Search CVE reports
11 – 20 of 47683 results
Calling NSS-backed functions that support caching via nscd may call the nscd client side code and in the GNU C Library version 2.36 under high load on x86_64 systems, the client may call memcmp on inputs that are concurrently...
2 affected packages
glibc, eglibc
| Package | 16.04 LTS |
|---|---|
| glibc | Not affected |
| eglibc | — |
Versions of the package spin.js before 3.0.0 are vulnerable to Cross-site Scripting (XSS) via the spin() function that allows a creation of more than 1 alert for each 'target' element. An attacker would need to set an arbitrary...
1 affected package
libjs-spin.js
| Package | 16.04 LTS |
|---|---|
| libjs-spin.js | Needs evaluation |
(yauzl (aka Yet Another Unzip Library) version 3.2.0 for Node.js contai ...)
1 affected package
node-yauzl
| Package | 16.04 LTS |
|---|---|
| node-yauzl | Needs evaluation |
(Tornado is a Python web framework and asynchronous networking library. ...)
1 affected package
python-tornado
| Package | 16.04 LTS |
|---|---|
| python-tornado | Needs evaluation |
(ImageMagick is free and open-source software used for editing and mani ...)
1 affected package
imagemagick
| Package | 16.04 LTS |
|---|---|
| imagemagick | Needs evaluation |
An improper sanitization of the compression_algorithm parameter in Canonical LXD allows an authenticated, unprivileged user to execute commands as the LXD daemon on the LXD server via API calls to the image and backup endpoints....
1 affected package
lxd
| Package | 16.04 LTS |
|---|---|
| lxd | Not affected |
[Unknown description]
2 affected packages
libsoup2.4, libsoup3
| Package | 16.04 LTS |
|---|---|
| libsoup2.4 | Needs evaluation |
| libsoup3 | — |
(GLPI is an open-source asset and IT management software package that p ...)
1 affected package
glpi
| Package | 16.04 LTS |
|---|---|
| glpi | Needs evaluation |
A flaw was found in libsoup’s WebSocket frame processing when handling incoming messages. If a non-default configuration is used where the maximum incoming payload size is unset, the library may read memory outside the intended...
2 affected packages
libsoup2.4, libsoup3
| Package | 16.04 LTS |
|---|---|
| libsoup2.4 | Vulnerable |
| libsoup3 | — |
When doing a second SMB request to the same host again, curl would wrongly use a data pointer pointing into already freed memory.
1 affected package
curl
| Package | 16.04 LTS |
|---|---|
| curl | Not affected |