Search CVE reports
1 – 10 of 47619 results
(A weakness has been identified in libssh up to 0.11.3. The impacted el ...)
1 affected package
libssh
| Package | 16.04 LTS |
|---|---|
| libssh | Needs evaluation |
A flaw has been found in pnggroup libpng up to 1.6.55. Affected by this vulnerability is the function do_pnm2png of the file contrib/pngminus/pnm2png.c of the component pnm2png. This manipulation of the argument width/height...
5 affected packages
libpng, libpng1.6, firefox, thunderbird, chromium-browser
| Package | 16.04 LTS |
|---|---|
| libpng | Needs evaluation |
| libpng1.6 | Needs evaluation |
| firefox | — |
| thunderbird | — |
| chromium-browser | — |
A vulnerability was determined in mkj Dropbear up to 2025.89. Impacted is the function unpackneg of the file src/curve25519.c of the component S Range Check. This manipulation causes improper verification of cryptographic...
1 affected package
dropbear
| Package | 16.04 LTS |
|---|---|
| dropbear | Needs evaluation |
[Unknown description]
2 affected packages
libsoup2.4, libsoup3
| Package | 16.04 LTS |
|---|---|
| libsoup2.4 | Needs evaluation |
| libsoup3 | — |
[Unknown description]
2 affected packages
libsoup2.4, libsoup3
| Package | 16.04 LTS |
|---|---|
| libsoup2.4 | Needs evaluation |
| libsoup3 | — |
[Unknown description]
2 affected packages
libsoup2.4, libsoup3
| Package | 16.04 LTS |
|---|---|
| libsoup2.4 | Needs evaluation |
| libsoup3 | — |
node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which...
1 affected package
node-tar
| Package | 16.04 LTS |
|---|---|
| node-tar | Needs evaluation |
(PJSIP is a free and open source multimedia communication library writt ...)
1 affected package
pjproject
| Package | 16.04 LTS |
|---|---|
| pjproject | Needs evaluation |
(PJSIP is a free and open source multimedia communication library writt ...)
1 affected package
pjproject
| Package | 16.04 LTS |
|---|---|
| pjproject | Needs evaluation |
Improper handling of configuration values in ZKConfig in Apache ZooKeeper 3.8.5 and 3.9.4 on all platforms allows an attacker to expose sensitive information stored in client configuration in the client's logfile. Configuration...
1 affected package
zookeeper
| Package | 16.04 LTS |
|---|---|
| zookeeper | Needs evaluation |