Search CVE reports
1661 – 1670 of 60353 results
Some fixes available 3 of 7
A code execution vulnerability has been identified in the Robot Operating System (ROS) 'rosbag' tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability arises from the use of the eval() function to process...
4 affected packages
ros-ros-comm, ros-kinetic-ros-comm, ros-melodic-ros-comm, ros-noetic-ros-comm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ros-ros-comm | Not in release | Needs evaluation | Needs evaluation | Needs evaluation |
| ros-kinetic-ros-comm | — | — | — | — |
| ros-melodic-ros-comm | — | — | — | Fixed |
| ros-noetic-ros-comm | — | — | Fixed | — |
Some fixes available 3 of 7
A code injection vulnerability has been discovered in the Robot Operating System (ROS) 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'echo' verb, which allows...
4 affected packages
ros-ros-comm, ros-kinetic-ros-comm, ros-melodic-ros-comm, ros-noetic-ros-comm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ros-ros-comm | Not in release | Needs evaluation | Needs evaluation | Needs evaluation |
| ros-kinetic-ros-comm | — | — | — | — |
| ros-melodic-ros-comm | — | — | — | Fixed |
| ros-noetic-ros-comm | — | — | Fixed | — |
Some fixes available 3 of 7
A code injection vulnerability has been discovered in the Robot Operating System (ROS) 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'hz' verb, which reports...
4 affected packages
ros-ros-comm, ros-kinetic-ros-comm, ros-melodic-ros-comm, ros-noetic-ros-comm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ros-ros-comm | Not in release | Needs evaluation | Needs evaluation | Needs evaluation |
| ros-kinetic-ros-comm | — | — | — | — |
| ros-melodic-ros-comm | — | — | — | Fixed |
| ros-noetic-ros-comm | — | — | Fixed | — |
Some fixes available 3 of 7
A code injection vulnerability has been identified in the Robot Operating System (ROS) 'roslaunch' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability arises from the use of the eval()...
4 affected packages
ros-ros-comm, ros-kinetic-ros-comm, ros-melodic-ros-comm, ros-noetic-ros-comm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ros-ros-comm | Not in release | Needs evaluation | Needs evaluation | Needs evaluation |
| ros-kinetic-ros-comm | — | — | — | — |
| ros-melodic-ros-comm | — | — | — | Fixed |
| ros-noetic-ros-comm | — | — | Fixed | — |
Some fixes available 3 of 7
A code execution vulnerability has been discovered in the Robot Operating System (ROS) 'rosparam' tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability stems from the use of the eval() function...
4 affected packages
ros-ros-comm, ros-kinetic-ros-comm, ros-melodic-ros-comm, ros-noetic-ros-comm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ros-ros-comm | Not in release | Needs evaluation | Needs evaluation | Needs evaluation |
| ros-kinetic-ros-comm | — | — | — | — |
| ros-melodic-ros-comm | — | — | — | Fixed |
| ros-noetic-ros-comm | — | — | Fixed | — |
7-Zip is a file archiver with a high compression ratio. 7-Zip supports extracting from Compound Documents. Prior to version 25.0.0, a null pointer dereference in the Compound handler may lead to denial of service. Version 25.0.0...
1 affected package
7zip
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| 7zip | Needs evaluation | Needs evaluation | — | — |
7-Zip is a file archiver with a high compression ratio. Zeroes written outside heap buffer in RAR5 handler may lead to memory corruption and denial of service in versions of 7-Zip prior to 25.0.0. Version 25.0.0 contains a fix for...
1 affected package
7zip
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| 7zip | Needs evaluation | Needs evaluation | — | — |
OpenCV is an Open Source Computer Vision Library. Versions 4.10.0 and 4.11.0 have an uninitialized pointer variable on stack that may lead to arbitrary heap buffer write when reading crafted JPEG images. Version 4.12.0 fixes the...
1 affected package
opencv
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| opencv | Not affected | Not affected | Not affected | Not affected |
on-headers is a node.js middleware for listening to when a response writes headers. A bug in on-headers versions `<1.1.0` may result in response headers being inadvertently modified when an array is passed...
1 affected package
node-on-headers
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| node-on-headers | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
When setting up interrupt remapping for legacy PCI(-X) devices, including PCI(-X) bridges, a lookup of the upstream bridge is required. This lookup, itself involving acquiring of a lock, is done in a context where acquiring that...
1 affected package
xen
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xen | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |