Search CVE reports

Toggle filters

921 – 930 of 2389 results

CVE-2022-22741

Medium priority

Some fixes available 17 of 27

When resizing a popup while requesting fullscreen access, the popup would have become unable to leave fullscreen mode. This vulnerability affects Firefox ESR < 91.5, Firefox < 96, and Thunderbird < 91.5.

6 affected packages

firefox, mozjs38, mozjs52, mozjs68, mozjs78, thunderbird

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox Fixed Fixed Fixed Fixed
mozjs38 Not in release Not in release Not in release Ignored
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored Not in release
mozjs78 Not in release Ignored Not in release Not in release
thunderbird Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-22740

Medium priority

Some fixes available 17 of 27

Certain network request objects were freed too early when releasing a network request handle. This could have lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR < 91.5, Firefox...

6 affected packages

thunderbird, mozjs78, firefox, mozjs38, mozjs52, mozjs68

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
thunderbird Fixed Fixed Fixed Fixed
mozjs78 Not in release Ignored Not in release Not in release
firefox Fixed Fixed Fixed Fixed
mozjs38 Not in release Not in release Not in release Ignored
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored Not in release
Show less packages

CVE-2022-22739

Low priority

Some fixes available 17 of 27

Malicious websites could have tricked users into accepting launching a program to handle an external URL protocol. This vulnerability affects Firefox ESR < 91.5, Firefox < 96, and Thunderbird < 91.5.

6 affected packages

mozjs38, mozjs78, firefox, mozjs52, mozjs68, thunderbird

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mozjs38 Not in release Not in release Not in release Ignored
mozjs78 Not in release Ignored Not in release Not in release
firefox Fixed Fixed Fixed Fixed
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored Not in release
thunderbird Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-22738

Medium priority

Some fixes available 17 of 27

Applying a CSS filter effect could have accessed out of bounds memory. This could have lead to a heap-buffer-overflow causing a potentially exploitable crash. This vulnerability affects Firefox ESR < 91.5, Firefox < 96,...

6 affected packages

thunderbird, mozjs78, firefox, mozjs38, mozjs52, mozjs68

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
thunderbird Fixed Fixed Fixed Fixed
mozjs78 Not in release Ignored Not in release Not in release
firefox Fixed Fixed Fixed Fixed
mozjs38 Not in release Not in release Not in release Ignored
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored Not in release
Show less packages

CVE-2022-22737

Medium priority

Some fixes available 17 of 27

Constructing audio sinks could have lead to a race condition when playing audio files and closing windows. This could have lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR <...

6 affected packages

mozjs78, firefox, mozjs38, mozjs52, mozjs68, thunderbird

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
mozjs78 Not in release Ignored Not in release Not in release
firefox Fixed Fixed Fixed Fixed
mozjs38 Not in release Not in release Not in release Ignored
mozjs52 Not in release Not in release Ignored Ignored
mozjs68 Not in release Not in release Ignored Not in release
thunderbird Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-22827

Medium priority

Some fixes available 34 of 113

storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

24 affected packages

expat, apache2, apr-util, ayttm, cableswig...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
expat Fixed Fixed Fixed Fixed Fixed
apache2 Not affected Not affected Not affected Not affected Not affected
apr-util Not affected Not affected Not affected Not affected Not affected
ayttm Not in release Not in release Not in release Not in release Not in release
cableswig Not in release Not in release Not in release Not in release Not in release
cadaver Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
cmake Not affected Not affected Not affected Not affected Not affected
coin3 Not affected Not affected Not affected Not affected Ignored
firefox Fixed Fixed Fixed Fixed Fixed
gdcm Not affected Not affected Not affected Not affected Not affected
ghostscript Not affected Not affected Not affected Not affected Not affected
insighttoolkit Not in release Not in release Not in release Not in release Not in release
libxmltok Not in release Fixed Fixed Fixed Fixed
insighttoolkit4 Not in release Not in release Not affected Not affected Not affected
matanza Ignored Ignored Ignored Ignored Ignored
swish-e Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
smart Not in release Not in release Not in release Not in release Not affected
tdom Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
thunderbird Not affected Not affected Fixed Fixed Ignored
texlive-bin Not affected Not affected Not affected Not affected Not affected
wbxml2 Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
vnc4 Not in release Not in release Not in release Not in release Ignored
vtk Not in release Not in release Not in release Not in release Not in release
xmlrpc-c Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
Show all 24 packages Show less packages

CVE-2022-22826

Medium priority

Some fixes available 34 of 113

nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

24 affected packages

cmake, expat, vtk, apache2, apr-util...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
cmake Not affected Not affected Not affected Not affected Not affected
expat Fixed Fixed Fixed Fixed Fixed
vtk Not in release Not in release Not in release Not in release Not in release
apache2 Not affected Not affected Not affected Not affected Not affected
apr-util Not affected Not affected Not affected Not affected Not affected
ayttm Not in release Not in release Not in release Not in release Not in release
cableswig Not in release Not in release Not in release Not in release Not in release
cadaver Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
coin3 Not affected Not affected Not affected Not affected Ignored
firefox Fixed Fixed Fixed Fixed Fixed
gdcm Not affected Not affected Not affected Not affected Not affected
ghostscript Not affected Not affected Not affected Not affected Not affected
insighttoolkit Not in release Not in release Not in release Not in release Not in release
insighttoolkit4 Not in release Not in release Not affected Not affected Not affected
libxmltok Not in release Fixed Fixed Fixed Fixed
matanza Ignored Ignored Ignored Ignored Ignored
smart Not in release Not in release Not in release Not in release Not affected
swish-e Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
tdom Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
texlive-bin Not affected Not affected Not affected Not affected Not affected
thunderbird Not affected Not affected Fixed Fixed Ignored
vnc4 Not in release Not in release Not in release Not in release Ignored
wbxml2 Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
xmlrpc-c Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
Show all 24 packages Show less packages

CVE-2022-22825

Medium priority

Some fixes available 34 of 113

lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

24 affected packages

apache2, apr-util, ayttm, cadaver, cableswig...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apache2 Not affected Not affected Not affected Not affected Not affected
apr-util Not affected Not affected Not affected Not affected Not affected
ayttm Not in release Not in release Not in release Not in release Not in release
cadaver Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
cableswig Not in release Not in release Not in release Not in release Not in release
cmake Not affected Not affected Not affected Not affected Not affected
coin3 Not affected Not affected Not affected Not affected Ignored
expat Fixed Fixed Fixed Fixed Fixed
firefox Fixed Fixed Fixed Fixed Fixed
gdcm Not affected Not affected Not affected Not affected Not affected
ghostscript Not affected Not affected Not affected Not affected Not affected
insighttoolkit Not in release Not in release Not in release Not in release Not in release
insighttoolkit4 Not in release Not in release Not affected Not affected Not affected
libxmltok Not in release Fixed Fixed Fixed Fixed
matanza Ignored Ignored Ignored Ignored Ignored
smart Not in release Not in release Not in release Not in release Not affected
swish-e Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
tdom Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
texlive-bin Not affected Not affected Not affected Not affected Not affected
thunderbird Not affected Not affected Fixed Fixed Ignored
vnc4 Not in release Not in release Not in release Not in release Ignored
wbxml2 Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
vtk Not in release Not in release Not in release Not in release Not in release
xmlrpc-c Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
Show all 24 packages Show less packages

CVE-2022-22824

Medium priority

Some fixes available 34 of 113

defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

24 affected packages

expat, apache2, apr-util, ayttm, cableswig...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
expat Fixed Fixed Fixed Fixed Fixed
apache2 Not affected Not affected Not affected Not affected Not affected
apr-util Not affected Not affected Not affected Not affected Not affected
ayttm Not in release Not in release Not in release Not in release Not in release
cableswig Not in release Not in release Not in release Not in release Not in release
cadaver Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
cmake Not affected Not affected Not affected Not affected Not affected
coin3 Not affected Not affected Not affected Not affected Ignored
firefox Fixed Fixed Fixed Fixed Fixed
gdcm Not affected Not affected Not affected Not affected Not affected
ghostscript Not affected Not affected Not affected Not affected Not affected
insighttoolkit Not in release Not in release Not in release Not in release Not in release
insighttoolkit4 Not in release Not in release Not affected Not affected Not affected
libxmltok Not in release Fixed Fixed Fixed Fixed
matanza Ignored Ignored Ignored Ignored Ignored
smart Not in release Not in release Not in release Not in release Not affected
swish-e Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
tdom Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
texlive-bin Not affected Not affected Not affected Not affected Not affected
thunderbird Not affected Not affected Fixed Fixed Ignored
vnc4 Not in release Not in release Not in release Not in release Ignored
vtk Not in release Not in release Not in release Not in release Not in release
wbxml2 Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
xmlrpc-c Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
Show all 24 packages Show less packages

CVE-2022-22823

Medium priority

Some fixes available 34 of 113

build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

24 affected packages

apr-util, ayttm, cadaver, apache2, cableswig...

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
apr-util Not affected Not affected Not affected Not affected Not affected
ayttm Not in release Not in release Not in release Not in release Not in release
cadaver Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
apache2 Not affected Not affected Not affected Not affected Not affected
cableswig Not in release Not in release Not in release Not in release Not in release
cmake Not affected Not affected Not affected Not affected Not affected
coin3 Not affected Not affected Not affected Not affected Ignored
expat Fixed Fixed Fixed Fixed Fixed
firefox Fixed Fixed Fixed Fixed Fixed
gdcm Not affected Not affected Not affected Not affected Not affected
ghostscript Not affected Not affected Not affected Not affected Not affected
insighttoolkit Not in release Not in release Not in release Not in release Not in release
libxmltok Not in release Fixed Fixed Fixed Fixed
insighttoolkit4 Not in release Not in release Not affected Not affected Not affected
vnc4 Not in release Not in release Not in release Not in release Ignored
matanza Ignored Ignored Ignored Ignored Ignored
smart Not in release Not in release Not in release Not in release Not affected
swish-e Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
tdom Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
texlive-bin Not affected Not affected Not affected Not affected Not affected
thunderbird Not affected Not affected Fixed Fixed Ignored
vtk Not in release Not in release Not in release Not in release Not in release
wbxml2 Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
xmlrpc-c Needs evaluation Needs evaluation Needs evaluation Ignored Ignored
Show all 24 packages Show less packages
  1. Previous page
  2. 91
  3. 92
  4. 93
  5. 94
  6. 95
  7. Next page
Export to JSON