Search CVE reports
13071 – 13080 of 44646 results
It was possible to cause the use of a MessagePort after it had already been freed, which could potentially have led to an exploitable crash. This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and Thunderbird < 115.5.
8 affected packages
mozjs68, firefox, thunderbird, mozjs38, mozjs52...
| Package | 16.04 LTS |
|---|---|
| mozjs68 | Not in release |
| firefox | Ignored |
| thunderbird | Ignored |
| mozjs38 | Not in release |
| mozjs52 | Not in release |
| mozjs78 | Not in release |
| mozjs91 | Not in release |
| mozjs102 | Not in release |
On some systems—depending on the graphics settings and drivers—it was possible to force an out-of-bounds read and leak memory data into the images created on the canvas element. This vulnerability affects Firefox < 120, Firefox...
8 affected packages
firefox, thunderbird, mozjs38, mozjs52, mozjs68...
| Package | 16.04 LTS |
|---|---|
| firefox | Ignored |
| thunderbird | Ignored |
| mozjs38 | Not in release |
| mozjs52 | Not in release |
| mozjs68 | Not in release |
| mozjs78 | Not in release |
| mozjs91 | Not in release |
| mozjs102 | Not in release |
An attacker could have performed HTML template injection via Reader Mode and exfiltrated user information. This vulnerability affects Firefox for iOS < 120.
2 affected packages
firefox, thunderbird
| Package | 16.04 LTS |
|---|---|
| firefox | Ignored |
| thunderbird | Ignored |
An attacker could have accessed internal pages or data by ex-filtrating a security key from ReaderMode via the `referrerpolicy` attribute. This vulnerability affects Firefox for iOS < 120.
2 affected packages
firefox, thunderbird
| Package | 16.04 LTS |
|---|---|
| firefox | Ignored |
| thunderbird | Ignored |
GPAC 2.3-DEV-rev617-g671976fcc-master is vulnerable to memory leaks in extract_attributes media_tools/m3u8.c:329.
1 affected package
gpac
| Package | 16.04 LTS |
|---|---|
| gpac | Needs evaluation |
GPAC 2.3-DEV-rev617-g671976fcc-master is vulnerable to memory leak in gf_mpd_parse_string media_tools/mpd.c:75.
1 affected package
gpac
| Package | 16.04 LTS |
|---|---|
| gpac | Needs evaluation |
strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack...
1 affected package
strongswan
| Package | 16.04 LTS |
|---|---|
| strongswan | Fixed |
A cleverly devised username might bypass LDAP authentication checks. In LDAP-authenticated Derby installations, this could let an attacker fill up the disk by creating junk Derby databases. In LDAP-authenticated Derby...
1 affected package
derby
| Package | 16.04 LTS |
|---|---|
| derby | Needs evaluation |
A heap use-after-free flaw was found in coders/bmp.c in ImageMagick.
1 affected package
imagemagick
| Package | 16.04 LTS |
|---|---|
| imagemagick | Fixed |
An issue was discovered in the captive portal in OpenNDS before version 10.1.3. It has multiple memory leaks due to not freeing up allocated memory. This may lead to a Denial-of-Service condition due to the consumption of all...
1 affected package
opennds
| Package | 16.04 LTS |
|---|---|
| opennds | Ignored |