Search CVE reports


Toggle filters

1 – 10 of 32036 results

Status is adjusted based on your filters.


CVE-2024-9427

Medium priority
Needs evaluation

A vulnerability in Koji was found. An unsanitized input allows for an XSS attack. Javascript code from a malicious link could be reflected in the resulting web page. It is not expected to be able to submit an action or make a...

1 affected package

koji

Package 18.04 LTS
koji Needs evaluation
Show less packages

CVE-2024-56378

Medium priority
Needs evaluation

libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc.

1 affected package

poppler

Package 18.04 LTS
poppler Needs evaluation
Show less packages

CVE-2024-56337

Medium priority
Needs evaluation

Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.1, from 10.1.0-M1 through 10.1.33, from 9.0.0.M1 through 9.0.97. The mitigation for...

5 affected packages

tomcat10, tomcat6, tomcat7, tomcat8, tomcat9

Package 18.04 LTS
tomcat10
tomcat6
tomcat7 Needs evaluation
tomcat8 Needs evaluation
tomcat9 Needs evaluation
Show less packages

CVE-2024-56326

Medium priority
Needs evaluation

Jinja is an extensible templating engine. Prior to 3.1.5, An oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code....

1 affected package

jinja2

Package 18.04 LTS
jinja2 Needs evaluation
Show less packages

CVE-2024-56201

Medium priority
Needs evaluation

Jinja is an extensible templating engine. Prior to 3.1.5, a bug in the Jinja compiler allows an attacker that controls both the content and filename of a template to execute arbitrary Python code, regardless of if Jinja's sandbox...

1 affected package

jinja2

Package 18.04 LTS
jinja2 Needs evaluation
Show less packages

CVE-2024-53163

Medium priority
Needs evaluation

In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix off by one in uof_get_name() This is called from uof_get_name_420xx() where "num_objs" is the ARRAY_SIZE() of fw_objs[]. The > needs...

125 affected packages

linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...

Package 18.04 LTS
linux Needs evaluation
linux-allwinner-5.19
linux-aws Needs evaluation
linux-aws-5.0 Ignored
linux-aws-5.11
linux-aws-5.13
linux-aws-5.15
linux-aws-5.19
linux-aws-5.3 Ignored
linux-aws-5.4 Needs evaluation
linux-aws-5.8
linux-aws-6.2
linux-aws-6.5
linux-aws-6.8
linux-aws-fips
linux-aws-hwe
linux-azure Ignored
linux-azure-4.15 Needs evaluation
linux-azure-5.11
linux-azure-5.13
linux-azure-5.15
linux-azure-5.19
linux-azure-5.3 Ignored
linux-azure-5.4 Needs evaluation
linux-azure-5.8
linux-azure-6.2
linux-azure-6.5
linux-azure-6.8
linux-azure-edge Ignored
linux-azure-fde
linux-azure-fde-5.15
linux-azure-fde-5.19
linux-azure-fde-6.2
linux-azure-fips
linux-bluefield
linux-fips
linux-gcp Ignored
linux-gcp-4.15 Needs evaluation
linux-gcp-5.11
linux-gcp-5.13
linux-gcp-5.15
linux-gcp-5.19
linux-gcp-5.3 Ignored
linux-gcp-5.4 Needs evaluation
linux-gcp-5.8
linux-gcp-6.2
linux-gcp-6.5
linux-gcp-6.8
linux-gcp-fips
linux-gke
linux-gke-4.15 Ignored
linux-gke-5.15
linux-gke-5.4 Ignored
linux-gkeop
linux-gkeop-5.15
linux-gkeop-5.4 Ignored
linux-hwe Ignored
linux-hwe-5.11
linux-hwe-5.13
linux-hwe-5.15
linux-hwe-5.19
linux-hwe-5.4 Needs evaluation
linux-hwe-5.8
linux-hwe-6.2
linux-hwe-6.5
linux-hwe-6.8
linux-hwe-edge Ignored
linux-ibm
linux-ibm-5.15
linux-ibm-5.4 Needs evaluation
linux-intel-5.13
linux-intel-iot-realtime
linux-intel-iotg
linux-intel-iotg-5.15
linux-iot
linux-kvm Needs evaluation
linux-lowlatency
linux-lowlatency-hwe-5.15
linux-lowlatency-hwe-5.19
linux-lowlatency-hwe-6.2
linux-lowlatency-hwe-6.5
linux-lowlatency-hwe-6.8
linux-lts-xenial
linux-nvidia
linux-nvidia-6.2
linux-nvidia-6.5
linux-nvidia-6.8
linux-nvidia-lowlatency
linux-oem Ignored
linux-oem-5.10
linux-oem-5.13
linux-oem-5.14
linux-oem-5.17
linux-oem-5.6
linux-oem-6.0
linux-oem-6.1
linux-oem-6.11
linux-oem-6.5
linux-oem-6.8
linux-oracle Needs evaluation
linux-oracle-5.0 Ignored
linux-oracle-5.11
linux-oracle-5.13
linux-oracle-5.15
linux-oracle-5.3 Ignored
linux-oracle-5.4 Needs evaluation
linux-oracle-5.8
linux-oracle-6.5
linux-oracle-6.8
linux-raspi
linux-raspi-5.4 Needs evaluation
linux-raspi-realtime
linux-raspi2
linux-realtime
linux-riscv
linux-riscv-5.11
linux-riscv-5.15
linux-riscv-5.19
linux-riscv-5.8
linux-riscv-6.5
linux-riscv-6.8
linux-starfive-5.19
linux-starfive-6.2
linux-starfive-6.5
linux-xilinx-zynqmp
Show all 125 packages Show less packages

CVE-2024-53162

Medium priority
Needs evaluation

In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_4xxx - fix off by one in uof_get_name() The fw_objs[] array has "num_objs" elements so the > needs to be >= to prevent an out of bounds read.

125 affected packages

linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...

Package 18.04 LTS
linux Needs evaluation
linux-allwinner-5.19
linux-aws Needs evaluation
linux-aws-5.0 Ignored
linux-aws-5.11
linux-aws-5.13
linux-aws-5.15
linux-aws-5.19
linux-aws-5.3 Ignored
linux-aws-5.4 Needs evaluation
linux-aws-5.8
linux-aws-6.2
linux-aws-6.5
linux-aws-6.8
linux-aws-fips
linux-aws-hwe
linux-azure Ignored
linux-azure-4.15 Needs evaluation
linux-azure-5.11
linux-azure-5.13
linux-azure-5.15
linux-azure-5.19
linux-azure-5.3 Ignored
linux-azure-5.4 Needs evaluation
linux-azure-5.8
linux-azure-6.2
linux-azure-6.5
linux-azure-6.8
linux-azure-edge Ignored
linux-azure-fde
linux-azure-fde-5.15
linux-azure-fde-5.19
linux-azure-fde-6.2
linux-azure-fips
linux-bluefield
linux-fips
linux-gcp Ignored
linux-gcp-4.15 Needs evaluation
linux-gcp-5.11
linux-gcp-5.13
linux-gcp-5.15
linux-gcp-5.19
linux-gcp-5.3 Ignored
linux-gcp-5.4 Needs evaluation
linux-gcp-5.8
linux-gcp-6.2
linux-gcp-6.5
linux-gcp-6.8
linux-gcp-fips
linux-gke
linux-gke-4.15 Ignored
linux-gke-5.15
linux-gke-5.4 Ignored
linux-gkeop
linux-gkeop-5.15
linux-gkeop-5.4 Ignored
linux-hwe Ignored
linux-hwe-5.11
linux-hwe-5.13
linux-hwe-5.15
linux-hwe-5.19
linux-hwe-5.4 Needs evaluation
linux-hwe-5.8
linux-hwe-6.2
linux-hwe-6.5
linux-hwe-6.8
linux-hwe-edge Ignored
linux-ibm
linux-ibm-5.15
linux-ibm-5.4 Needs evaluation
linux-intel-5.13
linux-intel-iot-realtime
linux-intel-iotg
linux-intel-iotg-5.15
linux-iot
linux-kvm Needs evaluation
linux-lowlatency
linux-lowlatency-hwe-5.15
linux-lowlatency-hwe-5.19
linux-lowlatency-hwe-6.2
linux-lowlatency-hwe-6.5
linux-lowlatency-hwe-6.8
linux-lts-xenial
linux-nvidia
linux-nvidia-6.2
linux-nvidia-6.5
linux-nvidia-6.8
linux-nvidia-lowlatency
linux-oem Ignored
linux-oem-5.10
linux-oem-5.13
linux-oem-5.14
linux-oem-5.17
linux-oem-5.6
linux-oem-6.0
linux-oem-6.1
linux-oem-6.11
linux-oem-6.5
linux-oem-6.8
linux-oracle Needs evaluation
linux-oracle-5.0 Ignored
linux-oracle-5.11
linux-oracle-5.13
linux-oracle-5.15
linux-oracle-5.3 Ignored
linux-oracle-5.4 Needs evaluation
linux-oracle-5.8
linux-oracle-6.5
linux-oracle-6.8
linux-raspi
linux-raspi-5.4 Needs evaluation
linux-raspi-realtime
linux-raspi2
linux-realtime
linux-riscv
linux-riscv-5.11
linux-riscv-5.15
linux-riscv-5.19
linux-riscv-5.8
linux-riscv-6.5
linux-riscv-6.8
linux-starfive-5.19
linux-starfive-6.2
linux-starfive-6.5
linux-xilinx-zynqmp
Show all 125 packages Show less packages

CVE-2024-53161

Medium priority
Needs evaluation

In the Linux kernel, the following vulnerability has been resolved: EDAC/bluefield: Fix potential integer overflow The 64-bit argument for the "get DIMM info" SMC call consists of mem_ctrl_idx left-shifted 16 bits and OR-ed with...

125 affected packages

linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...

Package 18.04 LTS
linux Needs evaluation
linux-allwinner-5.19
linux-aws Needs evaluation
linux-aws-5.0 Ignored
linux-aws-5.11
linux-aws-5.13
linux-aws-5.15
linux-aws-5.19
linux-aws-5.3 Ignored
linux-aws-5.4 Needs evaluation
linux-aws-5.8
linux-aws-6.2
linux-aws-6.5
linux-aws-6.8
linux-aws-fips
linux-aws-hwe
linux-azure Ignored
linux-azure-4.15 Needs evaluation
linux-azure-5.11
linux-azure-5.13
linux-azure-5.15
linux-azure-5.19
linux-azure-5.3 Ignored
linux-azure-5.4 Needs evaluation
linux-azure-5.8
linux-azure-6.2
linux-azure-6.5
linux-azure-6.8
linux-azure-edge Ignored
linux-azure-fde
linux-azure-fde-5.15
linux-azure-fde-5.19
linux-azure-fde-6.2
linux-azure-fips
linux-bluefield
linux-fips
linux-gcp Ignored
linux-gcp-4.15 Needs evaluation
linux-gcp-5.11
linux-gcp-5.13
linux-gcp-5.15
linux-gcp-5.19
linux-gcp-5.3 Ignored
linux-gcp-5.4 Needs evaluation
linux-gcp-5.8
linux-gcp-6.2
linux-gcp-6.5
linux-gcp-6.8
linux-gcp-fips
linux-gke
linux-gke-4.15 Ignored
linux-gke-5.15
linux-gke-5.4 Ignored
linux-gkeop
linux-gkeop-5.15
linux-gkeop-5.4 Ignored
linux-hwe Ignored
linux-hwe-5.11
linux-hwe-5.13
linux-hwe-5.15
linux-hwe-5.19
linux-hwe-5.4 Needs evaluation
linux-hwe-5.8
linux-hwe-6.2
linux-hwe-6.5
linux-hwe-6.8
linux-hwe-edge Ignored
linux-ibm
linux-ibm-5.15
linux-ibm-5.4 Needs evaluation
linux-intel-5.13
linux-intel-iot-realtime
linux-intel-iotg
linux-intel-iotg-5.15
linux-iot
linux-kvm Needs evaluation
linux-lowlatency
linux-lowlatency-hwe-5.15
linux-lowlatency-hwe-5.19
linux-lowlatency-hwe-6.2
linux-lowlatency-hwe-6.5
linux-lowlatency-hwe-6.8
linux-lts-xenial
linux-nvidia
linux-nvidia-6.2
linux-nvidia-6.5
linux-nvidia-6.8
linux-nvidia-lowlatency
linux-oem Ignored
linux-oem-5.10
linux-oem-5.13
linux-oem-5.14
linux-oem-5.17
linux-oem-5.6
linux-oem-6.0
linux-oem-6.1
linux-oem-6.11
linux-oem-6.5
linux-oem-6.8
linux-oracle Needs evaluation
linux-oracle-5.0 Ignored
linux-oracle-5.11
linux-oracle-5.13
linux-oracle-5.15
linux-oracle-5.3 Ignored
linux-oracle-5.4 Needs evaluation
linux-oracle-5.8
linux-oracle-6.5
linux-oracle-6.8
linux-raspi
linux-raspi-5.4 Needs evaluation
linux-raspi-realtime
linux-raspi2
linux-realtime
linux-riscv
linux-riscv-5.11
linux-riscv-5.15
linux-riscv-5.19
linux-riscv-5.8
linux-riscv-6.5
linux-riscv-6.8
linux-starfive-5.19
linux-starfive-6.2
linux-starfive-6.5
linux-xilinx-zynqmp
Show all 125 packages Show less packages

CVE-2024-53160

Medium priority
Needs evaluation

In the Linux kernel, the following vulnerability has been resolved: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu KCSAN reports a data race when access the krcp->monitor_work.timer.expires variable in the...

125 affected packages

linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...

Package 18.04 LTS
linux Needs evaluation
linux-allwinner-5.19
linux-aws Needs evaluation
linux-aws-5.0 Ignored
linux-aws-5.11
linux-aws-5.13
linux-aws-5.15
linux-aws-5.19
linux-aws-5.3 Ignored
linux-aws-5.4 Needs evaluation
linux-aws-5.8
linux-aws-6.2
linux-aws-6.5
linux-aws-6.8
linux-aws-fips
linux-aws-hwe
linux-azure Ignored
linux-azure-4.15 Needs evaluation
linux-azure-5.11
linux-azure-5.13
linux-azure-5.15
linux-azure-5.19
linux-azure-5.3 Ignored
linux-azure-5.4 Needs evaluation
linux-azure-5.8
linux-azure-6.2
linux-azure-6.5
linux-azure-6.8
linux-azure-edge Ignored
linux-azure-fde
linux-azure-fde-5.15
linux-azure-fde-5.19
linux-azure-fde-6.2
linux-azure-fips
linux-bluefield
linux-fips
linux-gcp Ignored
linux-gcp-4.15 Needs evaluation
linux-gcp-5.11
linux-gcp-5.13
linux-gcp-5.15
linux-gcp-5.19
linux-gcp-5.3 Ignored
linux-gcp-5.4 Needs evaluation
linux-gcp-5.8
linux-gcp-6.2
linux-gcp-6.5
linux-gcp-6.8
linux-gcp-fips
linux-gke
linux-gke-4.15 Ignored
linux-gke-5.15
linux-gke-5.4 Ignored
linux-gkeop
linux-gkeop-5.15
linux-gkeop-5.4 Ignored
linux-hwe Ignored
linux-hwe-5.11
linux-hwe-5.13
linux-hwe-5.15
linux-hwe-5.19
linux-hwe-5.4 Needs evaluation
linux-hwe-5.8
linux-hwe-6.2
linux-hwe-6.5
linux-hwe-6.8
linux-hwe-edge Ignored
linux-ibm
linux-ibm-5.15
linux-ibm-5.4 Needs evaluation
linux-intel-5.13
linux-intel-iot-realtime
linux-intel-iotg
linux-intel-iotg-5.15
linux-iot
linux-kvm Needs evaluation
linux-lowlatency
linux-lowlatency-hwe-5.15
linux-lowlatency-hwe-5.19
linux-lowlatency-hwe-6.2
linux-lowlatency-hwe-6.5
linux-lowlatency-hwe-6.8
linux-lts-xenial
linux-nvidia
linux-nvidia-6.2
linux-nvidia-6.5
linux-nvidia-6.8
linux-nvidia-lowlatency
linux-oem Ignored
linux-oem-5.10
linux-oem-5.13
linux-oem-5.14
linux-oem-5.17
linux-oem-5.6
linux-oem-6.0
linux-oem-6.1
linux-oem-6.11
linux-oem-6.5
linux-oem-6.8
linux-oracle Needs evaluation
linux-oracle-5.0 Ignored
linux-oracle-5.11
linux-oracle-5.13
linux-oracle-5.15
linux-oracle-5.3 Ignored
linux-oracle-5.4 Needs evaluation
linux-oracle-5.8
linux-oracle-6.5
linux-oracle-6.8
linux-raspi
linux-raspi-5.4 Needs evaluation
linux-raspi-realtime
linux-raspi2
linux-realtime
linux-riscv
linux-riscv-5.11
linux-riscv-5.15
linux-riscv-5.19
linux-riscv-5.8
linux-riscv-6.5
linux-riscv-6.8
linux-starfive-5.19
linux-starfive-6.2
linux-starfive-6.5
linux-xilinx-zynqmp
Show all 125 packages Show less packages

CVE-2024-53159

Medium priority
Needs evaluation

In the Linux kernel, the following vulnerability has been resolved: hwmon: (nct6775-core) Fix overflows seen when writing limit attributes DIV_ROUND_CLOSEST() after kstrtoul() results in an overflow if a large number such as...

125 affected packages

linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...

Package 18.04 LTS
linux Needs evaluation
linux-allwinner-5.19
linux-aws Needs evaluation
linux-aws-5.0 Ignored
linux-aws-5.11
linux-aws-5.13
linux-aws-5.15
linux-aws-5.19
linux-aws-5.3 Ignored
linux-aws-5.4 Needs evaluation
linux-aws-5.8
linux-aws-6.2
linux-aws-6.5
linux-aws-6.8
linux-aws-fips
linux-aws-hwe
linux-azure Ignored
linux-azure-4.15 Needs evaluation
linux-azure-5.11
linux-azure-5.13
linux-azure-5.15
linux-azure-5.19
linux-azure-5.3 Ignored
linux-azure-5.4 Needs evaluation
linux-azure-5.8
linux-azure-6.2
linux-azure-6.5
linux-azure-6.8
linux-azure-edge Ignored
linux-azure-fde
linux-azure-fde-5.15
linux-azure-fde-5.19
linux-azure-fde-6.2
linux-azure-fips
linux-bluefield
linux-fips
linux-gcp Ignored
linux-gcp-4.15 Needs evaluation
linux-gcp-5.11
linux-gcp-5.13
linux-gcp-5.15
linux-gcp-5.19
linux-gcp-5.3 Ignored
linux-gcp-5.4 Needs evaluation
linux-gcp-5.8
linux-gcp-6.2
linux-gcp-6.5
linux-gcp-6.8
linux-gcp-fips
linux-gke
linux-gke-4.15 Ignored
linux-gke-5.15
linux-gke-5.4 Ignored
linux-gkeop
linux-gkeop-5.15
linux-gkeop-5.4 Ignored
linux-hwe Ignored
linux-hwe-5.11
linux-hwe-5.13
linux-hwe-5.15
linux-hwe-5.19
linux-hwe-5.4 Needs evaluation
linux-hwe-5.8
linux-hwe-6.2
linux-hwe-6.5
linux-hwe-6.8
linux-hwe-edge Ignored
linux-ibm
linux-ibm-5.15
linux-ibm-5.4 Needs evaluation
linux-intel-5.13
linux-intel-iot-realtime
linux-intel-iotg
linux-intel-iotg-5.15
linux-iot
linux-kvm Needs evaluation
linux-lowlatency
linux-lowlatency-hwe-5.15
linux-lowlatency-hwe-5.19
linux-lowlatency-hwe-6.2
linux-lowlatency-hwe-6.5
linux-lowlatency-hwe-6.8
linux-lts-xenial
linux-nvidia
linux-nvidia-6.2
linux-nvidia-6.5
linux-nvidia-6.8
linux-nvidia-lowlatency
linux-oem Ignored
linux-oem-5.10
linux-oem-5.13
linux-oem-5.14
linux-oem-5.17
linux-oem-5.6
linux-oem-6.0
linux-oem-6.1
linux-oem-6.11
linux-oem-6.5
linux-oem-6.8
linux-oracle Needs evaluation
linux-oracle-5.0 Ignored
linux-oracle-5.11
linux-oracle-5.13
linux-oracle-5.15
linux-oracle-5.3 Ignored
linux-oracle-5.4 Needs evaluation
linux-oracle-5.8
linux-oracle-6.5
linux-oracle-6.8
linux-raspi
linux-raspi-5.4 Needs evaluation
linux-raspi-realtime
linux-raspi2
linux-realtime
linux-riscv
linux-riscv-5.11
linux-riscv-5.15
linux-riscv-5.19
linux-riscv-5.8
linux-riscv-6.5
linux-riscv-6.8
linux-starfive-5.19
linux-starfive-6.2
linux-starfive-6.5
linux-xilinx-zynqmp
Show all 125 packages Show less packages