Search CVE reports
71 – 80 of 28239 results
CVE-2024-57970
Medium prioritylibarchive through 3.7.7 has a heap-based buffer over-read in header_gnu_longlink in archive_read_support_format_tar.c via a TAR archive because it mishandles truncation in the middle of a GNU long linkname.
1 affected package
libarchive
| Package | 20.04 LTS |
|---|---|
| libarchive | Not affected |
CVE-2025-0998
Medium priorityOut of bounds memory access in V8 in Google Chrome prior to 133.0.6943.98 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 20.04 LTS |
|---|---|
| chromium-browser | Not affected |
CVE-2025-0997
Medium priorityUse after free in Navigation in Google Chrome prior to 133.0.6943.98 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 20.04 LTS |
|---|---|
| chromium-browser | Not affected |
CVE-2025-0996
Medium priorityInappropriate implementation in Browser UI in Google Chrome on Android prior to 133.0.6943.98 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 20.04 LTS |
|---|---|
| chromium-browser | Not affected |
CVE-2025-0995
Medium priorityUse after free in V8 in Google Chrome prior to 133.0.6943.98 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 20.04 LTS |
|---|---|
| chromium-browser | Not affected |
CVE-2025-26819
Medium priorityNot in release
Monero through 0.18.3.4 before ec74ff4 does not have response limits on HTTP server connections.
1 affected package
monero
| Package | 20.04 LTS |
|---|---|
| monero | Not in release |
CVE-2024-31144
Medium priorityFor a brief summary of Xapi terminology, see: https://xapi-project.github.io/xen-api/overview.html#object-model-overview Xapi contains functionality to backup and restore metadata about Virtual Machines and Storage Repositories...
1 affected package
xen
| Package | 20.04 LTS |
|---|---|
| xen | Needs evaluation |
CVE-2022-26083
Medium priorityNot in release
Generation of weak initialization vector in an Intel(R) IPP Cryptography software library before version 2021.5 may allow an unauthenticated user to potentially enable information disclosure via local access.
1 affected package
ipp-crypto
| Package | 20.04 LTS |
|---|---|
| ipp-crypto | Not in release |
CVE-2025-25304
Medium priorityNot in release
Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. Prior to version 5.26.0 of vega and 5.4.2 of vega-selections, the `vlSelectionTuples` function can be used...
1 affected package
vega.js
| Package | 20.04 LTS |
|---|---|
| vega.js | Not in release |
CVE-2025-25204
Medium priorityNot in release
`gh` is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool `gh attestation verify` causes it to return a zero exit...
1 affected package
gh
| Package | 20.04 LTS |
|---|---|
| gh | Not in release |