Search CVE reports
1211 – 1220 of 28288 results
pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library (admittedly, library users may benefit from a minimum value...
1 affected package
pyjwt
Package | 24.04 LTS |
---|---|
pyjwt | Vulnerable |
A vulnerability has been identified in the Linux kernel's ksmbd component (kernel SMB/CIFS server). A security control designed to prevent dictionary attacks, which introduces a 5-second delay during session setup, can be bypassed...
144 affected packages
linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-hwe-5.11, linux-hwe-5.13...
Package | 24.04 LTS |
---|---|
linux-hwe | Not in release |
linux-hwe-5.4 | Not in release |
linux-hwe-5.8 | Not in release |
linux-hwe-5.11 | Not in release |
linux-hwe-5.13 | Not in release |
linux-hwe-5.15 | Not in release |
linux-hwe-5.19 | Not in release |
linux-hwe-6.2 | Not in release |
linux-hwe-6.5 | Not in release |
linux-hwe-6.8 | Not in release |
linux-hwe-6.11 | Ignored |
linux-hwe-6.14 | Not affected |
linux-hwe-edge | Not in release |
linux-lts-xenial | Not in release |
linux-kvm | Not in release |
linux-allwinner-5.19 | Not in release |
linux-aws-5.0 | Not in release |
linux-aws-5.3 | Not in release |
linux-aws-5.4 | Not in release |
linux-aws-5.8 | Not in release |
linux-aws-5.11 | Not in release |
linux-aws-5.13 | Not in release |
linux-aws-5.15 | Not in release |
linux-aws-5.19 | Not in release |
linux-aws-6.2 | Not in release |
linux-aws-6.5 | Not in release |
linux-aws-6.8 | Not in release |
linux-aws-6.14 | Not affected |
linux-aws-hwe | Not in release |
linux-azure | Not affected |
linux-azure-4.15 | Not in release |
linux-azure-5.3 | Not in release |
linux-azure-5.4 | Not in release |
linux-azure-5.8 | Not in release |
linux-azure-5.11 | Not in release |
linux-azure-5.13 | Not in release |
linux-azure-5.15 | Not in release |
linux-azure-5.19 | Not in release |
linux-azure-6.2 | Not in release |
linux-azure-6.5 | Not in release |
linux-azure-6.8 | Not in release |
linux-azure-6.11 | Ignored |
linux-azure-fde | Not in release |
linux-azure-fde-5.15 | Not in release |
linux-azure-fde-5.19 | Not in release |
linux-azure-fde-6.2 | Not in release |
linux-azure-nvidia | Not affected |
linux-bluefield | Not in release |
linux-azure-edge | Not in release |
linux-fips | Not in release |
linux-aws-fips | Not in release |
linux-azure-fips | Not in release |
linux-gcp-fips | Not in release |
linux-gcp | Not affected |
linux-gcp-4.15 | Not in release |
linux-gcp-5.3 | Not in release |
linux-gcp-5.4 | Not in release |
linux-gcp-5.8 | Not in release |
linux-gcp-5.11 | Not in release |
linux-gcp-5.13 | Not in release |
linux-gcp-5.15 | Not in release |
linux-gcp-5.19 | Not in release |
linux-gcp-6.2 | Not in release |
linux-gcp-6.5 | Not in release |
linux-gcp-6.8 | Not in release |
linux-gcp-6.11 | Ignored |
linux-gcp-6.14 | Not affected |
linux-gke | Not affected |
linux-gke-4.15 | Not in release |
linux-gke-5.4 | Not in release |
linux-gke-5.15 | Not in release |
linux-gkeop | Not affected |
linux-gkeop-5.4 | Not in release |
linux-gkeop-5.15 | Not in release |
linux-ibm | Not affected |
linux-ibm-5.4 | Not in release |
linux-ibm-5.15 | Not in release |
linux-ibm-6.8 | Not in release |
linux-intel-5.13 | Not in release |
linux-intel-iotg | Not in release |
linux-intel-iotg-5.15 | Not in release |
linux-iot | Not in release |
linux-intel-iot-realtime | Not in release |
linux-lowlatency | Not affected |
linux-lowlatency-hwe-5.15 | Not in release |
linux-lowlatency-hwe-5.19 | Not in release |
linux-lowlatency-hwe-6.2 | Not in release |
linux-lowlatency-hwe-6.5 | Not in release |
linux-lowlatency-hwe-6.8 | Not in release |
linux-lowlatency-hwe-6.11 | Ignored |
linux-nvidia | Not affected |
linux-nvidia-6.2 | Not in release |
linux-nvidia-6.5 | Not in release |
linux-nvidia-6.8 | Not in release |
linux-nvidia-lowlatency | Not affected |
linux-nvidia-tegra | Not affected |
linux-nvidia-tegra-5.15 | Not in release |
linux-nvidia-tegra-igx | Not in release |
linux-oracle-5.0 | Not in release |
linux-oracle-5.3 | Not in release |
linux-oracle-5.4 | Not in release |
linux-oracle-5.8 | Not in release |
linux-oracle-5.11 | Not in release |
linux-riscv-5.19 | Not in release |
linux-oracle-5.13 | Not in release |
linux-oracle-5.15 | Not in release |
linux-oracle-6.5 | Not in release |
linux-oracle-6.8 | Not in release |
linux-oracle-6.14 | Not affected |
linux-oem | Not in release |
linux-oem-5.6 | Not in release |
linux-oem-5.10 | Not in release |
linux-oem-5.13 | Not in release |
linux-oem-5.14 | Not in release |
linux-oem-5.17 | Not in release |
linux-oem-6.0 | Not in release |
linux-oem-6.1 | Not in release |
linux-oem-6.5 | Not in release |
linux-oem-6.8 | Not affected |
linux-oem-6.11 | Not affected |
linux-oem-6.14 | Not affected |
linux-raspi2 | Not in release |
linux-raspi-5.4 | Not in release |
linux-raspi-realtime | Not affected |
linux-riscv | Ignored |
linux-riscv-5.8 | Not in release |
linux-riscv-5.11 | Not in release |
linux-riscv-5.15 | Not in release |
linux-riscv-6.5 | Not in release |
linux-riscv-6.8 | Not in release |
linux-riscv-6.14 | Not affected |
linux-starfive-5.19 | Not in release |
linux-starfive-6.2 | Not in release |
linux-starfive-6.5 | Not in release |
linux-xilinx-zynqmp | Not in release |
linux | Not affected |
linux-aws | Not affected |
linux-oracle | Not affected |
linux-raspi | Not affected |
linux-realtime | Not affected |
linux-intel | Ignored |
linux-nvidia-6.11 | Not affected |
linux-realtime-6.14 | Not affected |
linux-realtime-6.8 | Not in release |
jwt v5.4.3 was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA...
1 affected package
php-lcobucci-jwt
Package | 24.04 LTS |
---|---|
php-lcobucci-jwt | Needs evaluation |
TrustedFirmware-M (aka Trusted Firmware for M profile Arm CPUs) before 2.1.3 and 2.2.x before 2.2.1 lacks length validation during a firmware upgrade. While processing a new image, the Firmware Upgrade (FWU) module does not...
1 affected package
arm-trusted-firmware
Package | 24.04 LTS |
---|---|
arm-trusted-firmware | Needs evaluation |
A flaw exists within the Linux kernel's handling of new TCP connections. The issue results from the lack of memory release after its effective lifetime. This vulnerability allows an unauthenticated attacker to create a denial of...
144 affected packages
linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-hwe-5.11, linux-hwe-5.13...
Package | 24.04 LTS |
---|---|
linux-hwe | Not in release |
linux-hwe-5.4 | Not in release |
linux-hwe-5.8 | Not in release |
linux-hwe-5.11 | Not in release |
linux-hwe-5.13 | Not in release |
linux-hwe-5.15 | Not in release |
linux-hwe-5.19 | Not in release |
linux-hwe-6.2 | Not in release |
linux-hwe-6.5 | Not in release |
linux-hwe-6.8 | Not in release |
linux-hwe-6.11 | Ignored |
linux-hwe-6.14 | Not affected |
linux-hwe-edge | Not in release |
linux-lts-xenial | Not in release |
linux-kvm | Not in release |
linux-allwinner-5.19 | Not in release |
linux-aws-5.0 | Not in release |
linux-aws-5.3 | Not in release |
linux-aws-5.4 | Not in release |
linux-aws-5.8 | Not in release |
linux-aws-5.11 | Not in release |
linux-aws-5.13 | Not in release |
linux-aws-5.15 | Not in release |
linux-aws-5.19 | Not in release |
linux-aws-6.2 | Not in release |
linux-aws-6.5 | Not in release |
linux-aws-6.8 | Not in release |
linux-aws-6.14 | Not affected |
linux-aws-hwe | Not in release |
linux-azure | Not affected |
linux-azure-4.15 | Not in release |
linux-azure-5.3 | Not in release |
linux-azure-5.4 | Not in release |
linux-azure-5.8 | Not in release |
linux-azure-5.11 | Not in release |
linux-azure-5.13 | Not in release |
linux-azure-5.15 | Not in release |
linux-azure-5.19 | Not in release |
linux-azure-6.2 | Not in release |
linux-azure-6.5 | Not in release |
linux-azure-6.8 | Not in release |
linux-azure-6.11 | Ignored |
linux-azure-fde | Not in release |
linux-azure-fde-5.15 | Not in release |
linux-azure-fde-5.19 | Not in release |
linux-azure-fde-6.2 | Not in release |
linux-azure-nvidia | Not affected |
linux-bluefield | Not in release |
linux-azure-edge | Not in release |
linux-fips | Not in release |
linux-aws-fips | Not in release |
linux-azure-fips | Not in release |
linux-gcp-fips | Not in release |
linux-gcp | Not affected |
linux-gcp-4.15 | Not in release |
linux-gcp-5.3 | Not in release |
linux-gcp-5.4 | Not in release |
linux-gcp-5.8 | Not in release |
linux-gcp-5.11 | Not in release |
linux-gcp-5.13 | Not in release |
linux-gcp-5.15 | Not in release |
linux-gcp-5.19 | Not in release |
linux-gcp-6.2 | Not in release |
linux-gcp-6.5 | Not in release |
linux-gcp-6.8 | Not in release |
linux-gcp-6.11 | Ignored |
linux-gcp-6.14 | Not affected |
linux-gke | Not affected |
linux-gke-4.15 | Not in release |
linux-gke-5.4 | Not in release |
linux-gke-5.15 | Not in release |
linux-gkeop | Not affected |
linux-gkeop-5.4 | Not in release |
linux-gkeop-5.15 | Not in release |
linux-ibm | Not affected |
linux-ibm-5.4 | Not in release |
linux-ibm-5.15 | Not in release |
linux-ibm-6.8 | Not in release |
linux-intel-5.13 | Not in release |
linux-intel-iotg | Not in release |
linux-intel-iotg-5.15 | Not in release |
linux-iot | Not in release |
linux-intel-iot-realtime | Not in release |
linux-lowlatency | Not affected |
linux-lowlatency-hwe-5.15 | Not in release |
linux-lowlatency-hwe-5.19 | Not in release |
linux-lowlatency-hwe-6.2 | Not in release |
linux-lowlatency-hwe-6.5 | Not in release |
linux-lowlatency-hwe-6.8 | Not in release |
linux-lowlatency-hwe-6.11 | Ignored |
linux-nvidia | Not affected |
linux-nvidia-6.2 | Not in release |
linux-nvidia-6.5 | Not in release |
linux-nvidia-6.8 | Not in release |
linux-nvidia-lowlatency | Not affected |
linux-nvidia-tegra | Not affected |
linux-nvidia-tegra-5.15 | Not in release |
linux-nvidia-tegra-igx | Not in release |
linux-oracle-5.0 | Not in release |
linux-oracle-5.3 | Not in release |
linux-oracle-5.4 | Not in release |
linux-oracle-5.8 | Not in release |
linux-oracle-5.11 | Not in release |
linux-oracle-5.13 | Not in release |
linux-oracle-5.15 | Not in release |
linux-oracle-6.5 | Not in release |
linux-oracle-6.8 | Not in release |
linux-oracle-6.14 | Not affected |
linux-oem | Not in release |
linux-oem-5.6 | Not in release |
linux-oem-5.10 | Not in release |
linux-oem-5.13 | Not in release |
linux-oem-5.14 | Not in release |
linux-oem-5.17 | Not in release |
linux-oem-6.0 | Not in release |
linux-oem-6.1 | Not in release |
linux-oem-6.5 | Not in release |
linux-oem-6.8 | Not affected |
linux-oem-6.11 | Not affected |
linux-oem-6.14 | Not affected |
linux-raspi2 | Not in release |
linux-raspi-5.4 | Not in release |
linux-raspi-realtime | Not affected |
linux-riscv | Ignored |
linux-riscv-5.8 | Not in release |
linux-riscv-5.11 | Not in release |
linux-riscv-5.15 | Not in release |
linux-riscv-5.19 | Not in release |
linux-riscv-6.5 | Not in release |
linux-riscv-6.8 | Not in release |
linux-riscv-6.14 | Not affected |
linux-starfive-5.19 | Not in release |
linux-starfive-6.2 | Not in release |
linux-starfive-6.5 | Not in release |
linux-xilinx-zynqmp | Not in release |
linux | Not affected |
linux-aws | Not affected |
linux-oracle | Not affected |
linux-raspi | Not affected |
linux-realtime | Not affected |
linux-intel | Ignored |
linux-nvidia-6.11 | Not affected |
linux-realtime-6.14 | Not affected |
linux-realtime-6.8 | Not in release |
Not in release
GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 0.78...
1 affected package
glpi
Package | 24.04 LTS |
---|---|
glpi | Not in release |
Not in release
GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 0.65...
1 affected package
glpi
Package | 24.04 LTS |
---|---|
glpi | Not in release |
Not in release
GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 9.1.0 through 10.0.18, a lack of permission checks can result in unauthorized...
1 affected package
glpi
Package | 24.04 LTS |
---|---|
glpi | Not in release |
Not in release
GLPI is a Free Asset and IT Management Software package. In versions 0.80 through 10.0.18, a lack of permission checks can result in unauthorized access to some resources. This is fixed in version 10.0.19.
1 affected package
glpi
Package | 24.04 LTS |
---|---|
glpi | Not in release |
The Ruby SAML library is for implementing the client side of a SAML authorization. In versions 1.18.0 and below, a denial-of-service vulnerability exists in ruby-saml even with the message_max_bytesize setting configured. The...
1 affected package
ruby-saml
Package | 24.04 LTS |
---|---|
ruby-saml | Needs evaluation |