Search CVE reports
11 – 20 of 33266 results
(An issue was discovered in Mbed TLS before 3.6.6 and 4.x before 4.1.0 ...)
1 affected package
mbedtls
| Package | 24.04 LTS |
|---|---|
| mbedtls | Needs evaluation |
[liblzma: Fix a buffer overflow in lzma_index_append()]
1 affected package
xz-utils
| Package | 24.04 LTS |
|---|---|
| xz-utils | Needs evaluation |
(Open Neural Network Exchange (ONNX) is an open standard for machine le ...)
1 affected package
onnx
| Package | 24.04 LTS |
|---|---|
| onnx | Needs evaluation |
(Open Neural Network Exchange (ONNX) is an open standard for machine le ...)
1 affected package
onnx
| Package | 24.04 LTS |
|---|---|
| onnx | Needs evaluation |
(Open Neural Network Exchange (ONNX) is an open standard for machine le ...)
1 affected package
onnx
| Package | 24.04 LTS |
|---|---|
| onnx | Needs evaluation |
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.40.0, cpp-httplib is vulnerable to HTTP Request Smuggling. The server's static file handler serves GET responses...
1 affected package
cpp-httplib
| Package | 24.04 LTS |
|---|---|
| cpp-httplib | Needs evaluation |
Not in release
PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, a heap out-of-bounds read vulnerability exists in PJSIP's VP9 RTP unpacketizer that occurs when parsing crafted VP9 Scalability...
1 affected package
pjproject
| Package | 24.04 LTS |
|---|---|
| pjproject | Not in release |
go-git is an extensible git implementation library written in pure Go. From version 5.0.0 to before version 5.17.1, a vulnerability has been identified in which a maliciously crafted .idx file can cause asymmetric...
1 affected package
golang-github-go-git-go-git
| Package | 24.04 LTS |
|---|---|
| golang-github-go-git-go-git | Needs evaluation |
RAUC controls the update process on embedded Linux systems. Prior to version 1.15.2, RAUC bundles using the 'plain' format exceeding a payload size of 2 GiB cause an integer overflow which results in a signature which covers only...
1 affected package
rauc
| Package | 24.04 LTS |
|---|---|
| rauc | Needs evaluation |
(Docker Model Runner (DMR) is software used to manage, run, and deploy ...)
2 affected packages
docker.io, docker.io-app
| Package | 24.04 LTS |
|---|---|
| docker.io | Needs evaluation |
| docker.io-app | Needs evaluation |