Search CVE reports
17791 – 17800 of 44699 results
libjpeg commit 281daa9 was discovered to contain a segmentation fault via HuffmanDecoder::Get at huffmandecoder.hpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 16.04 LTS |
|---|---|
| libjpeg | Not in release |
| libjpeg-turbo | Not affected |
| libjpeg6b | Not affected |
| libjpeg9 | Not affected |
libjpeg commit 281daa9 was discovered to contain an infinite loop via the component Frame::ParseTrailer.
4 affected packages
libjpeg, libjpeg-turbo, libjpeg6b, libjpeg9
| Package | 16.04 LTS |
|---|---|
| libjpeg | Not in release |
| libjpeg-turbo | Not affected |
| libjpeg6b | Not affected |
| libjpeg9 | Not affected |
The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in parse_mpls at common/get.c:150. NOTE: this is different from CVE-2022-27942.
1 affected package
tcpreplay
| Package | 16.04 LTS |
|---|---|
| tcpreplay | Not affected |
The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_l2len_protocol at common/get.c:344. NOTE: this is different from CVE-2022-27941.
1 affected package
tcpreplay
| Package | 16.04 LTS |
|---|---|
| tcpreplay | Not affected |
The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_ipv6_next at common/get.c:713. NOTE: this is different from CVE-2022-27940.
1 affected package
tcpreplay
| Package | 16.04 LTS |
|---|---|
| tcpreplay | Not affected |
Some fixes available 9 of 10
Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
157 affected packages
linux-nvidia, linux, linux-gkeop-5.15, linux-aws-5.19, linux-gcp-5.19...
| Package | 16.04 LTS |
|---|---|
| linux-nvidia | Not in release |
| linux | Fixed |
| linux-gkeop-5.15 | Not in release |
| linux-aws-5.19 | Not in release |
| linux-gcp-5.19 | Not in release |
| linux-riscv-5.19 | Not in release |
| linux-allwinner | Not in release |
| linux-allwinner-5.19 | Not in release |
| linux-starfive | Not in release |
| linux-starfive-5.19 | Not in release |
| linux-aws-hwe | Fixed |
| linux-iot | Not in release |
| linux-oracle | Fixed |
| linux-riscv-5.15 | Not in release |
| linux-aws | Fixed |
| linux-aws-6.2 | Not in release |
| linux-hwe-6.2 | Not in release |
| linux-lowlatency-hwe-6.2 | Not in release |
| linux-ibm-5.15 | Not in release |
| linux-gcp-6.2 | Not in release |
| linux-azure-6.2 | Not in release |
| linux-azure-fde-6.2 | Not in release |
| linux-gke | Ignored |
| linux-gke-5.0 | Not in release |
| linux-gke-5.3 | Not in release |
| linux-oem | Ignored |
| linux-raspi2-5.3 | Not in release |
| linux-oem-osp1 | Not in release |
| linux-gke-4.15 | Not in release |
| linux-gke-5.4 | Not in release |
| linux-azure-4.15 | Not in release |
| linux-gcp-5.11 | Not in release |
| buffer | Needs evaluation |
| linux-snapdragon | Ignored |
| linux-dell300x | Not in release |
| linux-raspi2 | Ignored |
| linux-aws-5.4 | Not in release |
| linux-ibm | Not in release |
| linux-gcp | Fixed |
| linux-oracle-5.15 | Not in release |
| linux-azure-fde-5.15 | Not in release |
| linux-riscv | Not in release |
| linux-azure-fde | Not in release |
| linux-azure-5.4 | Not in release |
| linux-oem-5.17 | Not in release |
| linux-azure-5.19 | Not in release |
| linux-fips | Fixed |
| linux-gcp-4.15 | Not in release |
| linux-gcp-5.13 | Not in release |
| linux-gcp-5.15 | Not in release |
| linux-gcp-5.3 | Not in release |
| linux-gcp-5.4 | Not in release |
| linux-gcp-5.8 | Not in release |
| linux-gke-5.15 | Not in release |
| linux-gkeop | Not in release |
| linux-gkeop-5.4 | Not in release |
| linux-hwe-5.19 | Not in release |
| linux-ibm-5.4 | Not in release |
| linux-intel-5.13 | Not in release |
| linux-intel-iotg | Not in release |
| linux-intel-iotg-5.15 | Not in release |
| linux-lowlatency | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release |
| linux-lowlatency-hwe-5.19 | Not in release |
| linux-oem-5.10 | Not in release |
| linux-oem-5.13 | Not in release |
| linux-oem-5.14 | Not in release |
| linux-oem-5.6 | Not in release |
| linux-oem-6.0 | Not in release |
| linux-oem-6.1 | Not in release |
| linux-azure-fde-5.19 | Not in release |
| linux-xilinx-zynqmp | Not in release |
| linux-aws-5.0 | Not in release |
| linux-aws-5.11 | Not in release |
| linux-aws-5.13 | Not in release |
| linux-aws-5.15 | Not in release |
| linux-aws-5.3 | Not in release |
| linux-aws-5.8 | Not in release |
| linux-azure | Fixed |
| linux-azure-5.11 | Not in release |
| linux-azure-5.13 | Not in release |
| linux-azure-5.15 | Not in release |
| linux-azure-5.3 | Not in release |
| linux-azure-5.8 | Not in release |
| linux-azure-edge | Not in release |
| linux-bluefield | Not in release |
| linux-hwe | Fixed |
| linux-hwe-5.11 | Not in release |
| linux-hwe-5.13 | Not in release |
| linux-hwe-5.15 | Not in release |
| linux-hwe-5.4 | Not in release |
| linux-hwe-5.8 | Not in release |
| linux-hwe-edge | Ignored |
| linux-kvm | Fixed |
| linux-lts-xenial | Not in release |
| linux-oracle-5.0 | Not in release |
| linux-oracle-5.11 | Not in release |
| linux-oracle-5.13 | Not in release |
| linux-oracle-5.3 | Not in release |
| linux-oracle-5.4 | Not in release |
| linux-oracle-5.8 | Not in release |
| linux-raspi | Not in release |
| linux-raspi-5.4 | Not in release |
| linux-riscv-5.11 | Not in release |
| linux-riscv-5.8 | Not in release |
| linux-nvidia-6.2 | Not in release |
| linux-starfive-6.2 | Not in release |
| linux-laptop | Not in release |
| linux-oem-6.5 | Not in release |
| linux-hwe-6.5 | Not in release |
| linux-lowlatency-hwe-6.5 | Not in release |
| linux-riscv-6.5 | Not in release |
| linux-starfive-6.5 | Not in release |
| linux-aws-6.5 | Not in release |
| linux-azure-6.5 | Not in release |
| linux-gcp-6.5 | Not in release |
| linux-oracle-6.5 | Not in release |
| linux-nvidia-6.5 | Not in release |
| linux-aws-fips | Not in release |
| linux-azure-fips | Not in release |
| linux-gcp-fips | Not in release |
| linux-oem-6.8 | Not in release |
| linux-intel | Not in release |
| linux-nvidia-6.8 | Not in release |
| linux-nvidia-lowlatency | Not in release |
| linux-hwe-6.8 | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release |
| linux-riscv-6.8 | Not in release |
| linux-intel-iot-realtime | Not in release |
| linux-raspi-realtime | Not in release |
| linux-realtime | Not in release |
| linux-aws-6.8 | Not in release |
| linux-gcp-6.8 | Not in release |
| linux-oracle-6.8 | Not in release |
| linux-azure-6.8 | Not in release |
| linux-oem-6.11 | Not in release |
| linux-hwe-6.11 | Not in release |
| linux-lowlatency-hwe-6.11 | Not in release |
| linux-nvidia-tegra | Not in release |
| linux-nvidia-tegra-igx | Not in release |
| linux-azure-nvidia | Not in release |
| linux-azure-6.11 | Not in release |
| linux-gcp-6.11 | Not in release |
| linux-nvidia-tegra-5.15 | Not in release |
| linux-oem-6.14 | Not in release |
| linux-riscv-6.14 | Not in release |
| linux-ibm-6.8 | Not in release |
| linux-aws-6.14 | Not in release |
| linux-gcp-6.14 | Not in release |
| linux-hwe-6.14 | Not in release |
| linux-oracle-6.14 | Not in release |
| linux-nvidia-6.11 | Not in release |
| linux-realtime-6.14 | Not in release |
| linux-realtime-6.8 | Not in release |
| linux-azure-6.14 | Not in release |
| linux-azure-fde-6.14 | Not in release |
| linux-azure-nvidia-6.14 | Not in release |
A privilege escalation flaw was found in the Ansible Automation Platform. This flaw allows a remote authenticated user with 'change user' permissions to modify the account settings of the superuser account and also remove...
3 affected packages
ansible, ansible-core, ansible-base
| Package | 16.04 LTS |
|---|---|
| ansible | Needs evaluation |
| ansible-core | Not in release |
| ansible-base | Not in release |
An out-of-bounds read access vulnerability was discovered in UPX in PackLinuxElf64::canPack() function of p_lx_elf.cpp file. An attacker with a crafted input file could trigger this issue that could cause a crash leading to a...
1 affected package
upx-ucl
| Package | 16.04 LTS |
|---|---|
| upx-ucl | Needs evaluation |
Not in release
The GitHub Security Lab discovered sixteen ways to exploit a cross-site scripting vulnerability in nbconvert. When using nbconvert to generate an HTML version of a user-controllable notebook, it is possible to inject arbitrary...
1 affected package
nbconvert
| Package | 16.04 LTS |
|---|---|
| nbconvert | Not in release |
A floating point exception issue was discovered in UPX in PackLinuxElf64::invert_pt_dynamic() function of p_lx_elf.cpp file. An attacker with a crafted input file could trigger this issue that could cause a crash leading to a...
1 affected package
upx-ucl
| Package | 16.04 LTS |
|---|---|
| upx-ucl | Needs evaluation |