Search CVE reports

Toggle filters

281 – 290 of 346 results

CVE-2009-3560

Medium priority

Some fixes available 85 of 509

The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed...

41 affected packages

apache2, apr-util, audacity, ayttm, cableswig...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2 Not affected Not affected Not affected Not affected Not affected
apr-util Not affected Not affected Not affected Not affected Not affected
audacity Not affected Not affected Not affected Not affected Not affected
ayttm Not in release Not in release Not in release Not in release Not in release
cableswig Not in release Not in release Not in release Not in release Not in release
cadaver Not affected Not affected Not affected Not affected Not affected
celementtree Not in release Not in release Not in release Not in release Not in release
cmake Not affected Not affected Not affected Not affected Not affected
coin3 Not affected Not affected Not affected Not affected Vulnerable
expat Fixed Fixed Fixed Fixed Fixed
gdcm Not affected Not affected Not affected Not affected Not affected
ghostscript Not affected Not affected Not affected Not affected Not affected
grmonitor Not in release Not in release Not in release Not in release Not in release
insighttoolkit Not in release Not in release Not in release Not in release Not in release
kompozer Not in release Not in release Not in release Not in release Not in release
libparagui1.1 Not in release Not in release Not in release Not in release Not in release
libxmltok Not in release Not affected Not affected Not affected Not affected
matanza Ignored Ignored Ignored Ignored Ignored
paraview Needs evaluation Not affected Not affected Not affected Not affected
poco Not affected Not affected Not affected Not affected Not affected
python-xml Not in release Not in release Not in release Not in release Not in release
python2.4 Not in release Not in release Not in release Not in release Not in release
python2.5 Not in release Not in release Not in release Not in release Not in release
python2.6 Not in release Not in release Not in release Not in release Not in release
simgear Not affected Not affected Not affected Not affected Not affected
sitecopy Needs evaluation Not in release Not affected Not affected Not affected
smart Not in release Not in release Not in release Not in release Not affected
swish-e Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
tdom Not affected Not affected Not affected Not affected Not affected
texlive-bin Not affected Not affected Not affected Not affected Not affected
tla Not in release Not affected Not affected Not affected Not affected
vnc4 Not in release Not in release Not in release Not in release Not affected
vtk Not in release Not in release Not in release Not in release Not in release
w3c-libwww Not in release Not in release Not in release Not in release Not in release
wbxml2 Not affected Not affected Not affected Not affected Not affected
wxwidgets2.6 Not in release Not in release Not in release Not in release Not in release
wxwidgets2.8 Not in release Not in release Not in release Not in release Not in release
wxwindows2.4 Not in release Not in release Not in release Not in release Not in release
xmlrpc-c Fixed Fixed Fixed Fixed Fixed
xotcl Not affected Not affected Not affected Not affected Not affected
xulrunner Not in release Not in release Not in release Not in release Not in release
Show all 41 packages Show less packages

CVE-2009-3555

Medium priority

Some fixes available 25 of 34

The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier,...

10 affected packages

apache2, gnutls12, gnutls13, gnutls26, libapache-mod-ssl...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2
gnutls12
gnutls13
gnutls26
libapache-mod-ssl
nss
openjdk-6
openjdk-6b18
openssl
sun-java6
Show all 10 packages Show less packages

CVE-2009-3720

Low priority

Some fixes available 85 of 543

The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML...

41 affected packages

apache2, apr-util, audacity, ayttm, cableswig...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2 Not affected Not affected Not affected Not affected Not affected
apr-util Not affected Not affected Not affected Not affected Not affected
audacity Not affected Not affected Not affected Not affected Not affected
ayttm Not in release Not in release Not in release Not in release Not in release
cableswig Not in release Not in release Not in release Not in release Not in release
cadaver Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
celementtree Not in release Not in release Not in release Not in release Not in release
cmake Not affected Not affected Not affected Not affected Not affected
coin3 Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
expat Fixed Fixed Fixed Fixed Fixed
gdcm Not affected Not affected Not affected Not affected Not affected
ghostscript Not affected Not affected Not affected Not affected Not affected
grmonitor Not in release Not in release Not in release Not in release Not in release
insighttoolkit Not in release Not in release Not in release Not in release Not in release
kompozer Not in release Not in release Not in release Not in release Not in release
libparagui1.1 Not in release Not in release Not in release Not in release Not in release
libxmltok Not in release Not affected Not affected Not affected Not affected
matanza Ignored Ignored Ignored Ignored Ignored
paraview Needs evaluation Not affected Not affected Not affected Not affected
poco Not affected Not affected Not affected Not affected Not affected
python-xml Not in release Not in release Not in release Not in release Not in release
python2.4 Not in release Not in release Not in release Not in release Not in release
python2.5 Not in release Not in release Not in release Not in release Not in release
python2.6 Not in release Not in release Not in release Not in release Not in release
simgear Not affected Not affected Not affected Not affected Not affected
sitecopy Needs evaluation Not in release Not affected Not affected Not affected
smart Not in release Not in release Not in release Not in release Not affected
swish-e Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
tdom Not affected Not affected Not affected Not affected Not affected
texlive-bin Not affected Not affected Not affected Not affected Not affected
tla Not in release Not affected Not affected Not affected Not affected
vnc4 Not in release Not in release Not in release Not in release Not affected
vtk Not in release Not in release Not in release Not in release Not in release
w3c-libwww Not in release Not in release Not in release Not in release Not in release
wbxml2 Not affected Not affected Not affected Not affected Not affected
wxwidgets2.6 Not in release Not in release Not in release Not in release Not in release
wxwidgets2.8 Not in release Not in release Not in release Not in release Not in release
wxwindows2.4 Not in release Not in release Not in release Not in release Not in release
xmlrpc-c Fixed Fixed Fixed Fixed Fixed
xotcl Not affected Not affected Not affected Not affected Not affected
xulrunner Not in release Not in release Not in release Not in release Not in release
Show all 41 packages Show less packages

CVE-2009-3095

Low priority
Fixed

The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in...

1 affected package

apache2

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2
Show less packages

CVE-2009-3094

Low priority
Fixed

The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service (NULL pointer dereference and child...

1 affected package

apache2

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2
Show less packages

CVE-2009-2412

Medium priority
Fixed

Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Portable Utility library (aka APR-util) 0.9.x and 1.3.x allow remote attackers to cause a denial of service (application crash) or possibly...

3 affected packages

apache2, apr, apr-util

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2
apr
apr-util
Show less packages

CVE-2009-1891

Medium priority
Fixed

The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service (CPU consumption).

1 affected package

apache2

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2
Show less packages

CVE-2009-1890

Low priority
Fixed

The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds...

1 affected package

apache2

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2
Show less packages

CVE-2009-1956

Medium priority
Fixed

Off-by-one error in the apr_brigade_vprintf function in Apache APR-util before 1.3.5 on big-endian platforms allows remote attackers to obtain sensitive information or cause a denial of service (application crash) via crafted input.

2 affected packages

apache2, apr-util

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2
apr-util
Show less packages

CVE-2009-1955

Medium priority
Fixed

The expat XML parser in the apr_xml_* interface in xml/apr_xml.c in Apache APR-util before 1.3.7, as used in the mod_dav and mod_dav_svn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service...

2 affected packages

apache2, apr-util

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2
apr-util
Show less packages
  1. Previous page
  2. 27
  3. 28
  4. 29
  5. 30
  6. 31
  7. Next page
Export to JSON