Search CVE reports
1 – 10 of 36025 results
[Unknown description]
2 affected packages
kanboard-cli, python-kanboard
| Package | 22.04 LTS |
|---|---|
| kanboard-cli | Needs evaluation |
| python-kanboard | Needs evaluation |
[PSD loader: heap-buffer-overflow in fread_pascal_string() (no null terminator)]
1 affected package
gimp
| Package | 22.04 LTS |
|---|---|
| gimp | Needs evaluation |
Improper isolation of shared resources on a system on a chip by a malicious local attacker with high privileges could potentially lead to a partial loss of integrity.
1 affected package
amd64-microcode
| Package | 22.04 LTS |
|---|---|
| amd64-microcode | Needs evaluation |
Improper Prevention of Lock Bit Modification in SEV firmware could allow a privileged attacker to downgrade firmware potentially resulting in a loss of integrity.
1 affected package
amd64-microcode
| Package | 22.04 LTS |
|---|---|
| amd64-microcode | Needs evaluation |
Improper bound check within AMD CPU microcode can allow a malicious guest to write to host memory, potentially resulting in loss of integrity.
1 affected package
amd64-microcode
| Package | 22.04 LTS |
|---|---|
| amd64-microcode | Needs evaluation |
Insufficient Granularity of Access Control in SEV firmware could allow a privileged user with a malicious hypervisor to create a SEV-ES guest with an ASID in the range meant for SEV-SNP guests potentially resulting in a partial...
1 affected package
amd64-microcode
| Package | 22.04 LTS |
|---|---|
| amd64-microcode | Needs evaluation |
Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potentially resulting in a loss of confidentiality.
1 affected package
amd64-microcode
| Package | 22.04 LTS |
|---|---|
| amd64-microcode | Needs evaluation |
Not in release
An authorized user may disable the MongoDB server by issuing a query against a collection that contains an invalid compound wildcard index.
1 affected package
mongodb
| Package | 22.04 LTS |
|---|---|
| mongodb | Not in release |
Not in release
An authorized user may trigger a server crash by running a $geoNear pipeline with certain invalid index hints.
1 affected package
mongodb
| Package | 22.04 LTS |
|---|---|
| mongodb | Not in release |
Not in release
Incorrect validation of the profile command may result in the determination that a request altering the 'filter' is read-only.
1 affected package
mongodb
| Package | 22.04 LTS |
|---|---|
| mongodb | Not in release |