Search CVE reports
151 – 160 of 29881 results
Not in release
MongoDB Server may experience an invariant failure during batched delete operations when handling documents. The issue arises when the server mistakenly assumes the presence of multiple documents in a batch based solely on...
1 affected package
mongodb
| Package | 24.04 LTS |
|---|---|
| mongodb | Not in release |
Not in release
A user with access to the cluster with a limited set of privilege actions may be able to terminate queries that are being executed by other users. This may cause a denial of service by preventing a fraction of queries...
1 affected package
mongodb
| Package | 24.04 LTS |
|---|---|
| mongodb | Not in release |
Not in release
Inconsistent object size validation in time series processing logic may result in later processing of oversized BSON documents leading to an assert failing and process termination. This issue impacts MongoDB Server v7.0 versions...
1 affected package
mongodb
| Package | 24.04 LTS |
|---|---|
| mongodb | Not in release |
Not in release
Clients may successfully perform a TLS handshake with a MongoDB server despite presenting a client certificate not aligning with the documented Extended Key Usage (EKU) requirements. A certificate that specifies extendedKeyUsage...
1 affected package
mongodb
| Package | 24.04 LTS |
|---|---|
| mongodb | Not in release |
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, there is a heap buffer overflow vulnerability in the...
5 affected packages
libpng, libpng1.6, firefox, thunderbird, chromium-browser
| Package | 24.04 LTS |
|---|---|
| libpng | Not in release |
| libpng1.6 | Needs evaluation |
| firefox | Not affected |
| thunderbird | Needs evaluation |
| chromium-browser | Not affected |
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, an out-of-bounds read vulnerability exists in...
5 affected packages
libpng, libpng1.6, firefox, thunderbird, chromium-browser
| Package | 24.04 LTS |
|---|---|
| libpng | Not in release |
| libpng1.6 | Needs evaluation |
| firefox | Not affected |
| thunderbird | Needs evaluation |
| chromium-browser | Not affected |
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, a heap buffer over-read vulnerability exists in...
5 affected packages
libpng, libpng1.6, firefox, thunderbird, chromium-browser
| Package | 24.04 LTS |
|---|---|
| libpng | Not in release |
| libpng1.6 | Needs evaluation |
| firefox | Not affected |
| thunderbird | Needs evaluation |
| chromium-browser | Not affected |
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. Prior to version 1.6.51, a heap buffer over-read vulnerability exists in...
5 affected packages
libpng, libpng1.6, firefox, thunderbird, chromium-browser
| Package | 24.04 LTS |
|---|---|
| libpng | Not in release |
| libpng1.6 | Needs evaluation |
| firefox | Not affected |
| thunderbird | Needs evaluation |
| chromium-browser | Not affected |
Not in release
alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting (XSS) via the "userName" parameter.
1 affected package
sogo
| Package | 24.04 LTS |
|---|---|
| sogo | Not in release |
body-parser 2.2.0 is vulnerable to denial of service due to inefficient handling of URL-encoded bodies with very large numbers of parameters. An attacker can send payloads containing thousands of parameters within the default...
1 affected package
node-body-parser
| Package | 24.04 LTS |
|---|---|
| node-body-parser | Needs evaluation |