CVE search results

41 – 43 of 43 results

Detailed view

Sort by:

CVE-2022-37454

Medium priority

Some fixes available 16 of 20

The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the...

13 affected packages

php7.2, php7.4, pypy3, pysha3, php5...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
php7.2	—	Not in release	Not in release	Fixed
php7.4	—	Not in release	Fixed	Not in release
pypy3	Not affected	Fixed	Fixed	Not in release
pysha3	Not in release	Fixed	Fixed	Needs evaluation
php5	—	Not in release	Not in release	Not in release
php7.0	—	Not in release	Not in release	Not in release
php8.1	Not in release	Fixed	Not in release	Not in release
python3.10	Not in release	Fixed	Not in release	Not in release
python3.6	—	Not in release	Not in release	Fixed
python3.7	—	Not in release	Not in release	Fixed
python3.8	—	Not in release	Fixed	Fixed
python3.9	—	Not in release	Fixed	Not in release
python3.11	Not in release	Not affected	Not in release	Not in release

CVE-2021-28861

Low priority

Fixed

Python 3.x through 3.10 has an open redirection vulnerability in lib/http/server.py due to no protection against multiple (/) at the beginning of URI path which may leads to information disclosure. NOTE: this is disputed by a...

9 affected packages

python2.7, python3.10, python3.4, python3.5, python3.6...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
python2.7	—	Not affected	Not affected	Not affected
python3.10	—	Fixed	Not in release	Not in release
python3.4	—	Not in release	Not in release	Not in release
python3.5	—	Not in release	Not in release	Not in release
python3.6	—	Not in release	Not in release	Not affected
python3.7	—	Not in release	Not in release	Not affected
python3.8	—	Not in release	Not affected	Not affected
python3.9	—	Not in release	Fixed	Not in release
python3.11	—	Not affected	Not in release	Not in release

CVE-2007-4559

Medium priority

Some fixes available 2 of 28

Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR...

16 affected packages

python2.3, python2.4, python2.5, python2.6, python3.0...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
python2.3	—	—	—	—
python2.4	—	—	—	—
python2.5	—	—	—	—
python2.6	—	—	—	—
python3.0	—	—	—	—
python3.1	—	—	—	—
python2.7	—	Ignored	Not in release	Ignored
python3.4	—	Not in release	Not in release	Not in release
python3.5	—	Not in release	Not in release	Not in release
python3.6	—	Not in release	Not in release	Ignored
python3.7	—	Not in release	Not in release	Ignored
python3.8	—	Not in release	Ignored	Ignored
python3.9	—	Not in release	Not in release	Not in release
python3.10	—	Fixed	Not in release	Not in release
python3.11	—	Ignored	Not in release	Not in release
python3.12	—	Not in release	Not in release	Not in release

Export to JSON

Results by page:

Search CVE reports