Search CVE reports
951 – 960 of 39983 results
Out-of-bounds Read vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.
1 affected package
thrift
| Package | 20.04 LTS |
|---|---|
| thrift | Needs evaluation |
Uncontrolled Recursion vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.
1 affected package
thrift
| Package | 20.04 LTS |
|---|---|
| thrift | Needs evaluation |
Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.
1 affected package
thrift
| Package | 20.04 LTS |
|---|---|
| thrift | Needs evaluation |
Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.
1 affected package
thrift
| Package | 20.04 LTS |
|---|---|
| thrift | Needs evaluation |
Mismatched Memory Management Routines vulnerability in Apache Thrift c_glib language bindings. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the...
1 affected package
thrift
| Package | 20.04 LTS |
|---|---|
| thrift | Needs evaluation |
In KDE KCoreAddons before 6.25, KShell::quoteArgs is intended to safely quote arguments so that they can be passed to a shell command. This parsing does not adequately handle metacharacters, leading to an escape from the shell....
2 affected packages
kcoreaddons, kf6-kcoreaddons
| Package | 20.04 LTS |
|---|---|
| kcoreaddons | Needs evaluation |
| kf6-kcoreaddons | — |
KDE Dolphin before 25.12.3 allows applications in a Flatpak (or with AppArmor confinement) to open folders outside of the application sandbox without additional scrutiny. Dolphin's implementation of the FileManager1 protocol...
1 affected package
dolphin
| Package | 20.04 LTS |
|---|---|
| dolphin | Needs evaluation |
A vulnerability was determined in Artifex MuPDF up to 1.28.0. The impacted element is the function fz_subset_cff_for_gids of the file subset-cff.c of the component CFF Index Handler. This manipulation causes out-of-bounds read....
1 affected package
mupdf
| Package | 20.04 LTS |
|---|---|
| mupdf | Needs evaluation |
OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface.
2 affected packages
ironic, openstack
| Package | 20.04 LTS |
|---|---|
| ironic | Needs evaluation |
| openstack | — |
mod_sql in ProFTPD before 1.3.9a allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USER requests with an expansion such as %U, and the SQL backend allows commands (e.g., COPY...
1 affected package
proftpd-dfsg
| Package | 20.04 LTS |
|---|---|
| proftpd-dfsg | Needs evaluation |