Search CVE reports
151 – 160 of 35081 results
An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local users to crash OpenSMTPD. This issue affects openSUSE Tumbleweed: from ? before 7.8.0p0-1.1.
1 affected package
opensmtpd
| Package | 20.04 LTS |
|---|---|
| opensmtpd | Needs evaluation |
phpPgAdmin 7.13.0 and earlier contains an incorrect access control vulnerability in sql.php at lines 68-76. The application allows unauthorized manipulation of session variables by accepting user-controlled parameters ('subject',...
1 affected package
phppgadmin
| Package | 20.04 LTS |
|---|---|
| phppgadmin | Needs evaluation |
phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability in display.php at line 396. The application passes user-controlled input from $_REQUEST['query'] directly to the browseQuery function without...
1 affected package
phppgadmin
| Package | 20.04 LTS |
|---|---|
| phppgadmin | Needs evaluation |
phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability in dataexport.php at line 118. The application directly executes user-supplied SQL queries from the $_REQUEST['query'] parameter without any sanitization or...
1 affected package
phppgadmin
| Package | 20.04 LTS |
|---|---|
| phppgadmin | Needs evaluation |
phpPgAdmin 7.13.0 and earlier contains multiple cross-site scripting (XSS) vulnerabilities across various components. User-supplied input from $_REQUEST parameters is reflected in HTML output without proper encoding...
1 affected package
phppgadmin
| Package | 20.04 LTS |
|---|---|
| phppgadmin | Needs evaluation |
cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. In versions 2.0.1 and prior, a heap-buffer-overflow vulnerability in...
2 affected packages
cups-filters, libcupsfilters
| Package | 20.04 LTS |
|---|---|
| cups-filters | Fixed |
| libcupsfilters | — |
7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Interaction with this product is required to...
2 affected packages
7zip, p7zip
| Package | 20.04 LTS |
|---|---|
| 7zip | — |
| p7zip | Needs evaluation |
SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.
4 affected packages
lxd, golang-go.crypto, snapd, google-guest-agent
| Package | 20.04 LTS |
|---|---|
| lxd | Not affected |
| golang-go.crypto | Needs evaluation |
| snapd | Needs evaluation |
| google-guest-agent | Needs evaluation |
SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.
4 affected packages
golang-go.crypto, snapd, lxd, google-guest-agent
| Package | 20.04 LTS |
|---|---|
| golang-go.crypto | Needs evaluation |
| snapd | Needs evaluation |
| lxd | Not affected |
| google-guest-agent | Needs evaluation |
[HMAC verification check: fix incorrect memcmp() call]
1 affected package
openvpn
| Package | 20.04 LTS |
|---|---|
| openvpn | Not affected |