Search CVE reports
11 – 20 of 28 results
A XSS vulnerability was found in phoromatic_r_add_test_details.php in phoronix-test-suite.
1 affected package
phoronix-test-suite
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| phoronix-test-suite | — | Not in release | Not in release | Needs evaluation |
Cross-site Scripting (XSS) - Reflected in GitHub repository phoronix-test-suite/phoronix-test-suite prior to 10.8.2.
1 affected package
phoronix-test-suite
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| phoronix-test-suite | — | — | — | Needs evaluation |
phoronix-test-suite is vulnerable to Cross-Site Request Forgery (CSRF)
1 affected package
phoronix-test-suite
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| phoronix-test-suite | — | — | — | Needs evaluation |
phoronix-test-suite is vulnerable to Cross-Site Request Forgery (CSRF)
1 affected package
phoronix-test-suite
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| phoronix-test-suite | Not in release | Not in release | Not in release | Needs evaluation |
phoronix-test-suite is vulnerable to Cross-Site Request Forgery (CSRF)
1 affected package
phoronix-test-suite
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| phoronix-test-suite | Not in release | Not in release | Not in release | Needs evaluation |
phoronix-test-suite is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
1 affected package
phoronix-test-suite
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| phoronix-test-suite | Not in release | Not in release | Not in release | Needs evaluation |
An issue was discovered in the nix crate 0.16.0 and later before 0.20.2, 0.21.x before 0.21.2, and 0.22.x before 0.22.2 for Rust. unistd::getgrouplist has an out-of-bounds write if a user is in more than 16 /etc/groups groups.
1 affected package
rust-nix
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| rust-nix | Vulnerable | Vulnerable | Vulnerable | Not in release |
Some fixes available 14 of 30
bson before 0.8 incorrectly uses int rather than size_t for many variables, parameters, and return values. In particular, the bson_ensure_space() parameter bytesNeeded could have an integer overflow via properly constructed bson input.
2 affected packages
duo-unix, whoopsie
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| duo-unix | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| whoopsie | Fixed | Fixed | Fixed | Fixed |
The SQLDriverConnect() function in unixODBC before 2.2.14p2 have a possible buffer overflow condition when specifying a large value for SAVEFILE parameter in the connection string.
1 affected package
unixodbc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| unixodbc | — | — | — | — |
Some fixes available 16 of 32
Kevin Backhouse discovered an integer overflow in bson_ensure_space, as used in whoopsie.
2 affected packages
whoopsie, duo-unix
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| whoopsie | Fixed | Fixed | Fixed | Fixed |
| duo-unix | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |