Search CVE reports
16201 – 16210 of 44107 results
Use after free in Skia in Google Chrome prior to 106.0.5249.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 16.04 LTS |
|---|---|
| chromium-browser | Ignored |
A Untrusted Search Path vulnerability in openldap2 of openSUSE Factory allows local attackers with control of the ldap user or group to change ownership of arbitrary directory entries to this user/group, leading to escalation to...
1 affected package
openldap
| Package | 16.04 LTS |
|---|---|
| openldap | Not affected |
In Xfce xfce4-settings before 4.16.4 and 4.17.x before 4.17.1, there is an argument injection vulnerability in xfce4-mime-helper.
1 affected package
xfce4-settings
| Package | 16.04 LTS |
|---|---|
| xfce4-settings | Not affected |
An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the...
10 affected packages
python2.7, python, python3.4, python3.5, python3.6...
| Package | 16.04 LTS |
|---|---|
| python2.7 | Fixed |
| python | Ignored |
| python3.4 | Not in release |
| python3.5 | Fixed |
| python3.6 | Not in release |
| python3.7 | Not in release |
| python3.8 | Not in release |
| python3.9 | Not in release |
| python3.11 | Not in release |
| python3.10 | Not in release |
An HTTP Request Forgery issue was discovered in Varnish Cache 5.x and 6.x before 6.0.11, 7.x before 7.1.2, and 7.2.x before 7.2.1. An attacker may introduce characters through HTTP/2 pseudo-headers that are invalid in the context...
1 affected package
varnish
| Package | 16.04 LTS |
|---|---|
| varnish | Not affected |
An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request smuggling attack can be performed on Varnish Cache servers by requesting that certain headers are made hop-by-hop, preventing the Varnish...
1 affected package
varnish
| Package | 16.04 LTS |
|---|---|
| varnish | Not affected |
Heap buffer overflow in Crashpad in Google Chrome on Android prior to 107.0.5304.106 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium...
1 affected package
chromium-browser
| Package | 16.04 LTS |
|---|---|
| chromium-browser | Ignored |
Type confusion in V8 in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 16.04 LTS |
|---|---|
| chromium-browser | Ignored |
Use after free in WebCodecs in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 16.04 LTS |
|---|---|
| chromium-browser | Ignored |
Use after free in Web Workers in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 16.04 LTS |
|---|---|
| chromium-browser | Ignored |