Search CVE reports
1541 – 1550 of 26347 results
(In OCaml opam before 2.5.1, a .install field containing a destination ...)
1 affected package
opam
| Package | 26.04 LTS |
|---|---|
| opam | Fixed |
(libexpat before 2.7.6 uses insufficient entropy, and thus hash floodin ...)
23 affected packages
expat, apache2, apr-util, cmake, ghostscript...
| Package | 26.04 LTS |
|---|---|
| expat | Needs evaluation |
| apache2 | Not affected |
| apr-util | Not affected |
| cmake | Not affected |
| ghostscript | Not affected |
| texlive-bin | Not affected |
| xmlrpc-c | Needs evaluation |
| vnc4 | Not in release |
| wbxml2 | Needs evaluation |
| swish-e | Needs evaluation |
| insighttoolkit4 | Not in release |
| cadaver | Needs evaluation |
| gdcm | Not affected |
| ayttm | Not in release |
| cableswig | Not in release |
| coin3 | Not affected |
| matanza | Ignored |
| tdom | Needs evaluation |
| vtk | Not in release |
| smart | Not in release |
| firefox | Not affected |
| thunderbird | Not affected |
| libxmltok | Not in release |
(radare2 before 9236f44, when configured on UNIX without SSL, allows co ...)
1 affected package
radare2
| Package | 26.04 LTS |
|---|---|
| radare2 | Needs evaluation |
(FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds ...)
2 affected packages
ffmpeg, libav
| Package | 26.04 LTS |
|---|---|
| ffmpeg | Needs evaluation |
| libav | Not in release |
(MuPDF mutool does not sanitize PDF metadata fields before writing them ...)
1 affected package
mupdf
| Package | 26.04 LTS |
|---|---|
| mupdf | Needs evaluation |
(pypdf is a free and open-source pure-python PDF library. In versions p ...)
2 affected packages
pypdf, pypdf2
| Package | 26.04 LTS |
|---|---|
| pypdf | Needs evaluation |
| pypdf2 | Not in release |
(openCryptoki is a PKCS#11 library and provides tooling for Linux and A ...)
1 affected package
opencryptoki
| Package | 26.04 LTS |
|---|---|
| opencryptoki | Needs evaluation |
Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed data read when decoding a FITS image, making them vulnerable to decompression bomb attacks. A specially crafted FITS...
2 affected packages
pillow, pillow-python2
| Package | 26.04 LTS |
|---|---|
| pillow | Fixed |
| pillow-python2 | Not in release |
(Prometheus is an open-source monitoring system and time series databas ...)
1 affected package
prometheus
| Package | 26.04 LTS |
|---|---|
| prometheus | Needs evaluation |
(ngtcp2 is a C implementation of the IETF QUIC protocol. In versions pr ...)
1 affected package
ngtcp2
| Package | 26.04 LTS |
|---|---|
| ngtcp2 | Needs evaluation |