed-output derivations on Linux can send file descriptors to files in the Nix store to another program running on the host (or another fixed-output derivation) via...
2 affected packages
guix, nix
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| guix | Not in release | Not affected | Needs evaluation | Not in release | — |
| nix | Not affected | Fixed | Not affected | Not in release | — |
A XSS vulnerability was found in phoromatic_r_add_test_details.php in phoronix-test-suite.
1 affected package
phoronix-test-suite
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| phoronix-test-suite | — | — | Not in release | Not in release | Needs evaluation |
Cross-site Scripting (XSS) - Reflected in GitHub repository phoronix-test-suite/phoronix-test-suite prior to 10.8.2.
1 affected package
phoronix-test-suite
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| phoronix-test-suite | — | — | — | — | Needs evaluation |
phoronix-test-suite is vulnerable to Cross-Site Request Forgery (CSRF)
1 affected package
phoronix-test-suite
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| phoronix-test-suite | — | — | — | — | Needs evaluation |
phoronix-test-suite is vulnerable to Cross-Site Request Forgery (CSRF)
1 affected package
phoronix-test-suite
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| phoronix-test-suite | Not in release | Not in release | Not in release | Not in release | Ignored |
phoronix-test-suite is vulnerable to Cross-Site Request Forgery (CSRF)
1 affected package
phoronix-test-suite
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| phoronix-test-suite | Not in release | Not in release | Not in release | Not in release | Ignored |
phoronix-test-suite is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
1 affected package
phoronix-test-suite
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| phoronix-test-suite | Not in release | Not in release | Not in release | Not in release | Ignored |
An issue was discovered in the nix crate 0.16.0 and later before 0.20.2, 0.21.x before 0.21.2, and 0.22.x before 0.22.2 for Rust. unistd::getgrouplist has an out-of-bounds write if a user is in more than 16 /etc/groups groups.
1 affected package
rust-nix
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| rust-nix | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Not in release |
Some fixes available 15 of 29
bson before 0.8 incorrectly uses int rather than size_t for many variables, parameters, and return values. In particular, the bson_ensure_space() parameter bytesNeeded could have an integer overflow via properly constructed bson input.
2 affected packages
duo-unix, whoopsie
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| duo-unix | Needs evaluation | Needs evaluation | Needs evaluation | Ignored | Ignored |
| whoopsie | Fixed | Fixed | Fixed | Fixed | Fixed |