Search CVE reports
91 – 100 of 50764 results
Double-free When Checking OCSP Stapled Response
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 16.04 LTS |
|---|---|
| edk2 | — |
| nodejs | — |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
Heap-based Buffer Overflow vulnerability in Apache HTTP Server with malicious backend servers and ProxyPassReverseCookie* This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to...
1 affected package
apache2
| Package | 16.04 LTS |
|---|---|
| apache2 | Needs evaluation |
A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted backend. Users are recommended to upgrade to version 2.4.68, which fixes this issue.
1 affected package
apache2
| Package | 16.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 16.04 LTS |
|---|---|
| edk2 | — |
| nodejs | — |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
CMS AuthEnvelopedData Processing May Accept Forged Messages
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 16.04 LTS |
|---|---|
| edk2 | — |
| nodejs | — |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 16.04 LTS |
|---|---|
| edk2 | — |
| nodejs | — |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
Heap Buffer Over-read in ASN.1 Content Parsing
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 16.04 LTS |
|---|---|
| edk2 | — |
| nodejs | — |
| openssl | Fixed |
| openssl-fips | — |
| openssl1.0 | — |
A cross-site scripting vulnerability exists in mod_proxy_ftp's HTML directory list generation in Apache HTTP Server 2.4.67 and earlier when listing FTP directory contents either via forward or reverse proxy configuration. Users...
1 affected package
apache2
| Package | 16.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Use After Free vulnerability in Apache HTTP Server with mod_ldap in per-directory configuration This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue.
1 affected package
apache2
| Package | 16.04 LTS |
|---|---|
| apache2 | Needs evaluation |
A security vulnerability has been detected in tmux up to 3.6a. Affected is the function image_free of the file image.c. Such manipulation leads to use after free. Local access is required to approach this attack. This attack is...
1 affected package
tmux
| Package | 16.04 LTS |
|---|---|
| tmux | Needs evaluation |