Search CVE reports
271 – 280 of 30617 results
CVE-2024-45615
Medium priorityA vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. The problem is missing initialization of variables expected to be initialized (as arguments to other functions, etc.).
1 affected packages
opensc
Package | 18.04 LTS |
---|---|
opensc | Needs evaluation |
CVE-2024-45310
Low priorityrunc is a CLI tool for spawning and running containers according to the OCI specification. runc 1.1.13 and earlier, as well as 1.2.0-rc2 and earlier, can be tricked into creating empty files or directories in arbitrary locations...
2 affected packages
runc, runc-app
Package | 18.04 LTS |
---|---|
runc | Vulnerable |
runc-app | — |
CVE-2024-8389
Medium priorityMemory safety bugs present in Firefox 129. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 18.04 LTS |
---|---|
firefox | — |
mozjs102 | — |
mozjs115 | — |
mozjs38 | Needs evaluation |
mozjs52 | Ignored |
mozjs68 | — |
mozjs78 | — |
mozjs91 | — |
thunderbird | — |
CVE-2024-8387
Medium priorityMemory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 18.04 LTS |
---|---|
firefox | — |
mozjs102 | — |
mozjs115 | — |
mozjs38 | Needs evaluation |
mozjs52 | Ignored |
mozjs68 | — |
mozjs78 | — |
mozjs91 | — |
thunderbird | — |
CVE-2024-8386
Medium priorityIf a site had been granted the permission to open popup windows, it could cause Select elements to appear on top of another site to perform a spoofing attack. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, and...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 18.04 LTS |
---|---|
firefox | — |
mozjs102 | — |
mozjs115 | — |
mozjs38 | Needs evaluation |
mozjs52 | Ignored |
mozjs68 | — |
mozjs78 | — |
mozjs91 | — |
thunderbird | — |
CVE-2024-8385
Medium priorityA difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an exploitable type confusion vulnerability. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, and Thunderbird < 128.2.
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 18.04 LTS |
---|---|
firefox | — |
mozjs102 | — |
mozjs115 | — |
mozjs38 | Needs evaluation |
mozjs52 | Ignored |
mozjs68 | — |
mozjs78 | — |
mozjs91 | — |
thunderbird | — |
CVE-2024-8384
Medium priorityThe JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two passes. This could have led to memory corruption. This vulnerability affects Firefox < 130,...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 18.04 LTS |
---|---|
firefox | — |
mozjs102 | — |
mozjs115 | — |
mozjs38 | Needs evaluation |
mozjs52 | Ignored |
mozjs68 | — |
mozjs78 | — |
mozjs91 | — |
thunderbird | — |
CVE-2024-8383
Medium priorityFirefox normally asks for confirmation before asking the operating system to find an application to handle a scheme that the browser does not support. It did not ask before doing so for the Usenet-related schemes news: and snews:....
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 18.04 LTS |
---|---|
firefox | — |
mozjs102 | — |
mozjs115 | — |
mozjs38 | Needs evaluation |
mozjs52 | Ignored |
mozjs68 | — |
mozjs78 | — |
mozjs91 | — |
thunderbird | — |
CVE-2024-8382
Medium priorityInternal browser event interfaces were exposed to web content when privileged EventHandler listener callbacks ran for those events. Web content that tried to use those interfaces would not be able to use them with elevated...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 18.04 LTS |
---|---|
firefox | — |
mozjs102 | — |
mozjs115 | — |
mozjs38 | Needs evaluation |
mozjs52 | Ignored |
mozjs68 | — |
mozjs78 | — |
mozjs91 | — |
thunderbird | — |
CVE-2024-8381
Medium priorityA potentially exploitable type confusion could be triggered when looking up a property name on an object being used as the `with` environment. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15,...
9 affected packages
firefox, mozjs102, mozjs115, mozjs38, mozjs52...
Package | 18.04 LTS |
---|---|
firefox | — |
mozjs102 | — |
mozjs115 | — |
mozjs38 | Needs evaluation |
mozjs52 | Ignored |
mozjs68 | — |
mozjs78 | — |
mozjs91 | — |
thunderbird | — |