Search CVE reports
1191 – 1200 of 39983 results
race condition in TLS handshake that could lead to leaking of packet data from a previous handshake under specific circumstances
1 affected package
openvpn
| Package | 20.04 LTS |
|---|---|
| openvpn | Needs evaluation |
[hcd-ohci: infinite loop]
1 affected package
qemu
| Package | 20.04 LTS |
|---|---|
| qemu | Needs evaluation |
server ASSERT() on receiving a suitably malformed packet with a valid tls-crypt-v2 key
1 affected package
openvpn
| Package | 20.04 LTS |
|---|---|
| openvpn | Needs evaluation |
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to the RAM being exhausted. This requires accessing an image using...
2 affected packages
pypdf, pypdf2
| Package | 20.04 LTS |
|---|---|
| pypdf | — |
| pypdf2 | Needs evaluation |
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to long runtimes. This requires loading a PDF with a large trailer...
2 affected packages
pypdf, pypdf2
| Package | 20.04 LTS |
|---|---|
| pypdf | — |
| pypdf2 | Needs evaluation |
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to the RAM being exhausted. This requires accessing a stream compressed...
2 affected packages
pypdf, pypdf2
| Package | 20.04 LTS |
|---|---|
| pypdf | — |
| pypdf2 | Needs evaluation |
radare2 prior to 6.1.4 contains a command injection vulnerability in the PDB parser's print_gvars() function that allows attackers to execute arbitrary commands by crafting a malicious PDB file with newline characters in symbol...
1 affected package
radare2
| Package | 20.04 LTS |
|---|---|
| radare2 | Needs evaluation |
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large...
2 affected packages
pypdf, pypdf2
| Package | 20.04 LTS |
|---|---|
| pypdf | — |
| pypdf2 | Needs evaluation |
http.cookies.Morsel.js_output() returns an inline <script> snippet and only escapes " for JavaScript string context. It does not neutralize the HTML parser-sensitive sequence </script> inside the generated script...
13 affected packages
pypy3, python2.7, python3.4, python3.5, python3.6...
| Package | 20.04 LTS |
|---|---|
| pypy3 | Needs evaluation |
| python2.7 | Needs evaluation |
| python3.4 | — |
| python3.5 | — |
| python3.6 | — |
| python3.7 | — |
| python3.8 | Needs evaluation |
| python3.9 | Needs evaluation |
| python3.10 | — |
| python3.11 | — |
| python3.12 | — |
| python3.13 | — |
| python3.14 | — |
A flaw was found in libefiboot, a component of efivar. The device path node parser in libefiboot fails to validate that each node's Length field is at least 4 bytes, which is the minimum size for an EFI (Extensible...
1 affected package
efivar
| Package | 20.04 LTS |
|---|---|
| efivar | Vulnerable |