Search CVE reports
31 – 40 of 33146 results
Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.5, Authlib’s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose...
1 affected package
python-authlib
| Package | 22.04 LTS |
|---|---|
| python-authlib | Needs evaluation |
Rack is a modular Ruby web server interface. Prior to versions 2.2.20, 3.1.18, and 3.2.3, `Rack::Request#POST` reads the entire request body into memory for `Content-Type: application/x-www-form-urlencoded`,...
1 affected package
ruby-rack
| Package | 22.04 LTS |
|---|---|
| ruby-rack | Needs evaluation |
NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to use a race condition to escalate privileges. A successful exploit of this vulnerability might lead to code execution, escalation...
45 affected packages
nvidia-graphics-drivers-304, nvidia-graphics-drivers-304-updates, nvidia-graphics-drivers-340, nvidia-graphics-drivers-340-updates, nvidia-graphics-drivers-352...
| Package | 22.04 LTS |
|---|---|
| nvidia-graphics-drivers-304 | Not in release |
| nvidia-graphics-drivers-304-updates | Not in release |
| nvidia-graphics-drivers-340 | Not affected |
| nvidia-graphics-drivers-340-updates | Not in release |
| nvidia-graphics-drivers-352 | Not in release |
| nvidia-graphics-drivers-352-updates | Not in release |
| nvidia-graphics-drivers-361 | Not in release |
| nvidia-graphics-drivers-367 | Not in release |
| nvidia-graphics-drivers-375 | Not in release |
| nvidia-graphics-drivers-384 | Not in release |
| nvidia-graphics-drivers-390 | Ignored |
| nvidia-graphics-drivers-418-server | Ignored |
| nvidia-graphics-drivers-430 | Ignored |
| nvidia-graphics-drivers-435 | Ignored |
| nvidia-graphics-drivers-440 | Ignored |
| nvidia-graphics-drivers-440-server | Ignored |
| nvidia-graphics-drivers-450 | Ignored |
| nvidia-graphics-drivers-450-server | Ignored |
| nvidia-graphics-drivers-455 | Ignored |
| nvidia-graphics-drivers-460 | Ignored |
| nvidia-graphics-drivers-460-server | Not in release |
| nvidia-graphics-drivers-470 | Ignored |
| nvidia-graphics-drivers-470-server | Ignored |
| nvidia-graphics-drivers-495 | Not in release |
| nvidia-graphics-drivers-510 | Ignored |
| nvidia-graphics-drivers-510-server | Not affected |
| nvidia-graphics-drivers-515 | Ignored |
| nvidia-graphics-drivers-515-server | Ignored |
| nvidia-graphics-drivers-520 | Ignored |
| nvidia-graphics-drivers-525 | Not affected |
| nvidia-graphics-drivers-525-server | Not affected |
| nvidia-graphics-drivers-530 | Ignored |
| nvidia-graphics-drivers-535 | Needs evaluation |
| nvidia-graphics-drivers-535-server | Needs evaluation |
| nvidia-graphics-drivers-545 | Ignored |
| nvidia-graphics-drivers-550 | Needs evaluation |
| nvidia-graphics-drivers-550-server | Needs evaluation |
| nvidia-graphics-drivers-560 | Not in release |
| nvidia-graphics-drivers-565-server | Ignored |
| nvidia-graphics-drivers-570 | Needs evaluation |
| nvidia-graphics-drivers-570-server | Needs evaluation |
| nvidia-graphics-drivers-575 | Needs evaluation |
| nvidia-graphics-drivers-575-server | Needs evaluation |
| nvidia-graphics-drivers-580 | Needs evaluation |
| nvidia-graphics-drivers-580-server | Needs evaluation |
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of...
45 affected packages
nvidia-graphics-drivers-304, nvidia-graphics-drivers-304-updates, nvidia-graphics-drivers-340, nvidia-graphics-drivers-340-updates, nvidia-graphics-drivers-352...
| Package | 22.04 LTS |
|---|---|
| nvidia-graphics-drivers-304 | Not in release |
| nvidia-graphics-drivers-304-updates | Not in release |
| nvidia-graphics-drivers-340 | Not affected |
| nvidia-graphics-drivers-340-updates | Not in release |
| nvidia-graphics-drivers-352 | Not in release |
| nvidia-graphics-drivers-352-updates | Not in release |
| nvidia-graphics-drivers-361 | Not in release |
| nvidia-graphics-drivers-367 | Not in release |
| nvidia-graphics-drivers-375 | Not in release |
| nvidia-graphics-drivers-384 | Not in release |
| nvidia-graphics-drivers-390 | Ignored |
| nvidia-graphics-drivers-418-server | Ignored |
| nvidia-graphics-drivers-430 | Ignored |
| nvidia-graphics-drivers-435 | Ignored |
| nvidia-graphics-drivers-440 | Ignored |
| nvidia-graphics-drivers-440-server | Ignored |
| nvidia-graphics-drivers-450 | Ignored |
| nvidia-graphics-drivers-450-server | Ignored |
| nvidia-graphics-drivers-455 | Ignored |
| nvidia-graphics-drivers-460 | Ignored |
| nvidia-graphics-drivers-460-server | Not in release |
| nvidia-graphics-drivers-470 | Ignored |
| nvidia-graphics-drivers-470-server | Ignored |
| nvidia-graphics-drivers-495 | Not in release |
| nvidia-graphics-drivers-510 | Ignored |
| nvidia-graphics-drivers-510-server | Not affected |
| nvidia-graphics-drivers-515 | Ignored |
| nvidia-graphics-drivers-515-server | Ignored |
| nvidia-graphics-drivers-520 | Ignored |
| nvidia-graphics-drivers-525 | Not affected |
| nvidia-graphics-drivers-525-server | Not affected |
| nvidia-graphics-drivers-530 | Ignored |
| nvidia-graphics-drivers-535 | Needs evaluation |
| nvidia-graphics-drivers-535-server | Needs evaluation |
| nvidia-graphics-drivers-545 | Ignored |
| nvidia-graphics-drivers-550 | Needs evaluation |
| nvidia-graphics-drivers-550-server | Needs evaluation |
| nvidia-graphics-drivers-560 | Not in release |
| nvidia-graphics-drivers-565-server | Ignored |
| nvidia-graphics-drivers-570 | Needs evaluation |
| nvidia-graphics-drivers-570-server | Needs evaluation |
| nvidia-graphics-drivers-575 | Needs evaluation |
| nvidia-graphics-drivers-575-server | Needs evaluation |
| nvidia-graphics-drivers-580 | Needs evaluation |
| nvidia-graphics-drivers-580-server | Needs evaluation |
Rack is a modular Ruby web server interface. Prior to versions 2.2.20, 3.1.18, and 3.2.3, a possible information disclosure vulnerability existed in `Rack::Sendfile` when running behind a proxy that supports `x-sendfile` headers...
1 affected package
ruby-rack
| Package | 22.04 LTS |
|---|---|
| ruby-rack | Needs evaluation |
quic-go is an implementation of the QUIC protocol in Go. In versions prior to 0.49.0, 0.54.1, and 0.55.0, a misbehaving or malicious server can cause a denial-of-service (DoS) attack on the quic-go client by triggering...
1 affected package
golang-github-lucas-clemente-quic-go
| Package | 22.04 LTS |
|---|---|
| golang-github-lucas-clemente-quic-go | Needs evaluation |
Not in release
Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex...
1 affected package
elasticsearch
| Package | 22.04 LTS |
|---|---|
| elasticsearch | Not in release |
Not in release
[Unknown description]
1 affected package
gitlab
| Package | 22.04 LTS |
|---|---|
| gitlab | Not in release |
[net/mail: excessive CPU consumption in ParseAddress]
16 affected packages
golang, golang-1.6, golang-1.8, golang-1.9, golang-1.10...
| Package | 22.04 LTS |
|---|---|
| golang | Not in release |
| golang-1.6 | Not in release |
| golang-1.8 | Not in release |
| golang-1.9 | Not in release |
| golang-1.10 | Not in release |
| golang-1.13 | Needs evaluation |
| golang-1.14 | Not in release |
| golang-1.16 | Not in release |
| golang-1.17 | Needs evaluation |
| golang-1.18 | Needs evaluation |
| golang-1.20 | Needs evaluation |
| golang-1.21 | Needs evaluation |
| golang-1.22 | Needs evaluation |
| golang-1.23 | Needs evaluation |
| golang-1.24 | Not in release |
| golang-1.25 | Not in release |
[net/textproto: excessive CPU consumption in Reader.ReadResponse]
16 affected packages
golang, golang-1.6, golang-1.8, golang-1.9, golang-1.10...
| Package | 22.04 LTS |
|---|---|
| golang | Not in release |
| golang-1.6 | Not in release |
| golang-1.8 | Not in release |
| golang-1.9 | Not in release |
| golang-1.10 | Not in release |
| golang-1.13 | Needs evaluation |
| golang-1.14 | Not in release |
| golang-1.16 | Not in release |
| golang-1.17 | Needs evaluation |
| golang-1.18 | Needs evaluation |
| golang-1.20 | Needs evaluation |
| golang-1.21 | Needs evaluation |
| golang-1.22 | Needs evaluation |
| golang-1.23 | Needs evaluation |
| golang-1.24 | Not in release |
| golang-1.25 | Not in release |