Search CVE reports
581 – 590 of 36525 results
In `src/havegecmd.c`, the `socket_handler` function performs a credential check on the abstract UNIX socket (`\0/sys/entropy/haveged`). However, while it detects if the connecting user is not root (`cred.uid != 0`) and prepares a...
1 affected package
haveged
| Package | 24.04 LTS |
|---|---|
| haveged | Fixed |
In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_userdb_checkpass.
1 affected package
memcached
| Package | 24.04 LTS |
|---|---|
| memcached | Fixed |
In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by sasl_server_userdb_checkpass.
1 affected package
memcached
| Package | 24.04 LTS |
|---|---|
| memcached | Fixed |
Some fixes available 1 of 2
An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server handling, enabling a remote unauthenticated attacker to cause severe resource exhaustion by sending queries that trigger specific...
3 affected packages
bind9, isc-dhcp, bind9-libs
| Package | 24.04 LTS |
|---|---|
| bind9 | Fixed |
| isc-dhcp | Needs evaluation |
| bind9-libs | Not in release |
Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DNS message signed with SIG(0), it begins work to validate that signature. If, during that validation, the...
3 affected packages
bind9, isc-dhcp, bind9-libs
| Package | 24.04 LTS |
|---|---|
| bind9 | Not affected |
| isc-dhcp | Needs evaluation |
| bind9-libs | Not in release |
Some fixes available 1 of 2
Multiple flaws have been identified in `named` related to the handling of DNS messages whose CLASS is not Internet (`IN`) — for example, `CHAOS` or `HESIOD`, or DNS messages that specify meta-classes (`ANY` or `NONE`) in the...
3 affected packages
bind9, isc-dhcp, bind9-libs
| Package | 24.04 LTS |
|---|---|
| bind9 | Fixed |
| isc-dhcp | Needs evaluation |
| bind9-libs | Not in release |
Some fixes available 1 of 2
PDF /GoToR action argv injection enables single-click RCE via --gtk-module dlopen
4 affected packages
atril, evince, evince-gtk3, papers
| Package | 24.04 LTS |
|---|---|
| atril | Needs evaluation |
| evince | Fixed |
| evince-gtk3 | Not in release |
| papers | Not in release |
[Heap OOB Read in VLAN Decapsulation memmove]
2 affected packages
lldpd, openvswitch
| Package | 24.04 LTS |
|---|---|
| lldpd | Needs evaluation |
| openvswitch | Needs evaluation |
[Github Actions issued GITHUB_TOKEN disclosure in GitHub Actions logs]
1 affected package
composer
| Package | 24.04 LTS |
|---|---|
| composer | Not affected |
security update
1 affected package
netatalk
| Package | 24.04 LTS |
|---|---|
| netatalk | Needs evaluation |