Search CVE reports
401 – 410 of 50428 results
Chunk smuggling in push-mode APNG parser via unconsumed chunk body
5 affected packages
libpng, libpng1.6, firefox, thunderbird, chromium-browser
| Package | 16.04 LTS |
|---|---|
| libpng | Not affected |
| libpng1.6 | — |
| firefox | — |
| thunderbird | — |
| chromium-browser | — |
NLnet Labs Unbound 1.16.2 up to and including version 1.25.0 has a vulnerability of the 'ghost domain names' family of attacks that could extend the ghost domain window by up to one cached TTL configured value. Similar to other...
1 affected package
unbound
| Package | 16.04 LTS |
|---|---|
| unbound | Needs evaluation |
A use-after-free vulnerability exists within the DNS-over-HTTPS implementation. This issue affects BIND 9 versions 9.20.0 through 9.20.22, 9.21.0 through 9.21.21, and 9.20.9-S1 through 9.20.22-S1. BIND 9 versions 9.18.0 through...
3 affected packages
isc-dhcp, bind9, bind9-libs
| Package | 16.04 LTS |
|---|---|
| isc-dhcp | Not affected |
| bind9 | Not affected |
| bind9-libs | — |
BIND resolvers are vulnerable to an amplified resource consumption/exhaustion attack. If a victim resolver makes a query to a specially crafted zone, the resolver will consume disproportionate resources. This issue affects BIND 9...
3 affected packages
bind9, isc-dhcp, bind9-libs
| Package | 16.04 LTS |
|---|---|
| bind9 | Needs evaluation |
| isc-dhcp | Not affected |
| bind9-libs | — |
NLnet Labs Unbound 1.19.1 up to and including version 1.25.0 has a vulnerability in the DNSSEC validator that enables denial of service and possible remote code execution as a result of deep copying a data structure and...
1 affected package
unbound
| Package | 16.04 LTS |
|---|---|
| unbound | Not affected |
NLnet Labs Unbound 1.6.2 up to and including version 1.25.0 has a denial of service vulnerability when compiled with DNSCrypt support ('--enable-dnscrypt'). A bad DNSCrypt query could underflow Unbound's DNSCrypt packet reading...
1 affected package
unbound
| Package | 16.04 LTS |
|---|---|
| unbound | Needs evaluation |
BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessive memory consumption when receiving and processing maliciously-constructed packets. Typically these servers will be...
3 affected packages
isc-dhcp, bind9, bind9-libs
| Package | 16.04 LTS |
|---|---|
| isc-dhcp | Not affected |
| bind9 | Needs evaluation |
| bind9-libs | — |
Rsync versions before 3.4.3 contain a time-of-check to time-of-use (TOCTOU) race condition in daemon file handling that allows attackers to redirect file writes outside intended directories by replacing parent directory components...
1 affected package
rsync
| Package | 16.04 LTS |
|---|---|
| rsync | Fixed |
Template::Plugin::HTML versions through 3.102 for Perl allows HTML and JavaScript to be injected. The html_filter function did not escape single quotes. HTML attributes inside of single quotes could be have code injected. For...
1 affected package
libtemplate-perl
| Package | 16.04 LTS |
|---|---|
| libtemplate-perl | Needs evaluation |
The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race window, when a HVM or PVH guest does a grant table version change from v2 to v1 in parallel with mapping the status page(s) via...
1 affected package
xen
| Package | 16.04 LTS |
|---|---|
| xen | Needs evaluation |