Search CVE reports
211 – 220 of 47438 results
[Denial of Service via inefficient regular expression processing]
1 affected package
libssh
| Package | 16.04 LTS |
|---|---|
| libssh | Fixed |
[Buffer underflow in ssh_get_hexa() on invalid input]
1 affected package
libssh
| Package | 16.04 LTS |
|---|---|
| libssh | Fixed |
[Denial of Service via improper configuration file handling]
1 affected package
libssh
| Package | 16.04 LTS |
|---|---|
| libssh | Fixed |
[Improper sanitation of paths received from SCP servers]
1 affected package
libssh
| Package | 16.04 LTS |
|---|---|
| libssh | Fixed |
[Insecure default configuration leads to local man-in-the-middle attacks on Windows]
1 affected package
libssh
| Package | 16.04 LTS |
|---|---|
| libssh | Not affected |
ClamAV ClamBC bytecode interpreter contains a vulnerability in function name processing that allows attackers to manipulate bytecode function names. Attackers can exploit the weak input validation in function name encoding to...
2 affected packages
clamav, libclamunrar
| Package | 16.04 LTS |
|---|---|
| clamav | Vulnerable |
| libclamunrar | Vulnerable |
DokuWiki 2018-04-22b contains a username enumeration vulnerability in its password reset functionality that allows attackers to identify valid user accounts. Attackers can submit different usernames to the password reset endpoint...
1 affected package
dokuwiki
| Package | 16.04 LTS |
|---|---|
| dokuwiki | Needs evaluation |
A flaw was found in Dropbear. When running in multi-user mode and authenticating users, the dropbear ssh server does the socket forwardings requested by the remote client as root, only switching to the logged-in user upon spawning...
1 affected package
dropbear
| Package | 16.04 LTS |
|---|---|
| dropbear | Needs evaluation |
Cross Site Request Forgery vulnerability in Dolibarr ERP & CRM v.22.0.9 allows a remote attacker to escalate privileges via the notes field in perms.php NOTE: this is disputed by a third party who indicates that exploitation can...
1 affected package
dolibarr
| Package | 16.04 LTS |
|---|---|
| dolibarr | Needs evaluation |
Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted input string. The attacker has limited control over the byte patterns to be written, but we have not ruled out the...
8 affected packages
postgresql-18, postgresql-17, postgresql-16, postgresql-14, postgresql-12...
| Package | 16.04 LTS |
|---|---|
| postgresql-18 | — |
| postgresql-17 | — |
| postgresql-16 | — |
| postgresql-14 | — |
| postgresql-12 | — |
| postgresql-10 | — |
| postgresql-9.5 | Not affected |
| postgresql-9.3 | — |