Search CVE reports
31 – 40 of 51527 results
A NULL pointer dereference in the SQLite Session Extension in SQLite 3.53.1 and SQLite trunk builds before check-in e807d4e3798efd53 allows an attacker who can supply a malformed changeset blob to cause a denial of service....
2 affected packages
sqlite, sqlite3
| Package | 16.04 LTS |
|---|---|
| sqlite | — |
| sqlite3 | Needs evaluation |
(Handshakes which used Encrypted Client Hello could be de-anonymized by ...)
16 affected packages
golang, golang-1.6, golang-1.8, golang-1.9, golang-1.10...
| Package | 16.04 LTS |
|---|---|
| golang | — |
| golang-1.6 | Needs evaluation |
| golang-1.8 | — |
| golang-1.9 | — |
| golang-1.10 | Needs evaluation |
| golang-1.13 | — |
| golang-1.14 | — |
| golang-1.16 | — |
| golang-1.17 | — |
| golang-1.18 | — |
| golang-1.20 | — |
| golang-1.21 | — |
| golang-1.22 | — |
| golang-1.23 | — |
| golang-1.24 | — |
| golang-1.25 | — |
(On Unix systems, opening a file in an os.Root improperly follows symli ...)
16 affected packages
golang, golang-1.6, golang-1.8, golang-1.9, golang-1.10...
| Package | 16.04 LTS |
|---|---|
| golang | — |
| golang-1.6 | Needs evaluation |
| golang-1.8 | — |
| golang-1.9 | — |
| golang-1.10 | Needs evaluation |
| golang-1.13 | — |
| golang-1.14 | — |
| golang-1.16 | — |
| golang-1.17 | — |
| golang-1.18 | — |
| golang-1.20 | — |
| golang-1.21 | — |
| golang-1.22 | — |
| golang-1.23 | — |
| golang-1.24 | — |
| golang-1.25 | — |
[virtio-gpu: fix overflow check when allocating 2d image]
1 affected package
qemu
| Package | 16.04 LTS |
|---|---|
| qemu | Needs evaluation |
[Unknown description]
1 affected package
c-ares
| Package | 16.04 LTS |
|---|---|
| c-ares | Needs evaluation |
(U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in ...)
2 affected packages
u-boot, u-boot-nezha
| Package | 16.04 LTS |
|---|---|
| u-boot | Needs evaluation |
| u-boot-nezha | — |
(U-Boot through 2026.04-rc3 contains an integer underflow vulnerability ...)
2 affected packages
u-boot, u-boot-nezha
| Package | 16.04 LTS |
|---|---|
| u-boot | Needs evaluation |
| u-boot-nezha | — |
(U-Boot through 2026.04-rc3 contains an out-of-bounds read vulnerabilit ...)
2 affected packages
u-boot, u-boot-nezha
| Package | 16.04 LTS |
|---|---|
| u-boot | Needs evaluation |
| u-boot-nezha | — |
A sandbox escape vulnerability exists in the OpenJDK packages provided in Ubuntu. The .jar MIME handlers installed by these packages execute files marked as executable when the mailcap package is installed. A compromised or...
12 affected packages
mailcap, openjdk-8, openjdk-9, openjdk-lts, openjdk-13...
| Package | 16.04 LTS |
|---|---|
| mailcap | — |
| openjdk-8 | Not affected |
| openjdk-9 | — |
| openjdk-lts | — |
| openjdk-13 | — |
| openjdk-16 | — |
| openjdk-17 | — |
| openjdk-17-crac | — |
| openjdk-18 | — |
| openjdk-21 | — |
| openjdk-21-crac | — |
| openjdk-25 | — |
ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchange. (This outcome occurs only on the client side.)
2 affected packages
openssh, openssh-ssh1
| Package | 16.04 LTS |
|---|---|
| openssh | Needs evaluation |
| openssh-ssh1 | — |