Search CVE reports
1 – 10 of 41513 results
guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Prior to 2.12.1, guzzlehttp/psr7 did not reject CR/LF characters in certain first-party HTTP start-line fields: the request method, protocol version, and...
1 affected package
php-guzzlehttp-psr7
| Package | 20.04 LTS |
|---|---|
| php-guzzlehttp-psr7 | Needs evaluation |
[Unknown description]
1 affected package
openslide
| Package | 20.04 LTS |
|---|---|
| openslide | Needs evaluation |
[Unknown description]
3 affected packages
containerd, containerd-app, containerd-stable
| Package | 20.04 LTS |
|---|---|
| containerd | Not affected |
| containerd-app | Not affected |
| containerd-stable | — |
[Unknown description]
3 affected packages
containerd, containerd-app, containerd-stable
| Package | 20.04 LTS |
|---|---|
| containerd | Not affected |
| containerd-app | Not affected |
| containerd-stable | — |
[Unknown description]
3 affected packages
containerd, containerd-app, containerd-stable
| Package | 20.04 LTS |
|---|---|
| containerd | Fixed |
| containerd-app | Fixed |
| containerd-stable | — |
[Unknown description]
3 affected packages
containerd, containerd-app, containerd-stable
| Package | 20.04 LTS |
|---|---|
| containerd | Not affected |
| containerd-app | Not affected |
| containerd-stable | — |
[Unknown description]
3 affected packages
containerd, containerd-app, containerd-stable
| Package | 20.04 LTS |
|---|---|
| containerd | Fixed |
| containerd-app | Fixed |
| containerd-stable | — |
A vulnerability was detected in lemonldap-ng up to 2.23.0. Impacted is an unknown function in the library lemonldap-ng-portal/lib/Lemonldap/NG/Portal/CDC.pm of the component SAML Common Domain Cookie Endpoint. Performing a...
1 affected package
lemonldap-ng
| Package | 20.04 LTS |
|---|---|
| lemonldap-ng | Needs evaluation |
libexpat before 2.8.2 does not consider XML_TOK_DATA_CHARS in doCdataSection and thus lacks handler call depth tracking for various calls from within handlers in cases of a policy violation. Thus, a use-after-free can occur. NOTE:...
23 affected packages
expat, apache2, apr-util, cmake, ghostscript...
| Package | 20.04 LTS |
|---|---|
| expat | Needs evaluation |
| apache2 | Not affected |
| apr-util | Not affected |
| cmake | Not affected |
| ghostscript | Not affected |
| texlive-bin | Not affected |
| xmlrpc-c | Needs evaluation |
| vnc4 | — |
| wbxml2 | Needs evaluation |
| swish-e | Needs evaluation |
| insighttoolkit4 | Needs evaluation |
| cadaver | Needs evaluation |
| gdcm | Not affected |
| ayttm | — |
| cableswig | — |
| coin3 | Not affected |
| matanza | Ignored |
| tdom | Needs evaluation |
| vtk | — |
| smart | — |
| firefox | — |
| thunderbird | — |
| libxmltok | Needs evaluation |
xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations.
23 affected packages
expat, apache2, apr-util, cmake, ghostscript...
| Package | 20.04 LTS |
|---|---|
| expat | Needs evaluation |
| apache2 | Not affected |
| apr-util | Not affected |
| cmake | Not affected |
| ghostscript | Not affected |
| texlive-bin | Not affected |
| xmlrpc-c | Needs evaluation |
| vnc4 | — |
| wbxml2 | Needs evaluation |
| swish-e | Needs evaluation |
| insighttoolkit4 | Needs evaluation |
| cadaver | Needs evaluation |
| gdcm | Not affected |
| ayttm | — |
| cableswig | — |
| coin3 | Not affected |
| matanza | Ignored |
| tdom | Needs evaluation |
| vtk | — |
| smart | — |
| firefox | — |
| thunderbird | — |
| libxmltok | Needs evaluation |