Search CVE reports
3791 – 3800 of 60314 results
Some fixes available 1 of 16
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution.
5 affected packages
webkitgtk, webkit2gtk, qtwebkit-source, qtwebkit-opensource-src, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| webkitgtk | Not in release | Not in release | Not in release | Ignored |
| webkit2gtk | Not affected | Fixed | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored |
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | — |
Some fixes available 1 of 16
Processing web content may lead to arbitrary code execution. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. The issue was addressed with improved memory handling.
5 affected packages
webkitgtk, webkit2gtk, qtwebkit-source, qtwebkit-opensource-src, wpewebkit
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| webkitgtk | Not in release | Not in release | Not in release | Ignored |
| webkit2gtk | Not affected | Fixed | Ignored | Ignored |
| qtwebkit-source | Not in release | Not in release | Not in release | Ignored |
| qtwebkit-opensource-src | Ignored | Ignored | Ignored | Ignored |
| wpewebkit | Not in release | Ignored | Ignored | — |
There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incorrectly formatted markdown file to be passed to QTextMarkdownImporter to trigger the overflow.This issue affects Qt from 6.8.0 to...
3 affected packages
qt6-base, qtbase-opensource-src, qtbase-opensource-src-gles
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| qt6-base | Needs evaluation | Needs evaluation | Not in release | — |
| qtbase-opensource-src | Not affected | Not affected | Not affected | Not affected |
| qtbase-opensource-src-gles | Needs evaluation | Needs evaluation | Needs evaluation | — |
A path traversal vulnerability in FusionDirectory before 1.5 allows remote attackers to read arbitrary files on the host that end with .png (and .svg or .xpm for some configurations) via the icon parameter of a GET request to geticon.php.
1 affected package
fusiondirectory
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| fusiondirectory | Not in release | Needs evaluation | Needs evaluation | Needs evaluation |
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread...
1 affected package
suricata
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation |
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The bytes setting in the decode_base64 keyword is not properly limited. Due to this, signatures using the...
1 affected package
suricata
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation |
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Datasets declared in rules have an option to specify the `hashsize` to use. This size setting isn't properly...
1 affected package
suricata
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation |
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AF_PACKET defrag option is enabled by default and allows AF_PACKET to re-assemble fragmented packets before...
1 affected package
suricata
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| suricata | Needs evaluation | Needs evaluation | Not in release | Needs evaluation |
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program...
1 affected package
mediawiki
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mediawiki | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/Api/QueryAbuseLog.Php, includes/Pager/AbuseLogPager.Php,...
1 affected package
mediawiki
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mediawiki | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |