Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

71 – 80 of 20369 results

Status is adjusted based on your filters.

CVE-2024-36474

Medium priority
Fixed

An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library (libgsf) version v1.14.52. A specially crafted file can result in an integer overflow when...

1 affected packages

libgsf

Package 24.04 LTS
libgsf Fixed
Show less packages

CVE-2024-25590

Medium priority
Needs evaluation

An attacker can publish a zone containing specific Resource Record Sets. Repeatedly processing and caching results for these sets can lead to a denial of service.

1 affected packages

pdns-recursor

Package 24.04 LTS
pdns-recursor Needs evaluation
Show less packages

CVE-2024-47554

Medium priority
Needs evaluation

Uncontrolled Resource Consumption vulnerability in Apache Commons IO. The org.apache.commons.io.input.XmlStreamReader class may excessively consume CPU resources when processing maliciously crafted input. This issue affects Apache...

1 affected packages

commons-io

Package 24.04 LTS
commons-io Needs evaluation
Show less packages

CVE-2024-9402

Medium priority
Ignored

Memory safety bugs present in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run...

9 affected packages

firefox, mozjs102, mozjs115, mozjs38, mozjs52...

Package 24.04 LTS
firefox Not affected
mozjs102 Ignored
mozjs115 Ignored
mozjs38 Not in release
mozjs52 Not in release
mozjs68 Not in release
mozjs78 Not in release
mozjs91 Not in release
thunderbird Not affected
Show all 9 packages Show less packages

CVE-2024-9401

Medium priority
Ignored

Memory safety bugs present in Firefox 130, Firefox ESR 115.15, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been...

9 affected packages

firefox, mozjs102, mozjs115, mozjs38, mozjs52...

Package 24.04 LTS
firefox Not affected
mozjs102 Ignored
mozjs115 Ignored
mozjs38 Not in release
mozjs52 Not in release
mozjs68 Not in release
mozjs78 Not in release
mozjs91 Not in release
thunderbird Not affected
Show all 9 packages Show less packages

CVE-2024-9400

Medium priority
Ignored

A potential memory corruption vulnerability could be triggered if an attacker had the ability to trigger an OOM at a specific moment during JIT compilation. This vulnerability affects Firefox < 131, Firefox ESR <...

9 affected packages

firefox, mozjs102, mozjs115, mozjs38, mozjs52...

Package 24.04 LTS
firefox Not affected
mozjs102 Ignored
mozjs115 Ignored
mozjs38 Not in release
mozjs52 Not in release
mozjs68 Not in release
mozjs78 Not in release
mozjs91 Not in release
thunderbird Not affected
Show all 9 packages Show less packages

CVE-2024-9399

Medium priority
Ignored

A website configured to initiate a specially crafted WebTransport session could crash the Firefox process leading to a denial of service condition. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird <...

9 affected packages

firefox, mozjs102, mozjs115, mozjs38, mozjs52...

Package 24.04 LTS
firefox Not affected
mozjs102 Ignored
mozjs115 Ignored
mozjs38 Not in release
mozjs52 Not in release
mozjs68 Not in release
mozjs78 Not in release
mozjs91 Not in release
thunderbird Not affected
Show all 9 packages Show less packages

CVE-2024-9398

Medium priority
Ignored

By checking the result of calls to `window.open` with specifically set protocol handlers, an attacker could determine if the application which implements that protocol handler is installed. This vulnerability affects Firefox <...

9 affected packages

firefox, mozjs102, mozjs115, mozjs38, mozjs52...

Package 24.04 LTS
firefox Not affected
mozjs102 Ignored
mozjs115 Ignored
mozjs38 Not in release
mozjs52 Not in release
mozjs68 Not in release
mozjs78 Not in release
mozjs91 Not in release
thunderbird Not affected
Show all 9 packages Show less packages

CVE-2024-9397

Medium priority
Ignored

A missing delay in directory upload UI could have made it possible for an attacker to trick a user into granting permission via clickjacking. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Thunderbird < 128.3, and...

9 affected packages

firefox, mozjs102, mozjs115, mozjs38, mozjs52...

Package 24.04 LTS
firefox Not affected
mozjs102 Ignored
mozjs115 Ignored
mozjs38 Not in release
mozjs52 Not in release
mozjs68 Not in release
mozjs78 Not in release
mozjs91 Not in release
thunderbird Not affected
Show all 9 packages Show less packages

CVE-2024-9396

Medium priority
Ignored

It is currently unknown if this issue is exploitable but a condition may arise where the structured clone of certain objects could lead to memory corruption. This vulnerability affects Firefox < 131, Firefox ESR <...

9 affected packages

firefox, mozjs102, mozjs115, mozjs38, mozjs52...

Package 24.04 LTS
firefox Not affected
mozjs102 Ignored
mozjs115 Ignored
mozjs38 Not in release
mozjs52 Not in release
mozjs68 Not in release
mozjs78 Not in release
mozjs91 Not in release
thunderbird Not affected
Show all 9 packages Show less packages
  1. Previous page
  2. 6
  3. 7
  4. 8
  5. 9
  6. 10
  7. Next page
Export to JSON