Search CVE reports

Toggle filters

1471 – 1480 of 3032 results

CVE-2018-5093

Medium priority

Some fixes available 18 of 27

A heap buffer overflow vulnerability may occur in WebAssembly during Memory/Table resizing, resulting in a potentially exploitable crash. This vulnerability affects Firefox < 58.

3 affected packages

mozjs52, firefox, mozjs38

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mozjs52 Not in release Not in release Ignored Ignored
firefox Fixed Fixed Fixed Fixed
mozjs38 Not in release Not in release Not in release Ignored
Show less packages

CVE-2018-5092

Medium priority
Fixed

A use-after-free vulnerability can occur when the thread for a Web Worker is freed from memory prematurely instead of from memory in the main thread while cancelling fetch operations. This vulnerability affects Firefox < 58.

1 affected package

firefox

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Fixed
Show less packages

CVE-2018-5091

Medium priority
Fixed

A use-after-free vulnerability can occur during WebRTC connections when interacting with the DTMF timers. This results in a potentially exploitable crash. This vulnerability affects Firefox ESR < 52.6 and Firefox < 58.

1 affected package

firefox

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Fixed
Show less packages

CVE-2018-5090

Medium priority

Some fixes available 18 of 27

Memory safety bugs were reported in Firefox 57. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects...

3 affected packages

mozjs38, mozjs52, firefox

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mozjs38 Not in release Not in release Not in release Ignored
mozjs52 Not in release Not in release Ignored Ignored
firefox Fixed Fixed Fixed Fixed
Show less packages

CVE-2018-5089

Medium priority

Some fixes available 34 of 41

Memory safety bugs were reported in Firefox 57 and Firefox ESR 52.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This...

4 affected packages

mozjs38, mozjs52, firefox, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mozjs38 Not in release Not in release Not in release Ignored
mozjs52 Not in release Not in release Ignored Fixed
firefox Fixed Fixed Fixed Fixed
thunderbird Fixed Fixed Fixed Fixed
Show less packages

CVE-2017-0855

Medium priority
Ignored

In MPEG4Extractor.cpp, there are several places where functions return early without cleaning up internal buffers which could lead to memory leaks. This could lead to remote denial of service of a critical system process with no...

2 affected packages

firefox, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Not affected
thunderbird Not affected
Show less packages

CVE-2017-5754

Critical priority

Some fixes available 24 of 31

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.

81 affected packages

linux, linux-goldfish, linux-grouper, linux-aws, linux-flo...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux Not affected Not affected Not affected Not affected
linux-goldfish Not in release
linux-grouper Not in release
linux-aws Not affected Not affected Not affected Not affected
linux-flo Not in release
linux-hwe Not in release Not in release Not in release Not affected
linux-lts-utopic Not in release
linux-lts-vivid Not in release
linux-lts-wily Not in release
linux-lts-xenial Not in release Not in release Not in release Not in release
linux-mako Not in release
linux-manta Not in release
linux-raspi2 Not in release Not in release Ignored Not affected
linux-snapdragon Not in release Not in release Not in release Not affected
firefox Not affected Not affected Not in release Fixed
linux-azure Not affected Not affected Not affected Not affected
linux-azure-edge Not in release Not in release Not in release Not affected
linux-euclid Not in release
linux-gcp Not affected Not affected Not affected Not affected
linux-gke Not affected Not affected Ignored Not in release
linux-kvm Not in release Not affected Not affected Not affected
linux-oem Not in release Not in release Not in release Not affected
linux-hwe-edge Not in release Not in release Not in release Not affected
linux-lts-quantal Not in release
linux-lts-raring Not in release
linux-lts-saucy Not in release
linux-lts-trusty Not in release
linux-maguro Not in release
linux-hwe-5.4 Not in release Not in release Not in release Not affected
linux-hwe-5.15 Not in release Not in release Not affected Not in release
linux-hwe-6.8 Not in release Not affected Not in release Not in release
linux-aws-5.4 Not in release Not in release Not in release Not affected
linux-aws-5.15 Not in release Not in release Not affected Not in release
linux-aws-hwe Not in release Not in release Not in release Not in release
linux-azure-4.15 Not in release Not in release Not in release Not affected
linux-azure-5.4 Not in release Not in release Not in release Not affected
linux-azure-5.15 Not in release Not in release Not affected Not in release
linux-azure-fde Not affected Not affected Ignored Not in release
linux-azure-fde-5.15 Not in release Not in release Not affected Not in release
linux-bluefield Not in release Not in release Not affected Not in release
linux-fips Not in release Not affected Not affected Not affected
linux-aws-fips Not in release Not affected Not affected Not affected
linux-azure-fips Not in release Not affected Not affected Not affected
linux-gcp-fips Not in release Not affected Not affected Not affected
linux-gcp-4.15 Not in release Not in release Not in release Not affected
linux-gcp-5.4 Not in release Not in release Not in release Not affected
linux-gcp-5.15 Not in release Not in release Not affected Not in release
linux-gkeop Not affected Not affected Not affected Not in release
linux-gkeop-5.15 Not in release Not in release Not affected Not in release
linux-ibm Not affected Not affected Not affected Not in release
linux-ibm-5.4 Not in release Not in release Not in release Not affected
linux-ibm-5.15 Not in release Not in release Not affected Not in release
linux-intel Not affected Not in release Not in release Not in release
linux-intel-iotg Not in release Not affected Not in release Not in release
linux-intel-iotg-5.15 Not in release Not in release Not affected Not in release
linux-iot Not in release Not in release Not affected Not in release
linux-intel-iot-realtime Not in release Not affected Not in release Not in release
linux-lowlatency Not affected Not affected Not in release Not in release
linux-lowlatency-hwe-5.15 Not in release Not in release Not affected Not in release
linux-lowlatency-hwe-6.8 Not in release Not affected Not in release Not in release
linux-nvidia Not affected Not affected Not in release Not in release
linux-nvidia-6.5 Not in release Not affected Not in release Not in release
linux-nvidia-6.8 Not in release Not affected Not in release Not in release
linux-nvidia-lowlatency Not affected Not in release Not in release Not in release
linux-oracle Not affected Not affected Not affected Not affected
linux-oracle-5.4 Not in release Not in release Not in release Not affected
linux-oracle-5.15 Not in release Not in release Not affected Not in release
linux-oem-6.8 Not affected Not in release Not in release Not in release
linux-raspi Not affected Not affected Not affected Not in release
linux-raspi-5.4 Not in release Not in release Not in release Not affected
linux-raspi-realtime Not affected Not in release Not in release Not in release
linux-realtime Not affected Not affected Not in release Not in release
linux-riscv Not affected Ignored Ignored Not in release
linux-riscv-5.15 Not in release Not in release Not affected Not in release
linux-riscv-6.8 Not in release Not affected Not in release Not in release
linux-xilinx-zynqmp Not in release Not affected Not affected Not in release
linux-aws-6.8 Not in release Not affected Not in release Not in release
linux-gcp-6.8 Not in release Not affected Not in release Not in release
linux-oracle-6.8 Not in release Not affected Not in release Not in release
linux-azure-6.8 Not in release Not affected Not in release Not in release
linux-oem-6.11 Not affected Not in release Not in release Not in release
Show all 81 packages Show less packages

CVE-2017-5753

High priority

Some fixes available 34 of 41

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

83 affected packages

linux-aws, linux-flo, linux-gke, linux-goldfish, linux-grouper...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux-aws Not affected Not affected Not affected Not affected
linux-flo Not in release
linux-gke Not affected Not affected Ignored Not in release
linux-goldfish Not in release
linux-grouper Not in release
linux-hwe Not in release Not in release Not in release Not affected
linux-lts-saucy Not in release
linux-lts-trusty Not in release
linux-lts-utopic Not in release
linux-lts-vivid Not in release
linux-lts-wily Not in release
linux-lts-xenial Not in release Not in release Not in release Not in release
linux-maguro Not in release
linux-mako Not in release
linux-manta Not in release
linux-raspi2 Not in release Not in release Ignored Not affected
linux-snapdragon Not in release Not in release Not in release Not affected
firefox Not affected Not affected Not in release Fixed
linux-azure Not affected Not affected Not affected Not affected
linux-azure-edge Not in release Not in release Not in release Not affected
linux-euclid Not in release
linux-gcp Not affected Not affected Not affected Not affected
linux-kvm Not in release Not affected Not affected Not affected
linux-oem Not in release Not in release Not in release Not affected
nvidia-graphics-drivers-384 Fixed
webkit2gtk Not affected Not affected Not affected Not affected
linux Not affected Not affected Not affected Not affected
linux-hwe-edge Not in release Not in release Not in release Not affected
linux-lts-quantal Not in release
linux-lts-raring Not in release
linux-hwe-5.4 Not in release Not in release Not in release Not affected
linux-hwe-5.15 Not in release Not in release Not affected Not in release
linux-hwe-6.8 Not in release Not affected Not in release Not in release
linux-aws-5.4 Not in release Not in release Not in release Not affected
linux-aws-5.15 Not in release Not in release Not affected Not in release
linux-aws-hwe Not in release Not in release Not in release Not in release
linux-azure-4.15 Not in release Not in release Not in release Not affected
linux-azure-5.4 Not in release Not in release Not in release Not affected
linux-azure-5.15 Not in release Not in release Not affected Not in release
linux-azure-fde Not affected Not affected Ignored Not in release
linux-azure-fde-5.15 Not in release Not in release Not affected Not in release
linux-bluefield Not in release Not in release Not affected Not in release
linux-fips Not in release Not affected Not affected Not affected
linux-aws-fips Not in release Not affected Not affected Not affected
linux-azure-fips Not in release Not affected Not affected Not affected
linux-gcp-fips Not in release Not affected Not affected Not affected
linux-gcp-4.15 Not in release Not in release Not in release Not affected
linux-gcp-5.4 Not in release Not in release Not in release Not affected
linux-gcp-5.15 Not in release Not in release Not affected Not in release
linux-gkeop Not affected Not affected Not affected Not in release
linux-gkeop-5.15 Not in release Not in release Not affected Not in release
linux-ibm Not affected Not affected Not affected Not in release
linux-ibm-5.4 Not in release Not in release Not in release Not affected
linux-ibm-5.15 Not in release Not in release Not affected Not in release
linux-intel Not affected Not in release Not in release Not in release
linux-intel-iotg Not in release Not affected Not in release Not in release
linux-intel-iotg-5.15 Not in release Not in release Not affected Not in release
linux-iot Not in release Not in release Not affected Not in release
linux-intel-iot-realtime Not in release Not affected Not in release Not in release
linux-lowlatency Not affected Not affected Not in release Not in release
linux-lowlatency-hwe-5.15 Not in release Not in release Not affected Not in release
linux-lowlatency-hwe-6.8 Not in release Not affected Not in release Not in release
linux-nvidia Not affected Not affected Not in release Not in release
linux-nvidia-6.5 Not in release Not affected Not in release Not in release
linux-nvidia-6.8 Not in release Not affected Not in release Not in release
linux-nvidia-lowlatency Not affected Not in release Not in release Not in release
linux-oracle Not affected Not affected Not affected Not affected
linux-oracle-5.4 Not in release Not in release Not in release Not affected
linux-oracle-5.15 Not in release Not in release Not affected Not in release
linux-oem-6.8 Not affected Not in release Not in release Not in release
linux-raspi Not affected Not affected Not affected Not in release
linux-raspi-5.4 Not in release Not in release Not in release Not affected
linux-raspi-realtime Not affected Not in release Not in release Not in release
linux-realtime Not affected Not affected Not in release Not in release
linux-riscv Not affected Ignored Ignored Not in release
linux-riscv-5.15 Not in release Not in release Not affected Not in release
linux-riscv-6.8 Not in release Not affected Not in release Not in release
linux-xilinx-zynqmp Not in release Not affected Not affected Not in release
linux-aws-6.8 Not in release Not affected Not in release Not in release
linux-gcp-6.8 Not in release Not affected Not in release Not in release
linux-oracle-6.8 Not in release Not affected Not in release Not in release
linux-azure-6.8 Not in release Not affected Not in release Not in release
linux-oem-6.11 Not affected Not in release Not in release Not in release
Show all 83 packages Show less packages

CVE-2017-5715

High priority

Some fixes available 46 of 56

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

87 affected packages

linux, linux-goldfish, linux-grouper, linux-lts-quantal, linux-lts-raring...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux Not affected Not affected Not affected Not affected
linux-goldfish Not in release
linux-grouper Not in release
linux-lts-quantal Not in release
linux-lts-raring Not in release
linux-lts-saucy Not in release
linux-aws Not affected Not affected Not affected Not affected
linux-flo Not in release
linux-gke Not affected Not affected Ignored Not in release
linux-hwe Not in release Not in release Not in release Not affected
linux-lts-utopic Not in release
linux-lts-vivid Not in release
linux-lts-wily Not in release
linux-lts-xenial Not in release Not in release Not in release Not in release
linux-mako Not in release
linux-manta Not in release
linux-raspi2 Not in release Not in release Ignored Not affected
linux-snapdragon Not in release Not in release Not in release Not affected
amd64-microcode Not affected Not affected Not affected Fixed
firefox Not affected Not affected Not in release Fixed
intel-microcode Not affected Not affected Not affected Not affected
libvirt Not affected Not affected Not affected Not affected
linux-azure Not affected Not affected Not affected Not affected
linux-azure-edge Not in release Not in release Not in release Not affected
linux-euclid Not in release
linux-gcp Not affected Not affected Not affected Not affected
linux-kvm Not in release Not affected Not affected Not affected
linux-oem Not in release Not in release Not in release Not affected
qemu Not affected Not affected Not affected Fixed
linux-hwe-edge Not in release Not in release Not in release Not affected
linux-lts-trusty Not in release
linux-maguro Not in release
qemu-kvm Not in release
webkit2gtk Not affected Not affected Not affected Not affected
linux-hwe-5.4 Not in release Not in release Not in release Not affected
linux-hwe-5.15 Not in release Not in release Not affected Not in release
linux-hwe-6.8 Not in release Not affected Not in release Not in release
linux-aws-5.4 Not in release Not in release Not in release Not affected
linux-aws-5.15 Not in release Not in release Not affected Not in release
linux-aws-hwe Not in release Not in release Not in release Not in release
linux-azure-4.15 Not in release Not in release Not in release Not affected
linux-azure-5.4 Not in release Not in release Not in release Not affected
linux-azure-5.15 Not in release Not in release Not affected Not in release
linux-azure-fde Not affected Not affected Ignored Not in release
linux-azure-fde-5.15 Not in release Not in release Not affected Not in release
linux-bluefield Not in release Not in release Not affected Not in release
linux-fips Not in release Not affected Not affected Not affected
linux-aws-fips Not in release Not affected Not affected Not affected
linux-azure-fips Not in release Not affected Not affected Not affected
linux-gcp-fips Not in release Not affected Not affected Not affected
linux-gcp-4.15 Not in release Not in release Not in release Not affected
linux-gcp-5.4 Not in release Not in release Not in release Not affected
linux-gcp-5.15 Not in release Not in release Not affected Not in release
linux-gkeop Not affected Not affected Not affected Not in release
linux-gkeop-5.15 Not in release Not in release Not affected Not in release
linux-ibm Not affected Not affected Not affected Not in release
linux-ibm-5.4 Not in release Not in release Not in release Not affected
linux-ibm-5.15 Not in release Not in release Not affected Not in release
linux-intel Not affected Not in release Not in release Not in release
linux-intel-iotg Not in release Not affected Not in release Not in release
linux-intel-iotg-5.15 Not in release Not in release Not affected Not in release
linux-iot Not in release Not in release Not affected Not in release
linux-intel-iot-realtime Not in release Not affected Not in release Not in release
linux-lowlatency Not affected Not affected Not in release Not in release
linux-lowlatency-hwe-5.15 Not in release Not in release Not affected Not in release
linux-lowlatency-hwe-6.8 Not in release Not affected Not in release Not in release
linux-nvidia Not affected Not affected Not in release Not in release
linux-nvidia-6.5 Not in release Not affected Not in release Not in release
linux-nvidia-6.8 Not in release Not affected Not in release Not in release
linux-nvidia-lowlatency Not affected Not in release Not in release Not in release
linux-oracle Not affected Not affected Not affected Not affected
linux-oracle-5.4 Not in release Not in release Not in release Not affected
linux-oracle-5.15 Not in release Not in release Not affected Not in release
linux-oem-6.8 Not affected Not in release Not in release Not in release
linux-raspi Not affected Not affected Not affected Not in release
linux-raspi-5.4 Not in release Not in release Not in release Not affected
linux-raspi-realtime Not affected Not in release Not in release Not in release
linux-realtime Not affected Not affected Not in release Not in release
linux-riscv Not affected Ignored Ignored Not in release
linux-riscv-5.15 Not in release Not in release Not affected Not in release
linux-riscv-6.8 Not in release Not affected Not in release Not in release
linux-xilinx-zynqmp Not in release Not affected Not affected Not in release
linux-aws-6.8 Not in release Not affected Not in release Not in release
linux-gcp-6.8 Not in release Not affected Not in release Not in release
linux-oracle-6.8 Not in release Not affected Not in release Not in release
linux-azure-6.8 Not in release Not affected Not in release Not in release
linux-oem-6.11 Not affected Not in release Not in release Not in release
Show all 87 packages Show less packages

CVE-2017-7842

Low priority
Fixed

If a document's Referrer Policy attribute is set to "no-referrer" sometimes two network requests are made for "<link>" elements instead of one. One of these requests includes the referrer instead of respecting the set policy to...

1 affected package

firefox

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Fixed
Show less packages
  1. Previous page
  2. 146
  3. 147
  4. 148
  5. 149
  6. 150
  7. Next page
Export to JSON