Search CVE reports

Toggle filters

301 – 310 of 1233 results

CVE-2020-21426

Medium priority
Vulnerable

Buffer Overflow vulnerability in function C_IStream::read in PluginEXR.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.

1 affected package

freeimage

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freeimage Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2020-24904

Medium priority
Needs evaluation

An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted "mailto" link.

2 affected packages

gnome-gmail, viagee

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
gnome-gmail Not in release Not in release Needs evaluation Needs evaluation Needs evaluation
viagee Not in release Not affected Not in release Not in release Ignored
Show less packages

CVE-2023-36673

Medium priority
Ignored

An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel,...

31 affected packages

wireguard, connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
wireguard Not affected Not affected Not affected Not affected
connman Not affected Not affected Not affected Not affected
gadmin-openvpn-client Not in release Not in release Not affected Not affected
gadmin-openvpn-server Not in release Not in release Not affected Not affected
golang-github-apparentlymart-go-openvpn-mgmt Not affected Not affected Not affected Not in release
kvpnc Not in release Not in release Not in release Not affected
l2tp-ipsec-vpn-daemon Not in release Not in release Not in release Not in release
l2tp-ipsec-vpn Not in release Not in release Not in release Not in release
libreswan Not affected Not affected Not affected Not affected
mozillavpn Not in release Not affected Not in release Not in release
n2n Not affected Not affected Not affected Not affected
network-manager-fortisslvpn Not affected Not affected Not affected Not affected
network-manager-iodine Not affected Not affected Not affected Not affected
network-manager-l2tp Not affected Not affected Not affected Not affected
network-manager-openconnect Not affected Not affected Not affected Not affected
network-manager-openvpn Not affected Not affected Not affected Not affected
network-manager-pptp Not affected Not affected Not affected Not affected
network-manager-sstp Not affected Not affected Not in release Not in release
network-manager-strongswan Not affected Not affected Not affected Not affected
network-manager-vpnc Not affected Not affected Not affected Not affected
openconnect Not affected Not affected Not affected Not affected
openfortivpn Not affected Not affected Not affected Not affected
openvpn Not affected Not affected Not affected Not affected
pptp-linux Not affected Not affected Not affected Not affected
quicktun Not affected Not affected Not affected Not affected
riseup-vpn Not affected Not in release Not in release Not in release
softether-vpn Not affected Not affected Not in release Not in release
sshuttle Not affected Not affected Not affected Not affected
tinc Not affected Not affected Not affected Not affected
vpnc Not affected Not affected Not affected Not affected
zentyal-openvpn Not in release Not in release Not in release Not in release
Show all 31 packages Show less packages

CVE-2023-36672

Medium priority
Ignored

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if...

31 affected packages

wireguard, n2n, connman, gadmin-openvpn-client, gadmin-openvpn-server...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
wireguard Ignored Ignored Not affected Ignored
n2n Not affected Not affected Not affected Not affected
connman Not affected Not affected Not affected Not affected
gadmin-openvpn-client Not in release Not in release Not affected Not affected
gadmin-openvpn-server Not in release Not in release Not affected Not affected
openfortivpn Not affected Not affected Not affected Not affected
golang-github-apparentlymart-go-openvpn-mgmt Not affected Not affected Not affected Not in release
kvpnc Not in release Not in release Not in release Not affected
l2tp-ipsec-vpn-daemon Not in release Not in release Not in release Not in release
l2tp-ipsec-vpn Not in release Not in release Not in release Not in release
libreswan Not affected Not affected Not affected Not affected
mozillavpn Not in release Not affected Not in release Not in release
network-manager-fortisslvpn Not affected Not affected Not affected Not affected
network-manager-iodine Not affected Not affected Not affected Not affected
network-manager-l2tp Not affected Not affected Not affected Not affected
network-manager-openconnect Not affected Not affected Not affected Not affected
network-manager-openvpn Not affected Not affected Not affected Not affected
network-manager-pptp Not affected Not affected Not affected Not affected
network-manager-sstp Not affected Not affected Not in release Not in release
network-manager-strongswan Not affected Not affected Not affected Not affected
network-manager-vpnc Not affected Not affected Not affected Not affected
openconnect Not affected Not affected Not affected Not affected
pptp-linux Not affected Not affected Not affected Not affected
quicktun Not affected Not affected Not affected Not affected
riseup-vpn Not affected Not in release Not in release Not in release
softether-vpn Not affected Not affected Not in release Not in release
sshuttle Not affected Not affected Not affected Not affected
tinc Not affected Not affected Not affected Not affected
vpnc Not affected Not affected Not affected Not affected
zentyal-openvpn Not in release Not in release Not in release Not in release
openvpn Not affected Not affected Not affected Not affected
Show all 31 packages Show less packages

CVE-2023-36671

Medium priority
Ignored

An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN...

31 affected packages

wireguard, tinc, connman, gadmin-openvpn-client, gadmin-openvpn-server...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
wireguard Not affected Not affected Not affected Not affected
tinc Not affected Not affected Not affected Not affected
connman Not affected Not affected Not affected Not affected
gadmin-openvpn-client Not in release Not in release Not affected Not affected
gadmin-openvpn-server Not in release Not in release Not affected Not affected
golang-github-apparentlymart-go-openvpn-mgmt Not affected Not affected Not affected Not in release
kvpnc Not in release Not in release Not in release Not affected
l2tp-ipsec-vpn-daemon Not in release Not in release Not in release Not in release
l2tp-ipsec-vpn Not in release Not in release Not in release Not in release
libreswan Not affected Not affected Not affected Not affected
mozillavpn Not in release Not affected Not in release Not in release
n2n Not affected Not affected Not affected Not affected
network-manager-fortisslvpn Not affected Not affected Not affected Not affected
network-manager-iodine Not affected Not affected Not affected Not affected
network-manager-l2tp Not affected Not affected Not affected Not affected
network-manager-openconnect Not affected Not affected Not affected Not affected
network-manager-openvpn Not affected Not affected Not affected Not affected
network-manager-pptp Not affected Not affected Not affected Not affected
network-manager-sstp Not affected Not affected Not in release Not in release
network-manager-strongswan Not affected Not affected Not affected Not affected
network-manager-vpnc Not affected Not affected Not affected Not affected
openconnect Not affected Not affected Not affected Not affected
openfortivpn Not affected Not affected Not affected Not affected
openvpn Not affected Not affected Not affected Not affected
pptp-linux Not affected Not affected Not affected Not affected
quicktun Not affected Not affected Not affected Not affected
riseup-vpn Not affected Not in release Not in release Not in release
softether-vpn Not affected Not affected Not in release Not in release
sshuttle Not affected Not affected Not affected Not affected
vpnc Not affected Not affected Not affected Not affected
zentyal-openvpn Not in release Not in release Not in release Not in release
Show all 31 packages Show less packages

CVE-2023-35838

Medium priority
Ignored

The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall such that traffic to a local network that uses non-RFC1918 IP addresses is blocked. This allows an adversary to trick the victim into...

31 affected packages

wireguard, kvpnc, connman, gadmin-openvpn-client, gadmin-openvpn-server...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
wireguard Ignored Ignored Ignored Ignored
kvpnc Not in release Not in release Not in release Not affected
connman Not affected Not affected Not affected Not affected
gadmin-openvpn-client Not in release Not in release Not affected Not affected
gadmin-openvpn-server Not in release Not in release Not affected Not affected
golang-github-apparentlymart-go-openvpn-mgmt Not affected Not affected Not affected Not in release
l2tp-ipsec-vpn-daemon Not in release Not in release Not in release Not in release
l2tp-ipsec-vpn Not in release Not in release Not in release Not in release
libreswan Not affected Not affected Not affected Not affected
mozillavpn Not in release Not affected Not in release Not in release
n2n Not affected Not affected Not affected Not affected
network-manager-fortisslvpn Not affected Not affected Not affected Not affected
network-manager-iodine Not affected Not affected Not affected Not affected
network-manager-l2tp Not affected Not affected Not affected Not affected
network-manager-openconnect Not affected Not affected Not affected Not affected
network-manager-openvpn Not affected Not affected Not affected Not affected
network-manager-pptp Not affected Not affected Not affected Not affected
network-manager-sstp Not affected Not affected Not in release Not in release
network-manager-strongswan Not affected Not affected Not affected Not affected
network-manager-vpnc Not affected Not affected Not affected Not affected
openconnect Not affected Not affected Not affected Not affected
openfortivpn Not affected Not affected Not affected Not affected
pptp-linux Not affected Not affected Not affected Not affected
quicktun Not affected Not affected Not affected Not affected
riseup-vpn Not affected Not in release Not in release Not in release
softether-vpn Not affected Not affected Not in release Not in release
sshuttle Not affected Not affected Not affected Not affected
tinc Not affected Not affected Not affected Not affected
vpnc Not affected Not affected Not affected Not affected
zentyal-openvpn Not in release Not in release Not in release Not in release
openvpn Not affected Not affected Not affected Not affected
Show all 31 packages Show less packages

CVE-2023-39978

Medium priority
Vulnerable

ImageMagick before 6.9.12-91 allows attackers to cause a denial of service (memory consumption) in Magick::Draw.

1 affected package

imagemagick

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
imagemagick Not affected Not affected Vulnerable Vulnerable Not affected
Show less packages

CVE-2023-3978

Medium priority

Some fixes available 8 of 12

Text nodes not in the HTML namespace are incorrectly literally rendered, causing text which should be escaped to not be. This could lead to an XSS attack.

7 affected packages

golang-golang-x-net, google-guest-agent, containerd, golang-golang-x-net-dev, adsys...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
golang-golang-x-net Not affected Not affected Fixed Not in release Ignored
google-guest-agent Not affected Not affected Not affected Not affected Not affected
containerd Not affected Not affected Not affected Not affected Not affected
golang-golang-x-net-dev Not in release Not in release Not in release Fixed Fixed
adsys Not affected Not affected Not affected Fixed
juju-core Not in release Not in release Not in release
lxd Not in release Not in release Not in release Not affected Fixed
Show all 7 packages Show less packages

CVE-2023-29408

Medium priority
Needs evaluation

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image (both in terms of pixel width/height, and encoded size) to make the decoder decode...

1 affected package

golang-golang-x-image

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
golang-golang-x-image Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
Show less packages

CVE-2023-29407

Medium priority
Needs evaluation

A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can cause excessive CPU consumption, despite the image size (width * height) appearing to be zero.

1 affected package

golang-golang-x-image

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
golang-golang-x-image Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
Show less packages
  1. Previous page
  2. 29
  3. 30
  4. 31
  5. 32
  6. 33
  7. Next page
Export to JSON