Search CVE reports
231 – 240 of 1234 results
Parsing a corrupt or malicious image with invalid color indices can cause a panic.
1 affected package
golang-golang-x-image
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| golang-golang-x-image | Needs evaluation | Needs evaluation | Needs evaluation | Ignored | Needs evaluation |
Some fixes available 5 of 6
Marco Trevisan discovered that the Ubuntu Advantage Desktop Daemon, before version 1.12, leaks the Pro token to unprivileged users by passing the token as an argument in plaintext.
1 affected package
ubuntu-advantage-desktop-daemon
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ubuntu-advantage-desktop-daemon | — | Fixed | Fixed | Fixed | Fixed |
Some fixes available 10 of 32
In Emacs before 29.4, org-link-expand-abbrev in lisp/ol.el expands a %(...) link abbrev even when it specifies an unsafe function, such as shell-command-to-string. This affects Org Mode before 9.7.5.
6 affected packages
emacs, xemacs21, xemacs21-packages, emacs24, emacs25, org-mode
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| emacs | Not affected | Fixed | Fixed | Fixed | — |
| xemacs21 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| xemacs21-packages | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| emacs24 | Not in release | Not in release | Not in release | Not in release | — |
| emacs25 | Not in release | Not in release | Not in release | Not in release | Fixed |
| org-mode | Not affected | Fixed | Fixed | Fixed | Fixed |
DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An...
29 affected packages
tinc, vpnc, connman, gadmin-openvpn-client, gadmin-openvpn-server...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| tinc | — | Ignored | Ignored | Ignored | Ignored |
| vpnc | — | Ignored | Ignored | Ignored | Ignored |
| connman | — | Ignored | Ignored | Ignored | Ignored |
| gadmin-openvpn-client | — | Not in release | Not in release | Ignored | Ignored |
| gadmin-openvpn-server | — | Not in release | Not in release | Ignored | Ignored |
| golang-github-apparentlymart-go-openvpn-mgmt | — | Ignored | Ignored | Ignored | — |
| kvpnc | — | Not in release | Not in release | Not in release | Ignored |
| libreswan | — | Ignored | Ignored | Ignored | Ignored |
| mozillavpn | — | Not in release | Ignored | Not in release | — |
| n2n | — | Ignored | Ignored | Ignored | Ignored |
| network-manager-fortisslvpn | — | Ignored | Ignored | Ignored | Ignored |
| network-manager-iodine | — | Ignored | Ignored | Ignored | Ignored |
| network-manager-l2tp | — | Ignored | Ignored | Ignored | Ignored |
| network-manager-openconnect | — | Ignored | Ignored | Ignored | Ignored |
| network-manager-openvpn | — | Ignored | Ignored | Ignored | Ignored |
| network-manager-pptp | — | Ignored | Ignored | Ignored | Ignored |
| network-manager-sstp | — | Ignored | Ignored | Not in release | — |
| network-manager-strongswan | — | Ignored | Ignored | Ignored | Ignored |
| network-manager-vpnc | — | Ignored | Ignored | Ignored | Ignored |
| openconnect | — | Ignored | Ignored | Ignored | Ignored |
| openfortivpn | — | Ignored | Ignored | Ignored | Ignored |
| openvpn | — | Ignored | Ignored | Ignored | Ignored |
| pptp-linux | — | Ignored | Ignored | Ignored | Ignored |
| pptpd | — | Not in release | Ignored | Ignored | Ignored |
| quicktun | — | Ignored | Ignored | Ignored | Ignored |
| riseup-vpn | — | Ignored | Not in release | Not in release | — |
| softether-vpn | — | Ignored | Ignored | Not in release | — |
| sshuttle | — | Ignored | Ignored | Ignored | Ignored |
| wireguard | — | Ignored | Ignored | Ignored | Ignored |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.8 before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an...
2 affected packages
gitlab, gitlab-agent
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gitlab | Not in release | Not in release | Not in release | Not in release | — |
| gitlab-agent | Needs evaluation | Needs evaluation | Not in release | Not in release | — |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1 where personal access scopes...
2 affected packages
gitlab, gitlab-agent
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gitlab | Not in release | Not in release | Not in release | Not in release | — |
| gitlab-agent | Needs evaluation | Needs evaluation | Not in release | Not in release | — |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.5 before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. A crafted wildcard filter in...
2 affected packages
gitlab, gitlab-agent
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gitlab | Not in release | Not in release | Not in release | Not in release | — |
| gitlab-agent | Needs evaluation | Needs evaluation | Not in release | Not in release | — |
An issue has been discovered in GitLab affecting all versions of GitLab CE/EE 16.9 prior to 16.9.6, 16.10 prior to 16.10.4, and 16.11 prior to 16.11.1 where path traversal could lead to DoS and restricted file read.
2 affected packages
gitlab, gitlab-agent
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gitlab | Not in release | Not in release | Not in release | Not in release | — |
| gitlab-agent | Needs evaluation | Needs evaluation | Not in release | Not in release | — |
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker through a...
2 affected packages
gitlab, gitlab-agent
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gitlab | Not in release | Not in release | Not in release | Not in release | — |
| gitlab-agent | Needs evaluation | Needs evaluation | Not in release | Not in release | — |
Some fixes available 8 of 30
In Emacs before 29.3, Org mode considers contents of remote files to be trusted. This affects Org Mode before 9.6.23.
6 affected packages
emacs, xemacs21, xemacs21-packages, emacs24, emacs25, org-mode
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| emacs | Not affected | Not affected | Fixed | Fixed | — |
| xemacs21 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| xemacs21-packages | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| emacs24 | Not in release | Not in release | Not in release | Not in release | — |
| emacs25 | Not in release | Not in release | Not in release | Not in release | Fixed |
| org-mode | Not affected | Fixed | Fixed | Fixed | Fixed |