Search CVE reports
111 – 120 of 1291 results
CVE-2024-32020
Medium priorityGit is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository's object database when source and...
1 affected package
git
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| git | Fixed | Fixed | Fixed | Fixed | Not affected |
CVE-2024-32004
Medium priorityGit is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the...
1 affected package
git
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| git | Fixed | Fixed | Fixed | Fixed | Not affected |
CVE-2024-32002
Medium priorityGit is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing...
1 affected package
git
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| git | Fixed | Fixed | Fixed | Fixed | Not affected |
CVE-2024-4539
Medium priorityAn issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 where abusing the API to filter branch and tags...
1 affected package
gitlab
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gitlab | Not in release | Not in release | Not in release | — | Ignored |
CVE-2024-3727
Medium priorityA flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.
1 affected package
golang-github-opencontainers-go-digest
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| golang-github-opencontainers-go-digest | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
CVE-2024-2651
Medium priorityAn issue has been discovered in GitLab CE/EE affecting all versions before 16.9.7, all versions starting from 16.10 before 16.10.5, all versions starting from 16.11 before 16.11.2. It was possible for an attacker to cause a denial...
1 affected package
gitlab
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gitlab | Not in release | Not in release | Not in release | — | Ignored |
CVE-2024-2454
Medium priorityAn issue has been discovered in GitLab CE/EE affecting all versions starting from 15.11 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2. The pins endpoint is susceptible to DoS...
1 affected package
gitlab
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gitlab | Not in release | Not in release | Not in release | — | Ignored |
CVE-2023-6688
Medium priorityAn issue has been discovered in GitLab CE/EE affecting all versions starting from 16.11 prior to 16.11.2. A problem with the processing logic for Google Chat Messages integration may lead to a regular expression DoS attack on the server.
1 affected package
gitlab
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gitlab | Not in release | Not in release | Not in release | — | Ignored |
CVE-2023-6682
Medium priorityAn issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2. A problem with the processing logic for...
1 affected package
gitlab
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gitlab | Not in release | Not in release | Not in release | — | Ignored |
CVE-2024-3661
Medium priorityDHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An...
29 affected packages
connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt, kvpnc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| connman | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| gadmin-openvpn-client | Not in release | Not in release | Vulnerable | Vulnerable | Vulnerable |
| gadmin-openvpn-server | Not in release | Not in release | Vulnerable | Vulnerable | Vulnerable |
| golang-github-apparentlymart-go-openvpn-mgmt | Vulnerable | Vulnerable | Vulnerable | — | — |
| kvpnc | Not in release | Not in release | Not in release | Vulnerable | Vulnerable |
| libreswan | Vulnerable | Vulnerable | Vulnerable | Vulnerable | — |
| mozillavpn | Not in release | Vulnerable | Not in release | — | — |
| n2n | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| network-manager-fortisslvpn | Vulnerable | Vulnerable | Vulnerable | Vulnerable | — |
| network-manager-iodine | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| network-manager-l2tp | Vulnerable | Vulnerable | Vulnerable | Vulnerable | — |
| network-manager-openconnect | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| network-manager-openvpn | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| network-manager-pptp | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| network-manager-sstp | Vulnerable | Vulnerable | Not in release | — | — |
| network-manager-strongswan | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| network-manager-vpnc | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| openconnect | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| openfortivpn | Vulnerable | Vulnerable | Vulnerable | Vulnerable | — |
| openvpn | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| pptp-linux | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| pptpd | Not in release | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| quicktun | Vulnerable | Vulnerable | Vulnerable | Vulnerable | — |
| riseup-vpn | Vulnerable | Not in release | Not in release | — | — |
| softether-vpn | Vulnerable | Vulnerable | Not in release | — | — |
| sshuttle | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| tinc | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| vpnc | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| wireguard | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |