CVE search results

41 – 50 of 1755 results

Detailed view

Sort by:

CVE-2020-1945

Medium priority

Fixed

Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. The fixcrlf and replaceregexp...

1 affected package

ant

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ant	Not affected	Not affected	Fixed	Fixed

CVE-2011-4915

Low priority

Ignored

fs/proc/base.c in the Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /proc/interrupts.

18 affected packages

linux, linux-armadaxp, linux-ec2, linux-flo, linux-fsl-imx51...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-armadaxp	—	—	—	—
linux-ec2	—	—	—	—
linux-flo	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-lts-backport-maverick	—	—	—	—
linux-lts-backport-natty	—	—	—	—
linux-lts-backport-oneiric	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2015-9541

Low priority

Vulnerable

Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.

5 affected packages

phantomjs, pyside, pyside2, qt4-x11, qtbase-opensource-src

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
phantomjs	Not in release	Not in release	Vulnerable	Vulnerable
pyside	Not in release	Not in release	Not in release	Vulnerable
pyside2	Vulnerable	Vulnerable	Vulnerable	Not in release
qt4-x11	Not in release	Not in release	Not in release	Vulnerable
qtbase-opensource-src	Not affected	Not affected	Not affected	Ignored

CVE-2012-5476

Low priority

Ignored

Within the RHOS Essex Preview (2012.2) of the OpenStack dashboard package, the file /etc/quantum/quantum.conf is world readable which exposes the admin password and token value.

1 affected package

quantum

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
quantum	—	—	—	—

CVE-2009-2802

Medium priority

Not affected

MantisBT 1.2.x before 1.2.2 insecurely handles attachments and MIME types. Arbitrary inline attachment rendering could lead to cross-domain scripting or other browser attacks.

1 affected package

mantis

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
mantis	—	—	—	—

CVE-2013-1811

Medium priority

Ignored

An access control issue in MantisBT before 1.2.13 allows users with "Reporter" permissions to change any issue to "New".

1 affected package

mantis

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
mantis	—	—	—	—

CVE-2007-3732

Medium priority

Ignored

In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without ensuring that the segments are set properly. The kernel's %fs needs to be restored before the call in TRACE_IRQS_ON and before enabling...

22 affected packages

linux, linux-armadaxp, linux-linaro-omap, linux-linaro-shared, linux-linaro-vexpress...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-armadaxp	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-ti-omap4	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-lts-raring	—	—	—	—
linux-flo	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-raspi2	—	—	—	—

CVE-2010-2243

Low priority

Ignored

A vulnerability exists in kernel/time/clocksource.c in the Linux kernel before 2.6.34 where on non-GENERIC_TIME systems (GENERIC_TIME=n), accessing /sys/devices/system/clocksource/clocksource0/current_clocksource results in an OOPS.

11 affected packages

linux, linux-armadaxp, linux-ec2, linux-fsl-imx51, linux-lts-backport-maverick...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-armadaxp	—	—	—	—
linux-ec2	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-lts-backport-maverick	—	—	—	—
linux-lts-backport-natty	—	—	—	—
linux-lts-backport-oneiric	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2014-8181

Low priority

Ignored

The kernel in Red Hat Enterprise Linux 7 and MRG-2 does not clear garbage data for SG_IO buffer, which may leaking sensitive information to userspace.

27 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-gke...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-armadaxp	—	—	—	—
linux-aws	—	—	—	—
linux-flo	—	—	—	—
linux-gke	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	—	—	—	—
linux-hwe-edge	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	—	—	—	—
linux-snapdragon	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2019-17221

Medium priority

Vulnerable

PhantomJS through 2.1.1 has an arbitrary file read vulnerability, as demonstrated by an XMLHttpRequest for a file:// URI. The vulnerability exists in the page.open() function of the webpage module, which loads a specified URL and...

1 affected package

phantomjs

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
phantomjs	Not in release	Not in release	Vulnerable	Vulnerable

Export to JSON

Results by page:

Search CVE reports