Search CVE reports

Toggle filters

11 – 20 of 1262 results

CVE-2022-30333

High priority

Some fixes available 11 of 19

RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file. NOTE: WinRAR and Android RAR are unaffected.

3 affected packages

unrar-nonfree, rar, libclamunrar

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
unrar-nonfree Not affected Fixed Fixed Ignored
rar Fixed Fixed Fixed Ignored
libclamunrar Not affected Fixed Fixed Ignored
Show less packages

CVE-2011-4917

Low priority
Ignored

In the Linux kernel through 3.1 there is an information disclosure issue via /proc/stat.

18 affected packages

linux, linux-armadaxp, linux-ec2, linux-flo, linux-fsl-imx51...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux
linux-armadaxp
linux-ec2
linux-flo
linux-fsl-imx51
linux-goldfish
linux-grouper
linux-lts-backport-maverick
linux-lts-backport-natty
linux-lts-backport-oneiric
linux-lts-quantal
linux-lts-raring
linux-lts-saucy
linux-maguro
linux-mako
linux-manta
linux-mvl-dove
linux-ti-omap4
Show all 18 packages Show less packages

CVE-2018-25018

Medium priority
Needs evaluation

UnRAR 5.6.1.7 through 5.7.4 and 6.0.3 has an out-of-bounds write during a memcpy in QuickOpen::ReadRaw when called from QuickOpen::ReadNext.

1 affected package

unrar-nonfree

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
unrar-nonfree Not affected Not affected Not affected Needs evaluation
Show less packages

CVE-2017-20006

Medium priority
Needs evaluation

UnRAR 5.6.1.2 and 5.6.1.3 has a heap-based buffer overflow in Unpack::CopyString (called from Unpack::Unpack5 and CmdExtract::ExtractCurrentFile).

1 affected package

unrar-nonfree

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
unrar-nonfree Not affected Not affected Not affected Needs evaluation
Show less packages

CVE-2008-2544

Medium priority
Ignored

Mounting /proc filesystem via chroot command silently mounts it in read-write mode. The user could bypass the chroot environment and gain write access to files, he would never have otherwise.

23 affected packages

linux, linux-armadaxp, linux-linaro-omap, linux-linaro-shared, linux-linaro-vexpress...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux
linux-armadaxp
linux-linaro-omap
linux-linaro-shared
linux-linaro-vexpress
linux-lts-quantal
linux-lts-raring
linux-lts-saucy
linux-qcm-msm
linux-ti-omap4
linux-flo
linux-goldfish
linux-grouper
linux-lts-trusty
linux-lts-utopic
linux-lts-vivid
linux-lts-wily
linux-lts-xenial
linux-maguro
linux-mako
linux-manta
linux-raspi2
linux-snapdragon
Show all 23 packages Show less packages

CVE-2020-8908

Medium priority
Needs evaluation

A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava...

1 affected package

guava-libraries

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
guava-libraries Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2011-4915

Low priority
Ignored

fs/proc/base.c in the Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /proc/interrupts.

18 affected packages

linux, linux-armadaxp, linux-ec2, linux-flo, linux-fsl-imx51...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux
linux-armadaxp
linux-ec2
linux-flo
linux-fsl-imx51
linux-goldfish
linux-grouper
linux-lts-backport-maverick
linux-lts-backport-natty
linux-lts-backport-oneiric
linux-lts-quantal
linux-lts-raring
linux-lts-saucy
linux-maguro
linux-mako
linux-manta
linux-mvl-dove
linux-ti-omap4
Show all 18 packages Show less packages

CVE-2007-3732

Medium priority
Ignored

In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without ensuring that the segments are set properly. The kernel's %fs needs to be restored before the call in TRACE_IRQS_ON and before enabling...

22 affected packages

linux, linux-armadaxp, linux-linaro-omap, linux-linaro-shared, linux-linaro-vexpress...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux
linux-armadaxp
linux-linaro-omap
linux-linaro-shared
linux-linaro-vexpress
linux-lts-quantal
linux-qcm-msm
linux-ti-omap4
linux-goldfish
linux-grouper
linux-lts-raring
linux-flo
linux-lts-saucy
linux-lts-trusty
linux-lts-utopic
linux-lts-vivid
linux-lts-wily
linux-lts-xenial
linux-maguro
linux-mako
linux-manta
linux-raspi2
Show all 22 packages Show less packages

CVE-2010-2243

Low priority
Ignored

A vulnerability exists in kernel/time/clocksource.c in the Linux kernel before 2.6.34 where on non-GENERIC_TIME systems (GENERIC_TIME=n), accessing /sys/devices/system/clocksource/clocksource0/current_clocksource results in an OOPS.

11 affected packages

linux, linux-armadaxp, linux-ec2, linux-fsl-imx51, linux-lts-backport-maverick...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux
linux-armadaxp
linux-ec2
linux-fsl-imx51
linux-lts-backport-maverick
linux-lts-backport-natty
linux-lts-backport-oneiric
linux-lts-quantal
linux-lts-raring
linux-mvl-dove
linux-ti-omap4
Show all 11 packages Show less packages

CVE-2014-8181

Low priority
Ignored

The kernel in Red Hat Enterprise Linux 7 and MRG-2 does not clear garbage data for SG_IO buffer, which may leaking sensitive information to userspace.

27 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-gke...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux
linux-armadaxp
linux-aws
linux-flo
linux-gke
linux-goldfish
linux-grouper
linux-hwe
linux-hwe-edge
linux-linaro-omap
linux-linaro-shared
linux-linaro-vexpress
linux-lts-quantal
linux-lts-raring
linux-lts-saucy
linux-lts-trusty
linux-lts-utopic
linux-lts-vivid
linux-lts-wily
linux-lts-xenial
linux-maguro
linux-mako
linux-manta
linux-qcm-msm
linux-raspi2
linux-snapdragon
linux-ti-omap4
Show all 27 packages Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page
Export to JSON