Search CVE reports


Toggle filters

1 – 10 of 27238 results

Status is adjusted based on your filters.


CVE-2024-9427

Medium priority

Not in release

A vulnerability in Koji was found. An unsanitized input allows for an XSS attack. Javascript code from a malicious link could be reflected in the resulting web page. It is not expected to be able to submit an action or make a...

1 affected package

koji

Package 20.04 LTS
koji Not in release
Show less packages

CVE-2024-56378

Medium priority
Needs evaluation

libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc.

1 affected package

poppler

Package 20.04 LTS
poppler Needs evaluation
Show less packages

CVE-2024-56375

Medium priority
Needs evaluation

An integer underflow was discovered in Fort 1.6.3 and 1.6.4 before 1.6.5. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a Manifest RPKI object containing an empty fileList....

1 affected package

fort-validator

Package 20.04 LTS
fort-validator Needs evaluation
Show less packages

CVE-2024-56337

Medium priority
Needs evaluation

Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.1, from 10.1.0-M1 through 10.1.33, from 9.0.0.M1 through 9.0.97. The mitigation for...

5 affected packages

tomcat10, tomcat6, tomcat7, tomcat8, tomcat9

Package 20.04 LTS
tomcat10 Not in release
tomcat6 Not in release
tomcat7 Not in release
tomcat8 Not in release
tomcat9 Needs evaluation
Show less packages

CVE-2024-56326

Medium priority
Needs evaluation

Jinja is an extensible templating engine. Prior to 3.1.5, An oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code....

1 affected package

jinja2

Package 20.04 LTS
jinja2 Needs evaluation
Show less packages

CVE-2024-56201

Medium priority
Needs evaluation

Jinja is an extensible templating engine. Prior to 3.1.5, a bug in the Jinja compiler allows an attacker that controls both the content and filename of a template to execute arbitrary Python code, regardless of if Jinja's sandbox...

1 affected package

jinja2

Package 20.04 LTS
jinja2 Needs evaluation
Show less packages

CVE-2024-53163

Medium priority
Needs evaluation

In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix off by one in uof_get_name() This is called from uof_get_name_420xx() where "num_objs" is the ARRAY_SIZE() of fw_objs[]. The > needs...

125 affected packages

linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...

Package 20.04 LTS
linux Needs evaluation
linux-allwinner-5.19 Not in release
linux-aws Needs evaluation
linux-aws-5.0 Not in release
linux-aws-5.11 Ignored
linux-aws-5.13 Ignored
linux-aws-5.15 Needs evaluation
linux-aws-5.19 Not in release
linux-aws-5.3 Not in release
linux-aws-5.4 Not in release
linux-aws-5.8 Ignored
linux-aws-6.2 Not in release
linux-aws-6.5 Not in release
linux-aws-6.8 Not in release
linux-aws-fips Not in release
linux-aws-hwe Not in release
linux-azure Needs evaluation
linux-azure-4.15 Not in release
linux-azure-5.11 Ignored
linux-azure-5.13 Ignored
linux-azure-5.15 Needs evaluation
linux-azure-5.19 Not in release
linux-azure-5.3 Not in release
linux-azure-5.4 Not in release
linux-azure-5.8 Ignored
linux-azure-6.2 Not in release
linux-azure-6.5 Not in release
linux-azure-6.8 Not in release
linux-azure-edge Not in release
linux-azure-fde Ignored
linux-azure-fde-5.15 Needs evaluation
linux-azure-fde-5.19 Not in release
linux-azure-fde-6.2 Not in release
linux-azure-fips Not in release
linux-bluefield Needs evaluation
linux-fips Not in release
linux-gcp Needs evaluation
linux-gcp-4.15 Not in release
linux-gcp-5.11 Ignored
linux-gcp-5.13 Ignored
linux-gcp-5.15 Needs evaluation
linux-gcp-5.19 Not in release
linux-gcp-5.3 Not in release
linux-gcp-5.4 Not in release
linux-gcp-5.8 Ignored
linux-gcp-6.2 Not in release
linux-gcp-6.5 Not in release
linux-gcp-6.8 Not in release
linux-gcp-fips Not in release
linux-gke Ignored
linux-gke-4.15 Not in release
linux-gke-5.15 Ignored
linux-gke-5.4 Not in release
linux-gkeop Needs evaluation
linux-gkeop-5.15 Needs evaluation
linux-gkeop-5.4 Not in release
linux-hwe Not in release
linux-hwe-5.11 Ignored
linux-hwe-5.13 Ignored
linux-hwe-5.15 Needs evaluation
linux-hwe-5.19 Not in release
linux-hwe-5.4 Not in release
linux-hwe-5.8 Ignored
linux-hwe-6.2 Not in release
linux-hwe-6.5 Not in release
linux-hwe-6.8 Not in release
linux-hwe-edge Not in release
linux-ibm Needs evaluation
linux-ibm-5.15 Needs evaluation
linux-ibm-5.4 Not in release
linux-intel-5.13 Ignored
linux-intel-iot-realtime Not in release
linux-intel-iotg Not in release
linux-intel-iotg-5.15 Needs evaluation
linux-iot Needs evaluation
linux-kvm Needs evaluation
linux-lowlatency Not in release
linux-lowlatency-hwe-5.15 Needs evaluation
linux-lowlatency-hwe-5.19 Not in release
linux-lowlatency-hwe-6.2 Not in release
linux-lowlatency-hwe-6.5 Not in release
linux-lowlatency-hwe-6.8 Not in release
linux-lts-xenial Not in release
linux-nvidia Not in release
linux-nvidia-6.2 Not in release
linux-nvidia-6.5 Not in release
linux-nvidia-6.8 Not in release
linux-nvidia-lowlatency Not in release
linux-oem Not in release
linux-oem-5.10 Ignored
linux-oem-5.13 Ignored
linux-oem-5.14 Ignored
linux-oem-5.17 Not in release
linux-oem-5.6 Ignored
linux-oem-6.0 Not in release
linux-oem-6.1 Not in release
linux-oem-6.11 Not in release
linux-oem-6.5 Not in release
linux-oem-6.8 Not in release
linux-oracle Needs evaluation
linux-oracle-5.0 Not in release
linux-oracle-5.11 Ignored
linux-oracle-5.13 Ignored
linux-oracle-5.15 Needs evaluation
linux-oracle-5.3 Not in release
linux-oracle-5.4 Not in release
linux-oracle-5.8 Ignored
linux-oracle-6.5 Not in release
linux-oracle-6.8 Not in release
linux-raspi Needs evaluation
linux-raspi-5.4 Not in release
linux-raspi-realtime Not in release
linux-raspi2 Ignored
linux-realtime Not in release
linux-riscv Ignored
linux-riscv-5.11 Ignored
linux-riscv-5.15 Needs evaluation
linux-riscv-5.19 Not in release
linux-riscv-5.8 Ignored
linux-riscv-6.5 Not in release
linux-riscv-6.8 Not in release
linux-starfive-5.19 Not in release
linux-starfive-6.2 Not in release
linux-starfive-6.5 Not in release
linux-xilinx-zynqmp Needs evaluation
Show all 125 packages Show less packages

CVE-2024-53162

Medium priority
Needs evaluation

In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_4xxx - fix off by one in uof_get_name() The fw_objs[] array has "num_objs" elements so the > needs to be >= to prevent an out of bounds read.

125 affected packages

linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...

Package 20.04 LTS
linux Needs evaluation
linux-allwinner-5.19 Not in release
linux-aws Needs evaluation
linux-aws-5.0 Not in release
linux-aws-5.11 Ignored
linux-aws-5.13 Ignored
linux-aws-5.15 Needs evaluation
linux-aws-5.19 Not in release
linux-aws-5.3 Not in release
linux-aws-5.4 Not in release
linux-aws-5.8 Ignored
linux-aws-6.2 Not in release
linux-aws-6.5 Not in release
linux-aws-6.8 Not in release
linux-aws-fips Not in release
linux-aws-hwe Not in release
linux-azure Needs evaluation
linux-azure-4.15 Not in release
linux-azure-5.11 Ignored
linux-azure-5.13 Ignored
linux-azure-5.15 Needs evaluation
linux-azure-5.19 Not in release
linux-azure-5.3 Not in release
linux-azure-5.4 Not in release
linux-azure-5.8 Ignored
linux-azure-6.2 Not in release
linux-azure-6.5 Not in release
linux-azure-6.8 Not in release
linux-azure-edge Not in release
linux-azure-fde Ignored
linux-azure-fde-5.15 Needs evaluation
linux-azure-fde-5.19 Not in release
linux-azure-fde-6.2 Not in release
linux-azure-fips Not in release
linux-bluefield Needs evaluation
linux-fips Not in release
linux-gcp Needs evaluation
linux-gcp-4.15 Not in release
linux-gcp-5.11 Ignored
linux-gcp-5.13 Ignored
linux-gcp-5.15 Needs evaluation
linux-gcp-5.19 Not in release
linux-gcp-5.3 Not in release
linux-gcp-5.4 Not in release
linux-gcp-5.8 Ignored
linux-gcp-6.2 Not in release
linux-gcp-6.5 Not in release
linux-gcp-6.8 Not in release
linux-gcp-fips Not in release
linux-gke Ignored
linux-gke-4.15 Not in release
linux-gke-5.15 Ignored
linux-gke-5.4 Not in release
linux-gkeop Needs evaluation
linux-gkeop-5.15 Needs evaluation
linux-gkeop-5.4 Not in release
linux-hwe Not in release
linux-hwe-5.11 Ignored
linux-hwe-5.13 Ignored
linux-hwe-5.15 Needs evaluation
linux-hwe-5.19 Not in release
linux-hwe-5.4 Not in release
linux-hwe-5.8 Ignored
linux-hwe-6.2 Not in release
linux-hwe-6.5 Not in release
linux-hwe-6.8 Not in release
linux-hwe-edge Not in release
linux-ibm Needs evaluation
linux-ibm-5.15 Needs evaluation
linux-ibm-5.4 Not in release
linux-intel-5.13 Ignored
linux-intel-iot-realtime Not in release
linux-intel-iotg Not in release
linux-intel-iotg-5.15 Needs evaluation
linux-iot Needs evaluation
linux-kvm Needs evaluation
linux-lowlatency Not in release
linux-lowlatency-hwe-5.15 Needs evaluation
linux-lowlatency-hwe-5.19 Not in release
linux-lowlatency-hwe-6.2 Not in release
linux-lowlatency-hwe-6.5 Not in release
linux-lowlatency-hwe-6.8 Not in release
linux-lts-xenial Not in release
linux-nvidia Not in release
linux-nvidia-6.2 Not in release
linux-nvidia-6.5 Not in release
linux-nvidia-6.8 Not in release
linux-nvidia-lowlatency Not in release
linux-oem Not in release
linux-oem-5.10 Ignored
linux-oem-5.13 Ignored
linux-oem-5.14 Ignored
linux-oem-5.17 Not in release
linux-oem-5.6 Ignored
linux-oem-6.0 Not in release
linux-oem-6.1 Not in release
linux-oem-6.11 Not in release
linux-oem-6.5 Not in release
linux-oem-6.8 Not in release
linux-oracle Needs evaluation
linux-oracle-5.0 Not in release
linux-oracle-5.11 Ignored
linux-oracle-5.13 Ignored
linux-oracle-5.15 Needs evaluation
linux-oracle-5.3 Not in release
linux-oracle-5.4 Not in release
linux-oracle-5.8 Ignored
linux-oracle-6.5 Not in release
linux-oracle-6.8 Not in release
linux-raspi Needs evaluation
linux-raspi-5.4 Not in release
linux-raspi-realtime Not in release
linux-raspi2 Ignored
linux-realtime Not in release
linux-riscv Ignored
linux-riscv-5.11 Ignored
linux-riscv-5.15 Needs evaluation
linux-riscv-5.19 Not in release
linux-riscv-5.8 Ignored
linux-riscv-6.5 Not in release
linux-riscv-6.8 Not in release
linux-starfive-5.19 Not in release
linux-starfive-6.2 Not in release
linux-starfive-6.5 Not in release
linux-xilinx-zynqmp Needs evaluation
Show all 125 packages Show less packages

CVE-2024-53161

Medium priority
Needs evaluation

In the Linux kernel, the following vulnerability has been resolved: EDAC/bluefield: Fix potential integer overflow The 64-bit argument for the "get DIMM info" SMC call consists of mem_ctrl_idx left-shifted 16 bits and OR-ed with...

125 affected packages

linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...

Package 20.04 LTS
linux Needs evaluation
linux-allwinner-5.19 Not in release
linux-aws Needs evaluation
linux-aws-5.0 Not in release
linux-aws-5.11 Ignored
linux-aws-5.13 Ignored
linux-aws-5.15 Needs evaluation
linux-aws-5.19 Not in release
linux-aws-5.3 Not in release
linux-aws-5.4 Not in release
linux-aws-5.8 Ignored
linux-aws-6.2 Not in release
linux-aws-6.5 Not in release
linux-aws-6.8 Not in release
linux-aws-fips Not in release
linux-aws-hwe Not in release
linux-azure Needs evaluation
linux-azure-4.15 Not in release
linux-azure-5.11 Ignored
linux-azure-5.13 Ignored
linux-azure-5.15 Needs evaluation
linux-azure-5.19 Not in release
linux-azure-5.3 Not in release
linux-azure-5.4 Not in release
linux-azure-5.8 Ignored
linux-azure-6.2 Not in release
linux-azure-6.5 Not in release
linux-azure-6.8 Not in release
linux-azure-edge Not in release
linux-azure-fde Ignored
linux-azure-fde-5.15 Needs evaluation
linux-azure-fde-5.19 Not in release
linux-azure-fde-6.2 Not in release
linux-azure-fips Not in release
linux-bluefield Needs evaluation
linux-fips Not in release
linux-gcp Needs evaluation
linux-gcp-4.15 Not in release
linux-gcp-5.11 Ignored
linux-gcp-5.13 Ignored
linux-gcp-5.15 Needs evaluation
linux-gcp-5.19 Not in release
linux-gcp-5.3 Not in release
linux-gcp-5.4 Not in release
linux-gcp-5.8 Ignored
linux-gcp-6.2 Not in release
linux-gcp-6.5 Not in release
linux-gcp-6.8 Not in release
linux-gcp-fips Not in release
linux-gke Ignored
linux-gke-4.15 Not in release
linux-gke-5.15 Ignored
linux-gke-5.4 Not in release
linux-gkeop Needs evaluation
linux-gkeop-5.15 Needs evaluation
linux-gkeop-5.4 Not in release
linux-hwe Not in release
linux-hwe-5.11 Ignored
linux-hwe-5.13 Ignored
linux-hwe-5.15 Needs evaluation
linux-hwe-5.19 Not in release
linux-hwe-5.4 Not in release
linux-hwe-5.8 Ignored
linux-hwe-6.2 Not in release
linux-hwe-6.5 Not in release
linux-hwe-6.8 Not in release
linux-hwe-edge Not in release
linux-ibm Needs evaluation
linux-ibm-5.15 Needs evaluation
linux-ibm-5.4 Not in release
linux-intel-5.13 Ignored
linux-intel-iot-realtime Not in release
linux-intel-iotg Not in release
linux-intel-iotg-5.15 Needs evaluation
linux-iot Needs evaluation
linux-kvm Needs evaluation
linux-lowlatency Not in release
linux-lowlatency-hwe-5.15 Needs evaluation
linux-lowlatency-hwe-5.19 Not in release
linux-lowlatency-hwe-6.2 Not in release
linux-lowlatency-hwe-6.5 Not in release
linux-lowlatency-hwe-6.8 Not in release
linux-lts-xenial Not in release
linux-nvidia Not in release
linux-nvidia-6.2 Not in release
linux-nvidia-6.5 Not in release
linux-nvidia-6.8 Not in release
linux-nvidia-lowlatency Not in release
linux-oem Not in release
linux-oem-5.10 Ignored
linux-oem-5.13 Ignored
linux-oem-5.14 Ignored
linux-oem-5.17 Not in release
linux-oem-5.6 Ignored
linux-oem-6.0 Not in release
linux-oem-6.1 Not in release
linux-oem-6.11 Not in release
linux-oem-6.5 Not in release
linux-oem-6.8 Not in release
linux-oracle Needs evaluation
linux-oracle-5.0 Not in release
linux-oracle-5.11 Ignored
linux-oracle-5.13 Ignored
linux-oracle-5.15 Needs evaluation
linux-oracle-5.3 Not in release
linux-oracle-5.4 Not in release
linux-oracle-5.8 Ignored
linux-oracle-6.5 Not in release
linux-oracle-6.8 Not in release
linux-raspi Needs evaluation
linux-raspi-5.4 Not in release
linux-raspi-realtime Not in release
linux-raspi2 Ignored
linux-realtime Not in release
linux-riscv Ignored
linux-riscv-5.11 Ignored
linux-riscv-5.15 Needs evaluation
linux-riscv-5.19 Not in release
linux-riscv-5.8 Ignored
linux-riscv-6.5 Not in release
linux-riscv-6.8 Not in release
linux-starfive-5.19 Not in release
linux-starfive-6.2 Not in release
linux-starfive-6.5 Not in release
linux-xilinx-zynqmp Needs evaluation
Show all 125 packages Show less packages

CVE-2024-53160

Medium priority
Needs evaluation

In the Linux kernel, the following vulnerability has been resolved: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu KCSAN reports a data race when access the krcp->monitor_work.timer.expires variable in the...

125 affected packages

linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...

Package 20.04 LTS
linux Needs evaluation
linux-allwinner-5.19 Not in release
linux-aws Needs evaluation
linux-aws-5.0 Not in release
linux-aws-5.11 Ignored
linux-aws-5.13 Ignored
linux-aws-5.15 Needs evaluation
linux-aws-5.19 Not in release
linux-aws-5.3 Not in release
linux-aws-5.4 Not in release
linux-aws-5.8 Ignored
linux-aws-6.2 Not in release
linux-aws-6.5 Not in release
linux-aws-6.8 Not in release
linux-aws-fips Not in release
linux-aws-hwe Not in release
linux-azure Needs evaluation
linux-azure-4.15 Not in release
linux-azure-5.11 Ignored
linux-azure-5.13 Ignored
linux-azure-5.15 Needs evaluation
linux-azure-5.19 Not in release
linux-azure-5.3 Not in release
linux-azure-5.4 Not in release
linux-azure-5.8 Ignored
linux-azure-6.2 Not in release
linux-azure-6.5 Not in release
linux-azure-6.8 Not in release
linux-azure-edge Not in release
linux-azure-fde Ignored
linux-azure-fde-5.15 Needs evaluation
linux-azure-fde-5.19 Not in release
linux-azure-fde-6.2 Not in release
linux-azure-fips Not in release
linux-bluefield Needs evaluation
linux-fips Not in release
linux-gcp Needs evaluation
linux-gcp-4.15 Not in release
linux-gcp-5.11 Ignored
linux-gcp-5.13 Ignored
linux-gcp-5.15 Needs evaluation
linux-gcp-5.19 Not in release
linux-gcp-5.3 Not in release
linux-gcp-5.4 Not in release
linux-gcp-5.8 Ignored
linux-gcp-6.2 Not in release
linux-gcp-6.5 Not in release
linux-gcp-6.8 Not in release
linux-gcp-fips Not in release
linux-gke Ignored
linux-gke-4.15 Not in release
linux-gke-5.15 Ignored
linux-gke-5.4 Not in release
linux-gkeop Needs evaluation
linux-gkeop-5.15 Needs evaluation
linux-gkeop-5.4 Not in release
linux-hwe Not in release
linux-hwe-5.11 Ignored
linux-hwe-5.13 Ignored
linux-hwe-5.15 Needs evaluation
linux-hwe-5.19 Not in release
linux-hwe-5.4 Not in release
linux-hwe-5.8 Ignored
linux-hwe-6.2 Not in release
linux-hwe-6.5 Not in release
linux-hwe-6.8 Not in release
linux-hwe-edge Not in release
linux-ibm Needs evaluation
linux-ibm-5.15 Needs evaluation
linux-ibm-5.4 Not in release
linux-intel-5.13 Ignored
linux-intel-iot-realtime Not in release
linux-intel-iotg Not in release
linux-intel-iotg-5.15 Needs evaluation
linux-iot Needs evaluation
linux-kvm Needs evaluation
linux-lowlatency Not in release
linux-lowlatency-hwe-5.15 Needs evaluation
linux-lowlatency-hwe-5.19 Not in release
linux-lowlatency-hwe-6.2 Not in release
linux-lowlatency-hwe-6.5 Not in release
linux-lowlatency-hwe-6.8 Not in release
linux-lts-xenial Not in release
linux-nvidia Not in release
linux-nvidia-6.2 Not in release
linux-nvidia-6.5 Not in release
linux-nvidia-6.8 Not in release
linux-nvidia-lowlatency Not in release
linux-oem Not in release
linux-oem-5.10 Ignored
linux-oem-5.13 Ignored
linux-oem-5.14 Ignored
linux-oem-5.17 Not in release
linux-oem-5.6 Ignored
linux-oem-6.0 Not in release
linux-oem-6.1 Not in release
linux-oem-6.11 Not in release
linux-oem-6.5 Not in release
linux-oem-6.8 Not in release
linux-oracle Needs evaluation
linux-oracle-5.0 Not in release
linux-oracle-5.11 Ignored
linux-oracle-5.13 Ignored
linux-oracle-5.15 Needs evaluation
linux-oracle-5.3 Not in release
linux-oracle-5.4 Not in release
linux-oracle-5.8 Ignored
linux-oracle-6.5 Not in release
linux-oracle-6.8 Not in release
linux-raspi Needs evaluation
linux-raspi-5.4 Not in release
linux-raspi-realtime Not in release
linux-raspi2 Ignored
linux-realtime Not in release
linux-riscv Ignored
linux-riscv-5.11 Ignored
linux-riscv-5.15 Needs evaluation
linux-riscv-5.19 Not in release
linux-riscv-5.8 Ignored
linux-riscv-6.5 Not in release
linux-riscv-6.8 Not in release
linux-starfive-5.19 Not in release
linux-starfive-6.2 Not in release
linux-starfive-6.5 Not in release
linux-xilinx-zynqmp Needs evaluation
Show all 125 packages Show less packages