Search CVE reports
1 – 7 of 7 results
CVE-2019-20373
Medium prioritySome fixes available 1 of 6
LTSP LDM through 2.18.06 allows fat-client root access because the LDM_USERNAME variable may have an empty value if the user's shell lacks support for Bourne shell syntax. This is related to a run-x-session script.
1 affected package
ldm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| ldm | Not in release | Not in release | Fixed | Needs evaluation | Needs evaluation |
CVE-2017-1000418
Unknown priorityThe WildMidi_Open function in WildMIDI since commit d8a466829c67cacbb1700beded25c448d99514e5 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified...
1 affected package
wildmidi
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| wildmidi | — | — | — | Not affected | Not affected |
CVE-2017-11664
Medium prioritySome fixes available 1 of 4
The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
1 affected package
wildmidi
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| wildmidi | Not affected | Not affected | Not affected | Not affected | Fixed |
CVE-2017-11663
Medium prioritySome fixes available 1 of 4
The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
1 affected package
wildmidi
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| wildmidi | Not affected | Not affected | Not affected | Not affected | Fixed |
CVE-2017-11662
Low prioritySome fixes available 1 of 4
The _WM_ParseNewMidi function in f_midi.c in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
1 affected package
wildmidi
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| wildmidi | Not affected | Not affected | Not affected | Not affected | Fixed |
CVE-2017-11661
Low prioritySome fixes available 1 of 4
The _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
1 affected package
wildmidi
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| wildmidi | Not affected | Not affected | Not affected | Not affected | Fixed |
CVE-2012-1166
Medium prioritySome fixes available 2 of 3
The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x before 2.2.7 allow remote attackers to execute arbitrary commands via the KP_RETURN keybinding, which launches a terminal window.
1 affected package
ldm
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| ldm | — | — | — | — | — |