Search CVE reports
21 – 30 of 47 results
CVE-2020-16155
Medium priorityThe CPAN::Checksums package 2.12 for Perl does not uniquely define signed data.
1 affected packages
libcpan-checksums-perl
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
libcpan-checksums-perl | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Needs evaluation |
CVE-2020-16154
Medium prioritySome fixes available 4 of 6
The App::cpanminus package 1.7044 for Perl allows Signature Verification Bypass.
1 affected packages
cpanminus
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
cpanminus | Not affected | Fixed | Fixed | Fixed | Fixed |
CVE-2021-20307
Medium prioritySome fixes available 4 of 7
Format string vulnerability in panoFileOutputNamesCreate() in libpano13 2.9.20~rc2+dfsg-3 and earlier can lead to read and write arbitrary memory values.
1 affected packages
libpano13
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
libpano13 | — | Fixed | Fixed | Fixed | Fixed |
CVE-2021-28994
Medium prioritykopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x through 11.0.1 and Zarafa 6.30.x through 7.2.x allows memory exhaustion via long HTTP headers.
1 affected packages
kopanocore
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
kopanocore | Not in release | Vulnerable | Vulnerable | Vulnerable | Not in release |
CVE-2020-15953
Medium prioritySome fixes available 1 of 11
LibEtPan through 1.9.4, as used in MailCore 2 through 0.6.3 and other products, has a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data (e.g.,...
1 affected packages
libetpan
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
libetpan | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Fixed |
CVE-2020-8014
Unknown priorityA UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of kopano-spamd of openSUSE Leap 15.1, openSUSE Tumbleweed allowed local attackers with the privileges of the kopano user to escalate to root. This issue...
1 affected packages
kopanocore
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
kopanocore | — | — | Not affected | Not affected | Not in release |
CVE-2020-13091
Negligible priority** DISPUTED ** pandas through 1.0.3 can unserialize and execute commands from an untrusted file that is passed to the read_pickle() function, if __reduce__ makes an os.system call. NOTE: third parties dispute this issue because...
1 affected packages
pandas
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pandas | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2019-19907
Medium prioritySome fixes available 1 of 3
HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data.
1 affected packages
kopanocore
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
kopanocore | Not in release | Not affected | Not affected | Fixed | Not in release |
CVE-2019-1010238
Medium priorityGnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get code execution. The component is: function name: pango_log2vis_get_embedding_levels, assignment of nchars...
1 affected packages
pango1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pango1.0 | — | — | — | Not affected | Not affected |
CVE-2018-15120
Medium prioritylibpango in Pango 1.40.8 through 1.42.3, as used in hexchat and other products, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted text with invalid...
1 affected packages
pango1.0
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
pango1.0 | — | — | — | Fixed | Not affected |