Search CVE reports
71 – 80 of 24363 results
CVE-2024-36474
Medium priorityAn integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library (libgsf) version v1.14.52. A specially crafted file can result in an integer overflow when...
1 affected packages
libgsf
Package | 22.04 LTS |
---|---|
libgsf | Fixed |
CVE-2024-25590
Medium priorityAn attacker can publish a zone containing specific Resource Record Sets. Repeatedly processing and caching results for these sets can lead to a denial of service.
1 affected packages
pdns-recursor
Package | 22.04 LTS |
---|---|
pdns-recursor | Needs evaluation |
CVE-2024-47554
Medium priorityUncontrolled Resource Consumption vulnerability in Apache Commons IO. The org.apache.commons.io.input.XmlStreamReader class may excessively consume CPU resources when processing maliciously crafted input. This issue affects Apache...
1 affected packages
commons-io
Package | 22.04 LTS |
---|---|
commons-io | Needs evaluation |
CVE-2024-9402
Medium priorityMemory safety bugs present in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 22.04 LTS |
---|---|
firefox | Not affected |
mozjs102 | Ignored |
mozjs115 | Not in release |
mozjs38 | Not in release |
mozjs52 | Not in release |
mozjs68 | Not in release |
mozjs78 | Ignored |
mozjs91 | Ignored |
thunderbird | Vulnerable |
CVE-2024-9401
Medium priorityMemory safety bugs present in Firefox 130, Firefox ESR 115.15, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 22.04 LTS |
---|---|
firefox | Not affected |
mozjs102 | Ignored |
mozjs115 | Not in release |
mozjs38 | Not in release |
mozjs52 | Not in release |
mozjs68 | Not in release |
mozjs78 | Ignored |
mozjs91 | Ignored |
thunderbird | Vulnerable |
CVE-2024-9400
Medium priorityA potential memory corruption vulnerability could be triggered if an attacker had the ability to trigger an OOM at a specific moment during JIT compilation. This vulnerability affects Firefox < 131, Firefox ESR <...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 22.04 LTS |
---|---|
firefox | Not affected |
mozjs102 | Ignored |
mozjs115 | Not in release |
mozjs38 | Not in release |
mozjs52 | Not in release |
mozjs68 | Not in release |
mozjs78 | Ignored |
mozjs91 | Ignored |
thunderbird | Vulnerable |
CVE-2024-9399
Medium priorityA website configured to initiate a specially crafted WebTransport session could crash the Firefox process leading to a denial of service condition. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird <...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 22.04 LTS |
---|---|
firefox | Not affected |
mozjs102 | Ignored |
mozjs115 | Not in release |
mozjs38 | Not in release |
mozjs52 | Not in release |
mozjs68 | Not in release |
mozjs78 | Ignored |
mozjs91 | Ignored |
thunderbird | Vulnerable |
CVE-2024-9398
Medium priorityBy checking the result of calls to `window.open` with specifically set protocol handlers, an attacker could determine if the application which implements that protocol handler is installed. This vulnerability affects Firefox <...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 22.04 LTS |
---|---|
firefox | Not affected |
mozjs102 | Ignored |
mozjs115 | Not in release |
mozjs38 | Not in release |
mozjs52 | Not in release |
mozjs68 | Not in release |
mozjs78 | Ignored |
mozjs91 | Ignored |
thunderbird | Vulnerable |
CVE-2024-9397
Medium priorityA missing delay in directory upload UI could have made it possible for an attacker to trick a user into granting permission via clickjacking. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird < 128.3, and...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 22.04 LTS |
---|---|
firefox | Not affected |
mozjs102 | Ignored |
mozjs115 | Not in release |
mozjs38 | Not in release |
mozjs52 | Not in release |
mozjs68 | Not in release |
mozjs78 | Ignored |
mozjs91 | Ignored |
thunderbird | Vulnerable |
CVE-2024-9396
Medium priorityIt is currently unknown if this issue is exploitable but a condition may arise where the structured clone of certain objects could lead to memory corruption. This vulnerability affects Firefox < 131, Firefox ESR <...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 22.04 LTS |
---|---|
firefox | Not affected |
mozjs102 | Ignored |
mozjs115 | Not in release |
mozjs38 | Not in release |
mozjs52 | Not in release |
mozjs68 | Not in release |
mozjs78 | Ignored |
mozjs91 | Ignored |
thunderbird | Vulnerable |