Search CVE reports
131 – 140 of 48143 results
Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from the configured DNS server,...
2 affected packages
glibc, eglibc
| Package | 16.04 LTS |
|---|---|
| glibc | Needs evaluation |
| eglibc | — |
(fontconfig before 2.17.1 has an off-by-one error in allocation during ...)
1 affected package
fontconfig
| Package | 16.04 LTS |
|---|---|
| fontconfig | Needs evaluation |
[Unknown description]
2 affected packages
pypdf, pypdf2
| Package | 16.04 LTS |
|---|---|
| pypdf | — |
| pypdf2 | Needs evaluation |
ipmi-oem in FreeIPMI before 1.16.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface (IPMI) specification defines a set of interfaces for platform management. It is implemented...
1 affected package
freeipmi
| Package | 16.04 LTS |
|---|---|
| freeipmi | Needs evaluation |
[Unknown description]
2 affected packages
squid, squid3
| Package | 16.04 LTS |
|---|---|
| squid | — |
| squid3 | Needs evaluation |
[Unknown description]
2 affected packages
squid, squid3
| Package | 16.04 LTS |
|---|---|
| squid | — |
| squid3 | Needs evaluation |
Mod_gnutls is a TLS module for Apache HTTPD based on GnuTLS. Prior to version 0.13.0, code for client certificate verification did not check the key purpose as set in the Extended Key Usage extension. An attacker with access to...
1 affected package
mod-gnutls
| Package | 16.04 LTS |
|---|---|
| mod-gnutls | Needs evaluation |
Mod_gnutls is a TLS module for Apache HTTPD based on GnuTLS. In versions prior to 0.12.3 and 0.13.0, code for client certificate verification imported the certificate chain sent by the client into a fixed size `gnutls_x509_crt_t...
1 affected package
mod-gnutls
| Package | 16.04 LTS |
|---|---|
| mod-gnutls | Needs evaluation |
Freeciv21 is a free open source, turn-based, empire-building strategy game. Versions prior to 3.1.1 crash with a stack overflow when receiving specially-crafted packets. A remote attacker can use this to take down any public...
1 affected package
freeciv
| Package | 16.04 LTS |
|---|---|
| freeciv | Needs evaluation |
Action Pack is a Rubygem for building web applications on the Rails framework. In versions on the 8.1 branch prior to 8.1.2.1, the debug exceptions page does not properly escape exception messages. A carefully crafted exception...
1 affected package
rails
| Package | 16.04 LTS |
|---|---|
| rails | Needs evaluation |