Search CVE reports
111 – 120 of 39946 results
PgBouncer before 1.25.2 did not perform an appropriate authorization check for the KILL_CLIENT admin command. All users with access to the administration console (which itself requires authorization) could run this command. It...
1 affected package
pgbouncer
| Package | 20.04 LTS |
|---|---|
| pgbouncer | Needs evaluation |
A possible null pointer reference in PgBouncer before 1.25.2 could lead to a crash, if a server sends an error response without SQLSTATE field.
1 affected package
pgbouncer
| Package | 20.04 LTS |
|---|---|
| pgbouncer | Needs evaluation |
The SCRAM code in PgBouncer before 1.25.2 did not check the return value of strlcat() correctly when building the contents of the SCRAM client-final-message. A malicious backend that sends a SCRAM server-final-message with a long...
1 affected package
pgbouncer
| Package | 20.04 LTS |
|---|---|
| pgbouncer | Needs evaluation |
An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet.
1 affected package
pgbouncer
| Package | 20.04 LTS |
|---|---|
| pgbouncer | Needs evaluation |
Vim is an open source, command line text editor. Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when loading a crafted spell file (.spl) with UTF-8 encoding active....
1 affected package
vim
| Package | 20.04 LTS |
|---|---|
| vim | Needs evaluation |
Vim is an open source, command line text editor. Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's :find command-line completion. When the path option contains backtick-enclosed shell commands, those...
1 affected package
vim
| Package | 20.04 LTS |
|---|---|
| vim | Needs evaluation |
Vim is an open source, command line text editor. Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim. By inducing a user to open a crafted URL (e.g., using...
1 affected package
vim
| Package | 20.04 LTS |
|---|---|
| vim | Needs evaluation |
Crypt::PasswdMD5 versions through 1.42 for Perl generates insecure random values for salts. The built-in rand function is predictable, and unsuitable for cryptography.
1 affected package
libcrypt-passwdmd5-perl
| Package | 20.04 LTS |
|---|---|
| libcrypt-passwdmd5-perl | Needs evaluation |
MapServer is a system for developing web-based GIS applications. From version 6.0 to before version 8.6.2, a reflected XSS vulnerability in MapServer's WMS server allows an unauthenticated attacker to inject arbitrary...
1 affected package
mapserver
| Package | 20.04 LTS |
|---|---|
| mapserver | Needs evaluation |
In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT This resolves the follow splat and lock-up when running with PREEMPT_RT enabled on Hyper-V: [ ...
157 affected packages
linux-nvidia, linux, linux-hwe, linux-hwe-5.4, linux-hwe-5.8...
| Package | 20.04 LTS |
|---|---|
| linux-nvidia | — |
| linux | Needs evaluation |
| linux-hwe | — |
| linux-hwe-5.4 | — |
| linux-hwe-5.8 | Ignored |
| linux-hwe-5.11 | Ignored |
| linux-hwe-5.13 | Ignored |
| linux-hwe-5.15 | Needs evaluation |
| linux-hwe-5.19 | — |
| linux-hwe-6.2 | — |
| linux-hwe-6.5 | — |
| linux-hwe-6.8 | — |
| linux-hwe-6.11 | — |
| linux-hwe-6.14 | — |
| linux-hwe-6.17 | — |
| linux-hwe-edge | — |
| linux-lts-xenial | — |
| linux-kvm | Needs evaluation |
| linux-allwinner-5.19 | — |
| linux-aws | Needs evaluation |
| linux-aws-5.0 | — |
| linux-aws-5.3 | — |
| linux-aws-5.4 | — |
| linux-aws-5.8 | Ignored |
| linux-aws-5.11 | Ignored |
| linux-aws-5.13 | Ignored |
| linux-aws-5.15 | Needs evaluation |
| linux-aws-5.19 | — |
| linux-aws-6.2 | — |
| linux-aws-6.5 | — |
| linux-aws-6.8 | — |
| linux-aws-6.14 | — |
| linux-aws-6.17 | — |
| linux-aws-hwe | — |
| linux-azure | Needs evaluation |
| linux-azure-4.15 | — |
| linux-azure-5.3 | — |
| linux-azure-5.4 | — |
| linux-azure-5.8 | Ignored |
| linux-azure-5.11 | Ignored |
| linux-azure-5.13 | Ignored |
| linux-azure-5.15 | Needs evaluation |
| linux-azure-5.19 | — |
| linux-azure-6.2 | — |
| linux-azure-6.5 | — |
| linux-azure-6.8 | — |
| linux-azure-6.11 | — |
| linux-azure-6.14 | — |
| linux-azure-6.17 | — |
| linux-azure-fde | Ignored |
| linux-azure-fde-5.15 | Needs evaluation |
| linux-azure-fde-5.19 | — |
| linux-azure-fde-6.2 | — |
| linux-azure-fde-6.8 | — |
| linux-azure-fde-6.14 | — |
| linux-azure-fde-6.17 | — |
| linux-azure-nvidia | — |
| linux-azure-nvidia-6.14 | — |
| linux-bluefield | Needs evaluation |
| linux-azure-edge | — |
| linux-fips | Needs evaluation |
| linux-aws-fips | Needs evaluation |
| linux-azure-fips | Needs evaluation |
| linux-gcp-fips | Needs evaluation |
| linux-gcp | Needs evaluation |
| linux-gcp-4.15 | — |
| linux-gcp-5.3 | — |
| linux-gcp-5.4 | — |
| linux-gcp-5.8 | Ignored |
| linux-gcp-5.11 | Ignored |
| linux-gcp-5.13 | Ignored |
| linux-gcp-5.15 | Needs evaluation |
| linux-gcp-5.19 | — |
| linux-gcp-6.2 | — |
| linux-gcp-6.5 | — |
| linux-gcp-6.8 | — |
| linux-gcp-6.11 | — |
| linux-gcp-6.14 | — |
| linux-gcp-6.17 | — |
| linux-gke | Ignored |
| linux-gke-4.15 | — |
| linux-gke-5.4 | — |
| linux-gke-5.15 | Ignored |
| linux-gkeop | Ignored |
| linux-gkeop-5.4 | — |
| linux-gkeop-5.15 | Ignored |
| linux-ibm | Needs evaluation |
| linux-ibm-5.4 | — |
| linux-ibm-5.15 | Needs evaluation |
| linux-ibm-6.8 | — |
| linux-intel-5.13 | Ignored |
| linux-intel-iotg | — |
| linux-intel-iotg-5.15 | Needs evaluation |
| linux-iot | Needs evaluation |
| linux-intel-iot-realtime | — |
| linux-lowlatency | — |
| linux-lowlatency-hwe-5.15 | Needs evaluation |
| linux-lowlatency-hwe-5.19 | — |
| linux-lowlatency-hwe-6.2 | — |
| linux-lowlatency-hwe-6.5 | — |
| linux-lowlatency-hwe-6.8 | — |
| linux-lowlatency-hwe-6.11 | — |
| linux-nvidia-6.2 | — |
| linux-nvidia-6.5 | — |
| linux-nvidia-6.8 | — |
| linux-nvidia-6.11 | — |
| linux-nvidia-lowlatency | — |
| linux-nvidia-tegra | — |
| linux-nvidia-tegra-5.15 | Needs evaluation |
| linux-nvidia-tegra-igx | — |
| linux-oracle | Needs evaluation |
| linux-oracle-5.0 | — |
| linux-oracle-5.3 | — |
| linux-oracle-5.4 | — |
| linux-oracle-5.8 | Ignored |
| linux-oracle-5.11 | Ignored |
| linux-oracle-5.13 | Ignored |
| linux-oracle-5.15 | Needs evaluation |
| linux-oracle-6.5 | — |
| linux-oracle-6.8 | — |
| linux-oracle-6.14 | — |
| linux-oracle-6.17 | — |
| linux-oem | — |
| linux-oem-5.6 | Ignored |
| linux-oem-5.10 | Ignored |
| linux-oem-5.13 | Ignored |
| linux-oem-5.14 | Ignored |
| linux-oem-5.17 | — |
| linux-oem-6.0 | — |
| linux-oem-6.1 | — |
| linux-oem-6.5 | — |
| linux-oem-6.8 | — |
| linux-oem-6.11 | — |
| linux-oem-6.14 | — |
| linux-oem-6.17 | — |
| linux-raspi | Needs evaluation |
| linux-raspi2 | Ignored |
| linux-raspi-5.4 | — |
| linux-raspi-realtime | — |
| linux-realtime | — |
| linux-realtime-6.8 | — |
| linux-realtime-6.14 | — |
| linux-riscv | Ignored |
| linux-riscv-5.8 | Ignored |
| linux-riscv-5.11 | Ignored |
| linux-riscv-5.15 | Needs evaluation |
| linux-riscv-5.19 | — |
| linux-riscv-6.5 | — |
| linux-riscv-6.8 | — |
| linux-riscv-6.14 | — |
| linux-riscv-6.17 | — |
| linux-starfive-5.19 | — |
| linux-starfive-6.2 | — |
| linux-starfive-6.5 | — |
| linux-xilinx | — |
| linux-xilinx-zynqmp | Needs evaluation |
| linux-realtime-6.17 | — |