Search CVE reports

Toggle filters

2121 – 2130 of 3719 results

CVE-2016-10579

Medium priority
Not affected

Chromedriver is an NPM wrapper for selenium ChromeDriver. Chromedriver before 2.26.1 downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by...

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Not affected
oxide-qt Not in release
Show less packages

CVE-2018-6126

Medium priority

Some fixes available 16 of 19

A precision error in Skia in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.

4 affected packages

chromium-browser, firefox, oxide-qt, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
firefox Fixed
oxide-qt Not in release
thunderbird Fixed
Show less packages

CVE-2017-6888

Low priority

Some fixes available 3 of 32

An error in the "read_metadata_vorbiscomment_()" function (src/libFLAC/stream_decoder.c) in FLAC version 1.3.2 can be exploited to cause a memory leak via a specially crafted FLAC file.

6 affected packages

android, flac, praat, chromium-browser, mame, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
android Not in release Not in release Not in release Not in release
flac Not affected Not affected Not affected Fixed
praat Needs evaluation Needs evaluation Needs evaluation Needs evaluation
chromium-browser Not affected Not affected Not in release Not affected
mame Not affected Not affected Not affected Not affected
oxide-qt Not in release Not in release Not in release Not in release
Show less packages

CVE-2017-7000

Medium priority

Some fixes available 6 of 11

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial...

4 affected packages

sqlite, sqlite3, chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
sqlite Not affected
sqlite3 Not affected
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2018-4117

Medium priority

Some fixes available 16 of 41

An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. watchOS before 4.3 is affected....

6 affected packages

chromium-browser, qtwebkit, qtwebkit-opensource-src, qtwebkit-source, webkit2gtk, webkitgtk

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed Fixed Fixed Fixed
qtwebkit Not in release Not in release Not in release Not in release
qtwebkit-opensource-src Ignored Ignored Ignored Ignored
qtwebkit-source Not in release Not in release Not in release Ignored
webkit2gtk Not affected Not affected Not affected Not affected
webkitgtk Not in release Not in release Not in release Ignored
Show less packages

CVE-2017-5133

Medium priority

Some fixes available 6 of 9

Off-by-one read/write on the heap in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to corrupt memory and possibly leak information and potentially execute code via a crafted PDF file.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-5132

Medium priority

Some fixes available 6 of 9

Inappropriate implementation in V8 in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, aka incorrect WebAssembly stack manipulation.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-5131

Medium priority

Some fixes available 6 of 9

An integer overflow in Skia in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, aka an out-of-bounds write.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-5130

Negligible priority

Some fixes available 8 of 15

An integer overflow in xmlmemory.c in libxml2 before 2.9.5, as used in Google Chrome prior to 62.0.3202.62 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted XML file.

3 affected packages

libxml2, chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libxml2 Fixed
chromium-browser Fixed
oxide-qt Not in release
Show less packages

CVE-2017-5129

Medium priority

Some fixes available 6 of 9

A use after free in WebAudio in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

2 affected packages

chromium-browser, oxide-qt

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
chromium-browser Fixed
oxide-qt Not in release
Show less packages
  1. Previous page
  2. 211
  3. 212
  4. 213
  5. 214
  6. 215
  7. Next page
Export to JSON