Search CVE reports

3061 – 3070 of 29434 results

Detailed view

Sort by:

Status is adjusted based on your filters.

CVE-2024-36347

Medium priority

Some fixes available 21 of 24

Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator privilege to load malicious microcode, potentially resulting in loss of integrity of x86 instruction execution,...

148 affected packages

linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-hwe-5.11, linux-hwe-5.13...

Package	24.04 LTS
linux-hwe	Not in release
linux-hwe-5.4	Not in release
linux-hwe-5.8	Not in release
linux-hwe-5.11	Not in release
linux-hwe-5.13	Not in release
linux-hwe-5.15	Not in release
linux-hwe-5.19	Not in release
linux-hwe-6.2	Not in release
linux-hwe-6.5	Not in release
linux-hwe-6.8	Not in release
linux-hwe-6.11	Ignored
linux-hwe-edge	Not in release
linux-lts-xenial	Not in release
linux-kvm	Not in release
linux-allwinner-5.19	Not in release
linux-aws-5.0	Not in release
linux-aws-5.3	Not in release
linux-aws-5.4	Not in release
linux-aws-5.8	Not in release
linux-aws-5.11	Not in release
linux-aws-5.13	Not in release
linux-aws-5.15	Not in release
linux-aws-5.19	Not in release
linux-aws-6.2	Not in release
linux-aws-6.5	Not in release
linux-aws-6.8	Not in release
linux-aws-hwe	Not in release
linux-azure	Fixed
linux-azure-4.15	Not in release
linux-azure-5.3	Not in release
linux-azure-5.4	Not in release
linux-azure-5.8	Not in release
linux-azure-5.11	Not in release
linux-azure-5.13	Not in release
linux-azure-5.15	Not in release
linux-azure-5.19	Not in release
linux-azure-6.2	Not in release
linux-azure-6.5	Not in release
linux-azure-6.8	Not in release
linux-azure-fde	Vulnerable
linux-azure-fde-5.15	Not in release
linux-azure-fde-5.19	Not in release
linux-gke-5.15	Not in release
linux-azure-fde-6.2	Not in release
linux-bluefield	Not in release
linux-azure-edge	Not in release
linux-fips	Fixed
linux-aws-fips	Fixed
linux-azure-fips	Fixed
linux-gcp-fips	Fixed
linux-gcp	Fixed
linux-gcp-4.15	Not in release
linux-gcp-5.3	Not in release
linux-gcp-5.4	Not in release
linux-gcp-5.8	Not in release
linux-gcp-5.11	Not in release
linux-gcp-5.13	Not in release
linux-gcp-5.15	Not in release
linux-gcp-5.19	Not in release
linux-gcp-6.2	Not in release
linux-gcp-6.5	Not in release
linux-gcp-6.8	Not in release
linux-gke	Fixed
linux-gke-4.15	Not in release
linux-gke-5.4	Not in release
linux-gkeop	Fixed
linux-gkeop-5.4	Not in release
linux-gkeop-5.15	Not in release
linux-ibm	Fixed
linux-ibm-5.4	Not in release
linux-ibm-5.15	Not in release
linux-intel-5.13	Not in release
linux-intel-iotg	Not in release
linux-intel-iotg-5.15	Not in release
linux-iot	Not in release
linux-intel-iot-realtime	Not in release
linux-lowlatency	Fixed
linux-lowlatency-hwe-5.15	Not in release
linux-lowlatency-hwe-5.19	Not in release
linux-lowlatency-hwe-6.2	Not in release
linux-lowlatency-hwe-6.5	Not in release
linux-lowlatency-hwe-6.8	Not in release
linux-lowlatency-hwe-6.11	Ignored
linux-nvidia	Fixed
linux-nvidia-6.2	Not in release
linux-nvidia-6.5	Not in release
linux-nvidia-6.8	Not in release
linux-nvidia-lowlatency	Fixed
linux-oracle-5.0	Not in release
linux-oracle-5.3	Not in release
linux-oracle-5.4	Not in release
linux-oracle-5.8	Not in release
linux-oracle-5.11	Not in release
linux-oracle-5.13	Not in release
linux-oracle-5.15	Not in release
linux-oracle-6.5	Not in release
linux-oracle-6.8	Not in release
linux-oem	Not in release
linux-oem-5.6	Not in release
linux-oem-5.10	Not in release
linux-oem-5.13	Not in release
linux-oem-5.14	Not in release
linux-oem-5.17	Not in release
linux-oem-6.0	Not in release
linux-oem-6.1	Not in release
linux-oem-6.5	Not in release
linux-oem-6.8	Ignored
linux-oem-6.11	Ignored
linux-raspi2	Not in release
linux-raspi-5.4	Not in release
linux-raspi-realtime	Fixed
linux-realtime	Fixed
linux-riscv	Ignored
linux-riscv-5.8	Not in release
linux-riscv-5.11	Not in release
linux-riscv-5.15	Not in release
linux-riscv-5.19	Not in release
linux-riscv-6.5	Not in release
linux-riscv-6.8	Not in release
linux-starfive-5.19	Not in release
linux-starfive-6.2	Not in release
linux-starfive-6.5	Not in release
linux-xilinx-zynqmp	Not in release
linux	Fixed
linux-aws	Fixed
linux-oracle	Fixed
linux-raspi	Fixed
linux-intel	Ignored
linux-nvidia-tegra	Vulnerable
linux-nvidia-tegra-igx	Not in release
linux-azure-nvidia	Fixed
linux-azure-6.11	Ignored
linux-gcp-6.11	Ignored
linux-nvidia-tegra-5.15	Not in release
linux-oem-6.14	Not affected
linux-riscv-6.14	Not affected
linux-ibm-6.8	Not in release
linux-aws-6.14	Not affected
linux-gcp-6.14	Not affected
linux-hwe-6.14	Not affected
linux-oracle-6.14	Not affected
linux-nvidia-6.11	Fixed
linux-realtime-6.14	Not affected
linux-realtime-6.8	Not in release
linux-azure-6.14	Not affected
linux-azure-fde-6.14	Not affected
linux-azure-nvidia-6.14	Not affected
linux-xilinx	Fixed

CVE-2025-52993

Medium priority

Needs evaluation

A race condition in the Nix, Lix, and Guix package managers enables changing the ownership of arbitrary files to the UID and GID of the build user (e.g., nixbld* or guixbuild*). This affects Nix before 2.24.15, 2.26.4, 2.28.4, and...

1 affected package

guix

Package	24.04 LTS
guix	Needs evaluation

CVE-2025-52992

Medium priority

Needs evaluation

The Nix, Lix, and Guix package managers fail to properly set permissions when a derivation build fails. This may allow arbitrary processes to modify the content of a store outside of the build sandbox. This affects Nix before...

1 affected package

guix

Package	24.04 LTS
guix	Needs evaluation

CVE-2025-52991

Medium priority

Needs evaluation

The Nix, Lix, and Guix package managers default to using temporary build directories in a world-readable and world-writable location. This allows standard users to deceive the package manager into using directories...

1 affected package

guix

Package	24.04 LTS
guix	Needs evaluation

CVE-2025-46416

Medium priority

Needs evaluation

The Nix, Lix, and Guix package managers allow a bypass of build isolation in which a user can elevate their privileges to the build user account (e.g., nixbld or guixbuild). This affects Nix through 2.24.15, 2.26.4, 2.28.4, and...

1 affected package

guix

Package	24.04 LTS
guix	Needs evaluation

CVE-2025-46415

Medium priority

Needs evaluation

A race condition in the Nix, Lix, and Guix package managers allows the removal of content from arbitrary folders. This affects Nix before 2.24.15, 2.26.4, 2.28.4, and 2.29.1; Lix before 2.91.2, 2.92.2, and 2.93.1; and Guix before...

1 affected package

guix

Package	24.04 LTS
guix	Needs evaluation

CVE-2025-6750

Medium priority

Needs evaluation

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. Affected by this issue is the function H5O__mtime_new_encode of the file src/H5Omtime.c. The manipulation leads to heap-based buffer overflow....

1 affected package

hdf5

Package	24.04 LTS
hdf5	Needs evaluation

CVE-2025-52555

Medium priority

Vulnerable

Ceph is a distributed object, block, and file storage platform. In versions 17.2.7, 18.2.1 through 18.2.4, and 19.0.0 through 19.2.2, an unprivileged user can escalate to root privileges in a ceph-fuse mounted CephFS by chmod 777...

1 affected package

ceph

Package	24.04 LTS
ceph	Vulnerable

CVE-2025-52887

Medium priority

Needs evaluation

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. In version 0.21.0, when many http headers fields are passed in, the library does not limit the number of headers, and the memory associated with the...

1 affected package

cpp-httplib

Package	24.04 LTS
cpp-httplib	Needs evaluation

CVE-2025-6710

Medium priority

Not in release

MongoDB Server may be susceptible to stack overflow due to JSON parsing mechanism, where specifically crafted JSON inputs may induce unwarranted levels of recursion, resulting in excessive stack space consumption. Such inputs can...

1 affected package

mongodb

Package	24.04 LTS
mongodb	Not in release

Export to JSON

Results by page: