Search CVE reports

9111 – 9120 of 60314 results

Detailed view

Sort by:

CVE-2024-41665

Medium priority

Needs evaluation

Ampache, a web based audio/video streaming application and file manager, has a stored cross-site scripting (XSS) vulnerability in versions prior to 6.6.0. This vulnerability exists in the "Playlists - Democratic -...

1 affected package

ampache

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ampache	Not in release	Not in release	Not in release	—

CVE-2024-40767

Medium priority

Some fixes available 5 of 7

In OpenStack Nova before 27.4.1, 28 before 28.2.1, and 29 before 29.1.1, by supplying a raw format image that is actually a crafted QCOW2 image with a backing file path or VMDK flat image with a descriptor file path,...

1 affected package

nova

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
nova	Fixed	Fixed	Fixed	Needs evaluation

CVE-2024-6717

Medium priority

Needs evaluation

HashiCorp Nomad and Nomad Enterprise 1.6.12 up to 1.7.9, and 1.8.1 archive unpacking during migration is vulnerable to path escaping of the allocation directory. This vulnerability, CVE-2024-6717, is fixed in Nomad 1.6.13, 1.7.10,...

1 affected package

nomad

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
nomad	Not in release	Not in release	Needs evaluation	Needs evaluation

CVE-2024-41012

Medium priority

Some fixes available 104 of 116

In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks reliably when fcntl/close race is detected When fcntl_setlk() races with close(), it removes the created lock...

144 affected packages

linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-hwe-5.11, linux-hwe-5.13...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux-hwe	Not in release	Not in release	Not in release	Ignored
linux-hwe-5.4	Not in release	Not in release	Not in release	Fixed
linux-hwe-5.8	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.11	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.13	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.15	Not in release	Not in release	Fixed	Not in release
linux-hwe-5.19	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.2	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.5	Not in release	Ignored	Not in release	Not in release
linux-hwe-edge	Not in release	Not in release	Not in release	Ignored
linux-lts-xenial	Not in release	Not in release	Not in release	Not in release
linux-kvm	Not in release	Fixed	Fixed	Fixed
linux-allwinner-5.19	Not in release	Ignored	Not in release	Not in release
linux-aws-5.0	Not in release	Not in release	Not in release	Ignored
linux-aws-5.3	Not in release	Not in release	Not in release	Ignored
linux-aws-5.4	Not in release	Not in release	Not in release	Fixed
linux-aws-5.8	Not in release	Not in release	Ignored	Not in release
linux-aws-5.11	Not in release	Not in release	Ignored	Not in release
linux-aws-5.13	Not in release	Not in release	Ignored	Not in release
linux-aws-5.15	Not in release	Not in release	Fixed	Not in release
linux-aws-5.19	Not in release	Ignored	Not in release	Not in release
linux-aws-6.2	Not in release	Ignored	Not in release	Not in release
linux-aws-6.5	Not in release	Ignored	Not in release	Not in release
linux	Fixed	Fixed	Fixed	Fixed
linux-aws-hwe	Not in release	Not in release	Not in release	Not in release
linux-azure	Fixed	Fixed	Fixed	Ignored
linux-azure-4.15	Not in release	Not in release	Not in release	Fixed
linux-azure-5.3	Not in release	Not in release	Not in release	Ignored
linux-azure-5.4	Not in release	Not in release	Not in release	Fixed
linux-azure-5.8	Not in release	Not in release	Ignored	Not in release
linux-azure-5.11	Not in release	Not in release	Ignored	Not in release
linux-azure-5.13	Not in release	Not in release	Ignored	Not in release
linux-azure-5.15	Not in release	Not in release	Fixed	Not in release
linux-azure-5.19	Not in release	Ignored	Not in release	Not in release
linux-azure-6.2	Not in release	Ignored	Not in release	Not in release
linux-azure-6.5	Not in release	Ignored	Not in release	Not in release
linux-azure-fde	Not in release	Vulnerable	Ignored	Not in release
linux-azure-fde-5.15	Not in release	Not in release	Not affected	Not in release
linux-azure-fde-5.19	Not in release	Ignored	Not in release	Not in release
linux-azure-fde-6.2	Not in release	Ignored	Not in release	Not in release
linux-bluefield	Not in release	Not in release	Fixed	Not in release
linux-azure-edge	Not in release	Not in release	Not in release	Ignored
linux-fips	Not in release	Fixed	Fixed	Fixed
linux-aws-fips	Not in release	Fixed	Fixed	Fixed
linux-azure-fips	Not in release	Fixed	Fixed	Fixed
linux-gcp-fips	Not in release	Fixed	Fixed	Fixed
linux-gcp	Fixed	Fixed	Fixed	Ignored
linux-gcp-4.15	Not in release	Not in release	Not in release	Fixed
linux-gcp-5.3	Not in release	Not in release	Not in release	Ignored
linux-gcp-5.4	Not in release	Not in release	Not in release	Fixed
linux-gcp-5.8	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.11	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.13	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.15	Not in release	Not in release	Fixed	Not in release
linux-gcp-5.19	Not in release	Ignored	Not in release	Not in release
linux-gcp-6.2	Not in release	Ignored	Not in release	Not in release
linux-gcp-6.5	Not in release	Ignored	Not in release	Not in release
linux-gke	Fixed	Fixed	Ignored	Not in release
linux-gke-4.15	Not in release	Not in release	Not in release	Ignored
linux-gke-5.4	Not in release	Not in release	Not in release	Ignored
linux-gke-5.15	Not in release	Not in release	Ignored	Not in release
linux-gkeop-5.4	Not in release	Not in release	Not in release	Ignored
linux-gkeop-5.15	Not in release	Not in release	Fixed	Not in release
linux-ibm-5.4	Not in release	Not in release	Not in release	Fixed
linux-ibm-5.15	Not in release	Not in release	Fixed	Not in release
linux-intel	Not affected	Not in release	Not in release	Not in release
linux-intel-5.13	Not in release	Not in release	Ignored	Not in release
linux-intel-iotg	Not in release	Fixed	Not in release	Not in release
linux-intel-iotg-5.15	Not in release	Not in release	Fixed	Not in release
linux-iot	Not in release	Not in release	Fixed	Not in release
linux-lowlatency	Fixed	Fixed	Not in release	Not in release
linux-lowlatency-hwe-5.15	Not in release	Not in release	Fixed	Not in release
linux-lowlatency-hwe-5.19	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.2	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.5	Not in release	Ignored	Not in release	Not in release
linux-nvidia	Fixed	Fixed	Not in release	Not in release
linux-nvidia-6.2	Not in release	Ignored	Not in release	Not in release
linux-nvidia-6.5	Not in release	Ignored	Not in release	Not in release
linux-oracle-5.0	Not in release	Not in release	Not in release	Ignored
linux-oracle-5.3	Not in release	Not in release	Not in release	Ignored
linux-oracle-5.4	Not in release	Not in release	Not in release	Fixed
linux-oracle-5.8	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.11	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.13	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.15	Not in release	Not in release	Fixed	Not in release
linux-oracle-6.5	Not in release	Ignored	Not in release	Not in release
linux-oem	Not in release	Not in release	Not in release	Ignored
linux-oem-5.6	Not in release	Not in release	Ignored	Not in release
linux-oem-5.10	Not in release	Not in release	Ignored	Not in release
linux-oem-5.13	Not in release	Not in release	Ignored	Not in release
linux-oem-5.14	Not in release	Not in release	Ignored	Not in release
linux-oem-5.17	Not in release	Ignored	Not in release	Not in release
linux-oem-6.0	Not in release	Ignored	Not in release	Not in release
linux-oem-6.1	Not in release	Ignored	Not in release	Not in release
linux-oem-6.5	Not in release	Ignored	Not in release	Not in release
linux-oem-6.8	Fixed	Not in release	Not in release	Not in release
linux-raspi2	Not in release	Not in release	Ignored	Ignored
linux-raspi-5.4	Not in release	Not in release	Not in release	Fixed
linux-riscv	Fixed	Ignored	Ignored	Not in release
linux-riscv-5.8	Not in release	Not in release	Ignored	Not in release
linux-riscv-5.11	Not in release	Not in release	Ignored	Not in release
linux-riscv-5.15	Not in release	Not in release	Fixed	Not in release
linux-riscv-5.19	Not in release	Ignored	Not in release	Not in release
linux-riscv-6.5	Not in release	Ignored	Not in release	Not in release
linux-starfive-5.19	Not in release	Ignored	Not in release	Not in release
linux-starfive-6.2	Not in release	Ignored	Not in release	Not in release
linux-starfive-6.5	Not in release	Ignored	Not in release	Not in release
linux-xilinx-zynqmp	Not in release	Fixed	Fixed	Not in release
linux-aws	Fixed	Fixed	Fixed	Fixed
linux-gkeop	Fixed	Fixed	Fixed	Not in release
linux-raspi	Fixed	Fixed	Fixed	Not in release
linux-oracle	Fixed	Fixed	Fixed	Fixed
linux-ibm	Fixed	Fixed	Fixed	Not in release
linux-nvidia-6.8	Not in release	Fixed	Not in release	Not in release
linux-nvidia-lowlatency	Fixed	Not in release	Not in release	Not in release
linux-hwe-6.8	Not in release	Fixed	Not in release	Not in release
linux-lowlatency-hwe-6.8	Not in release	Fixed	Not in release	Not in release
linux-riscv-6.8	Not in release	Fixed	Not in release	Not in release
linux-intel-iot-realtime	Not in release	Fixed	Not in release	Not in release
linux-raspi-realtime	Fixed	Not in release	Not in release	Not in release
linux-realtime	Fixed	Fixed	Not in release	Not in release
linux-aws-6.8	Not in release	Fixed	Not in release	Not in release
linux-gcp-6.8	Not in release	Fixed	Not in release	Not in release
linux-oracle-6.8	Not in release	Fixed	Not in release	Not in release
linux-azure-6.8	Not in release	Fixed	Not in release	Not in release
linux-oem-6.11	Not affected	Not in release	Not in release	Not in release
linux-hwe-6.11	Not affected	Not in release	Not in release	Not in release
linux-lowlatency-hwe-6.11	Not affected	Not in release	Not in release	Not in release
linux-nvidia-tegra	Not affected	Fixed	Not in release	Not in release
linux-nvidia-tegra-igx	Not in release	Fixed	Not in release	Not in release
linux-azure-nvidia	Not affected	Not in release	Not in release	Not in release
linux-azure-6.11	Not affected	Not in release	Not in release	Not in release
linux-gcp-6.11	Not affected	Not in release	Not in release	Not in release
linux-nvidia-tegra-5.15	Not in release	Not in release	Fixed	Not in release
linux-oem-6.14	Not affected	Not in release	Not in release	Not in release
linux-riscv-6.14	Not affected	Not in release	Not in release	Not in release
linux-ibm-6.8	Not in release	Fixed	Not in release	Not in release
linux-aws-6.14	Not affected	Not in release	Not in release	Not in release
linux-gcp-6.14	Not affected	Not in release	Not in release	Not in release
linux-hwe-6.14	Not affected	Not in release	Not in release	Not in release
linux-oracle-6.14	Not affected	Not in release	Not in release	Not in release
linux-nvidia-6.11	Not affected	Not in release	Not in release	Not in release
linux-realtime-6.14	Not affected	Not in release	Not in release	Not in release
linux-realtime-6.8	Not in release	Fixed	Not in release	Not in release

CVE-2024-4076

Medium priority

Some fixes available 5 of 6

Client queries that trigger serving stale data and that also require lookups in local authoritative zone data may result in an assertion failure. This issue affects BIND 9 versions 9.16.13 through 9.16.50, 9.18.0 through 9.18.27,...

3 affected packages

bind9, isc-dhcp, bind9-libs

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bind9	Fixed	Fixed	Fixed	Not affected
isc-dhcp	Not affected	Not affected	Not affected	Not affected
bind9-libs	Not in release	Not affected	Not affected	—

CVE-2024-1975

Medium priority

Some fixes available 7 of 14

If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a "KEY" Resource Record from a DNSSEC-signed domain in cache, a client can exhaust resolver CPU resources by sending a stream of SIG(0)...

3 affected packages

bind9, isc-dhcp, bind9-libs

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bind9	Fixed	Fixed	Fixed	Fixed
isc-dhcp	Needs evaluation	Not affected	Not affected	Needs evaluation
bind9-libs	Not in release	Needs evaluation	Needs evaluation	—

CVE-2024-1737

Medium priority

Some fixes available 7 of 14

Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname (of any RTYPE) can suffer from degraded performance as content is being added or updated, and also when handling client...

3 affected packages

bind9, isc-dhcp, bind9-libs

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bind9	Fixed	Fixed	Fixed	Fixed
isc-dhcp	Needs evaluation	Not affected	Not affected	Needs evaluation
bind9-libs	Not in release	Needs evaluation	Needs evaluation	—

CVE-2024-0760

Medium priority

Some fixes available 5 of 11

A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate...

3 affected packages

bind9, isc-dhcp, bind9-libs

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
bind9	Fixed	Fixed	Fixed	Not affected
isc-dhcp	Needs evaluation	Not affected	Not affected	Needs evaluation
bind9-libs	Not in release	Needs evaluation	Needs evaluation	—

CVE-2024-32484

Medium priority

Needs evaluation

An reflected XSS vulnerability exists in the handling of invalid paths in the Flask server in Ankitects Anki 24.04. A specially crafted flashcard can lead to JavaScript code execution and result in an arbitrary file read....

1 affected package

anki

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
anki	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2024-32152

Medium priority

Needs evaluation

A blocklist bypass vulnerability exists in the LaTeX functionality of Ankitects Anki 24.04. A specially crafted malicious flashcard can lead to an arbitrary file creation at a fixed path. An attacker can share a malicious...

1 affected package

anki

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
anki	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

Export to JSON

Results by page: