Search CVE reports
1 – 10 of 33125 results
Sinatra is a domain-specific language for creating web applications in Ruby. In versions prior to 4.2.0, there is a denial of service vulnerability in the `If-Match` and `If-None-Match` header parsing component of Sinatra, if the...
1 affected package
ruby-sinatra
| Package | 22.04 LTS |
|---|---|
| ruby-sinatra | Needs evaluation |
Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.5, Authlib’s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose...
1 affected package
python-authlib
| Package | 22.04 LTS |
|---|---|
| python-authlib | Needs evaluation |
Rack is a modular Ruby web server interface. Prior to versions 2.2.20, 3.1.18, and 3.2.3, `Rack::Request#POST` reads the entire request body into memory for `Content-Type: application/x-www-form-urlencoded`,...
1 affected package
ruby-rack
| Package | 22.04 LTS |
|---|---|
| ruby-rack | Needs evaluation |
python-ldap is a lightweight directory access protocol (LDAP) client API for Python. In versions prior to 3.4.5, ldap.dn.escape_dn_chars() escapes \x00 incorrectly by emitting a backslash followed by a literal NUL byte instead of...
1 affected package
python-ldap
| Package | 22.04 LTS |
|---|---|
| python-ldap | Needs evaluation |
python-ldap is a lightweight directory access protocol (LDAP) client API for Python. In versions prior to 3.4.5, the sanitization method `ldap.filter.escape_filter_chars` can be tricked to skip escaping of special characters when...
1 affected package
python-ldap
| Package | 22.04 LTS |
|---|---|
| python-ldap | Needs evaluation |
Rack is a modular Ruby web server interface. Prior to versions 2.2.20, 3.1.18, and 3.2.3, a possible information disclosure vulnerability existed in `Rack::Sendfile` when running behind a proxy that supports `x-sendfile` headers...
1 affected package
ruby-rack
| Package | 22.04 LTS |
|---|---|
| ruby-rack | Needs evaluation |
quic-go is an implementation of the QUIC protocol in Go. In versions prior to 0.49.0, 0.54.1, and 0.55.0, a misbehaving or malicious server can cause a denial-of-service (DoS) attack on the quic-go client by triggering...
1 affected package
golang-github-lucas-clemente-quic-go
| Package | 22.04 LTS |
|---|---|
| golang-github-lucas-clemente-quic-go | Needs evaluation |
Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free (write) vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue...
1 affected package
poppler
| Package | 22.04 LTS |
|---|---|
| poppler | Needs evaluation |
Not in release
(Insertion of sensitive information in log file in Elasticsearch can le ...)
1 affected package
elasticsearch
| Package | 22.04 LTS |
|---|---|
| elasticsearch | Not in release |
[Unknown description]
45 affected packages
nvidia-graphics-drivers-304, nvidia-graphics-drivers-304-updates, nvidia-graphics-drivers-340, nvidia-graphics-drivers-340-updates, nvidia-graphics-drivers-352...
| Package | 22.04 LTS |
|---|---|
| nvidia-graphics-drivers-304 | Not in release |
| nvidia-graphics-drivers-304-updates | Not in release |
| nvidia-graphics-drivers-340 | Not affected |
| nvidia-graphics-drivers-340-updates | Not in release |
| nvidia-graphics-drivers-352 | Not in release |
| nvidia-graphics-drivers-352-updates | Not in release |
| nvidia-graphics-drivers-361 | Not in release |
| nvidia-graphics-drivers-367 | Not in release |
| nvidia-graphics-drivers-375 | Not in release |
| nvidia-graphics-drivers-384 | Not in release |
| nvidia-graphics-drivers-390 | Ignored |
| nvidia-graphics-drivers-418-server | Ignored |
| nvidia-graphics-drivers-430 | Ignored |
| nvidia-graphics-drivers-435 | Ignored |
| nvidia-graphics-drivers-440 | Ignored |
| nvidia-graphics-drivers-440-server | Ignored |
| nvidia-graphics-drivers-450 | Ignored |
| nvidia-graphics-drivers-450-server | Ignored |
| nvidia-graphics-drivers-455 | Ignored |
| nvidia-graphics-drivers-460 | Ignored |
| nvidia-graphics-drivers-460-server | Not in release |
| nvidia-graphics-drivers-470 | Ignored |
| nvidia-graphics-drivers-470-server | Ignored |
| nvidia-graphics-drivers-495 | Not in release |
| nvidia-graphics-drivers-510 | Ignored |
| nvidia-graphics-drivers-510-server | Not affected |
| nvidia-graphics-drivers-515 | Ignored |
| nvidia-graphics-drivers-515-server | Ignored |
| nvidia-graphics-drivers-520 | Ignored |
| nvidia-graphics-drivers-525 | Not affected |
| nvidia-graphics-drivers-525-server | Not affected |
| nvidia-graphics-drivers-530 | Ignored |
| nvidia-graphics-drivers-535 | Needs evaluation |
| nvidia-graphics-drivers-535-server | Needs evaluation |
| nvidia-graphics-drivers-545 | Ignored |
| nvidia-graphics-drivers-550 | Needs evaluation |
| nvidia-graphics-drivers-550-server | Needs evaluation |
| nvidia-graphics-drivers-560 | Not in release |
| nvidia-graphics-drivers-565-server | Ignored |
| nvidia-graphics-drivers-570 | Needs evaluation |
| nvidia-graphics-drivers-570-server | Needs evaluation |
| nvidia-graphics-drivers-575 | Needs evaluation |
| nvidia-graphics-drivers-575-server | Needs evaluation |
| nvidia-graphics-drivers-580 | Needs evaluation |
| nvidia-graphics-drivers-580-server | Needs evaluation |