Search CVE reports
341 – 350 of 23512 results
CVE-2024-44945
Medium priorityIn the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink: Initialise extack before use in ACKs Add missing extack initialisation when ACKing BATCH_BEGIN and BATCH_END.
121 affected packages
linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...
Package | 22.04 LTS |
---|---|
linux | Not affected |
linux-allwinner-5.19 | Ignored |
linux-aws | Not affected |
linux-aws-5.0 | Not in release |
linux-aws-5.11 | Not in release |
linux-aws-5.13 | Not in release |
linux-aws-5.15 | Not in release |
linux-aws-5.19 | Ignored |
linux-aws-5.3 | Not in release |
linux-aws-5.4 | Not in release |
linux-aws-5.8 | Not in release |
linux-aws-6.2 | Ignored |
linux-aws-6.5 | Ignored |
linux-aws-fips | Not in release |
linux-aws-hwe | Not in release |
linux-azure | Not affected |
linux-azure-4.15 | Not in release |
linux-azure-5.11 | Not in release |
linux-azure-5.13 | Not in release |
linux-azure-5.15 | Not in release |
linux-azure-5.19 | Ignored |
linux-azure-5.3 | Not in release |
linux-azure-5.4 | Not in release |
linux-azure-5.8 | Not in release |
linux-azure-6.2 | Ignored |
linux-azure-6.5 | Ignored |
linux-azure-edge | Not in release |
linux-azure-fde | Not affected |
linux-azure-fde-5.15 | Not in release |
linux-azure-fde-5.19 | Ignored |
linux-azure-fde-6.2 | Ignored |
linux-azure-fips | Not in release |
linux-bluefield | Not in release |
linux-fips | Not in release |
linux-gcp | Not affected |
linux-gcp-4.15 | Not in release |
linux-gcp-5.11 | Not in release |
linux-gcp-5.13 | Not in release |
linux-gcp-5.15 | Not in release |
linux-gcp-5.19 | Ignored |
linux-gcp-5.3 | Not in release |
linux-gcp-5.4 | Not in release |
linux-gcp-5.8 | Not in release |
linux-gcp-6.2 | Ignored |
linux-gcp-6.5 | Ignored |
linux-gcp-fips | Not in release |
linux-gke | Not affected |
linux-gke-4.15 | Not in release |
linux-gke-5.15 | Not in release |
linux-gke-5.4 | Not in release |
linux-gkeop | Not affected |
linux-gkeop-5.15 | Not in release |
linux-gkeop-5.4 | Not in release |
linux-hwe | Not in release |
linux-hwe-5.11 | Not in release |
linux-hwe-5.13 | Not in release |
linux-hwe-5.15 | Not in release |
linux-hwe-5.19 | Ignored |
linux-hwe-5.4 | Not in release |
linux-hwe-5.8 | Not in release |
linux-hwe-6.2 | Ignored |
linux-hwe-6.5 | Ignored |
linux-hwe-6.8 | Not affected |
linux-hwe-edge | Not in release |
linux-ibm | Not affected |
linux-ibm-5.15 | Not in release |
linux-ibm-5.4 | Not in release |
linux-intel | Not in release |
linux-intel-5.13 | Not in release |
linux-intel-iot-realtime | Not in release |
linux-intel-iotg | Not affected |
linux-intel-iotg-5.15 | Not in release |
linux-iot | Not in release |
linux-kvm | Not affected |
linux-lowlatency | Not affected |
linux-lowlatency-hwe-5.15 | Not in release |
linux-lowlatency-hwe-5.19 | Ignored |
linux-lowlatency-hwe-6.2 | Ignored |
linux-lowlatency-hwe-6.5 | Ignored |
linux-lowlatency-hwe-6.8 | Not affected |
linux-lts-xenial | Not in release |
linux-nvidia | Not affected |
linux-nvidia-6.2 | Ignored |
linux-nvidia-6.5 | Not affected |
linux-nvidia-6.8 | Not affected |
linux-nvidia-lowlatency | Not in release |
linux-oem | Not in release |
linux-oem-5.10 | Not in release |
linux-oem-5.13 | Not in release |
linux-oem-5.14 | Not in release |
linux-oem-5.17 | Ignored |
linux-oem-5.6 | Not in release |
linux-oem-6.0 | Ignored |
linux-oem-6.1 | Ignored |
linux-oem-6.5 | Ignored |
linux-oem-6.8 | Not in release |
linux-oracle | Not affected |
linux-oracle-5.0 | Not in release |
linux-oracle-5.11 | Not in release |
linux-oracle-5.13 | Not in release |
linux-oracle-5.15 | Not in release |
linux-oracle-5.3 | Not in release |
linux-oracle-5.4 | Not in release |
linux-oracle-5.8 | Not in release |
linux-oracle-6.5 | Ignored |
linux-raspi | Not affected |
linux-raspi-5.4 | Not in release |
linux-raspi-realtime | Not in release |
linux-raspi2 | Not in release |
linux-realtime | Ignored |
linux-riscv | Ignored |
linux-riscv-5.11 | Not in release |
linux-riscv-5.15 | Not in release |
linux-riscv-5.19 | Ignored |
linux-riscv-5.8 | Not in release |
linux-riscv-6.5 | Ignored |
linux-riscv-6.8 | Not affected |
linux-starfive-5.19 | Ignored |
linux-starfive-6.2 | Ignored |
linux-starfive-6.5 | Ignored |
linux-xilinx-zynqmp | Not affected |
CVE-2024-8006
Medium priorityRemote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcap_findalldevs_ex(). One of the function...
1 affected packages
libpcap
Package | 22.04 LTS |
---|---|
libpcap | Not affected |
CVE-2023-7256
Medium priorityIn affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the caller function whether...
1 affected packages
libpcap
Package | 22.04 LTS |
---|---|
libpcap | Not affected |
CVE-2024-8235
Medium priorityA flaw was found in libvirt. A refactor of the code fetching the list of interfaces for multiple APIs introduced a corner case on platforms where allocating 0 bytes of memory results in a NULL pointer. This corner case would lead...
1 affected packages
libvirt
Package | 22.04 LTS |
---|---|
libvirt | Not affected |
CVE-2022-48944
Medium priorityIn the Linux kernel, the following vulnerability has been resolved: sched: Fix yet more sched_fork() races Where commit 4ef0c5c6b5ba ("kernel/sched: Fix sched_fork() access an invalid sched_task_group") fixed a fork race vs...
121 affected packages
linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...
Package | 22.04 LTS |
---|---|
linux | Not affected |
linux-allwinner-5.19 | Ignored |
linux-aws | Not affected |
linux-aws-5.0 | Not in release |
linux-aws-5.11 | Not in release |
linux-aws-5.13 | Not in release |
linux-aws-5.15 | Not in release |
linux-aws-5.19 | Ignored |
linux-aws-5.3 | Not in release |
linux-aws-5.4 | Not in release |
linux-aws-5.8 | Not in release |
linux-aws-6.2 | Ignored |
linux-aws-6.5 | Ignored |
linux-aws-fips | Not in release |
linux-aws-hwe | Not in release |
linux-azure | Not affected |
linux-azure-4.15 | Not in release |
linux-azure-5.11 | Not in release |
linux-azure-5.13 | Not in release |
linux-azure-5.15 | Not in release |
linux-azure-5.19 | Ignored |
linux-azure-5.3 | Not in release |
linux-azure-5.4 | Not in release |
linux-azure-5.8 | Not in release |
linux-azure-6.2 | Ignored |
linux-azure-6.5 | Ignored |
linux-azure-edge | Not in release |
linux-azure-fde | Not affected |
linux-azure-fde-5.15 | Not in release |
linux-azure-fde-5.19 | Ignored |
linux-azure-fde-6.2 | Ignored |
linux-azure-fips | Not in release |
linux-bluefield | Not in release |
linux-fips | Not in release |
linux-gcp | Not affected |
linux-gcp-4.15 | Not in release |
linux-gcp-5.11 | Not in release |
linux-gcp-5.13 | Not in release |
linux-gcp-5.15 | Not in release |
linux-gcp-5.19 | Ignored |
linux-gcp-5.3 | Not in release |
linux-gcp-5.4 | Not in release |
linux-gcp-5.8 | Not in release |
linux-gcp-6.2 | Ignored |
linux-gcp-6.5 | Ignored |
linux-gcp-fips | Not in release |
linux-gke | Not affected |
linux-gke-4.15 | Not in release |
linux-gke-5.15 | Not in release |
linux-gke-5.4 | Not in release |
linux-gkeop | Not affected |
linux-gkeop-5.15 | Not in release |
linux-gkeop-5.4 | Not in release |
linux-hwe | Not in release |
linux-hwe-5.11 | Not in release |
linux-hwe-5.13 | Not in release |
linux-hwe-5.15 | Not in release |
linux-hwe-5.19 | Ignored |
linux-hwe-5.4 | Not in release |
linux-hwe-5.8 | Not in release |
linux-hwe-6.2 | Ignored |
linux-hwe-6.5 | Ignored |
linux-hwe-6.8 | Not affected |
linux-hwe-edge | Not in release |
linux-ibm | Not affected |
linux-ibm-5.15 | Not in release |
linux-ibm-5.4 | Not in release |
linux-intel | Not in release |
linux-intel-5.13 | Not in release |
linux-intel-iot-realtime | Not in release |
linux-intel-iotg | Not affected |
linux-intel-iotg-5.15 | Not in release |
linux-iot | Not in release |
linux-kvm | Not affected |
linux-lowlatency | Not affected |
linux-lowlatency-hwe-5.15 | Not in release |
linux-lowlatency-hwe-5.19 | Ignored |
linux-lowlatency-hwe-6.2 | Ignored |
linux-lowlatency-hwe-6.5 | Ignored |
linux-lowlatency-hwe-6.8 | Not affected |
linux-lts-xenial | Not in release |
linux-nvidia | Not affected |
linux-nvidia-6.2 | Ignored |
linux-nvidia-6.5 | Not affected |
linux-nvidia-6.8 | Not affected |
linux-nvidia-lowlatency | Not in release |
linux-oem | Not in release |
linux-oem-5.10 | Not in release |
linux-oem-5.13 | Not in release |
linux-oem-5.14 | Not in release |
linux-oem-5.17 | Ignored |
linux-oem-5.6 | Not in release |
linux-oem-6.0 | Ignored |
linux-oem-6.1 | Ignored |
linux-oem-6.5 | Ignored |
linux-oem-6.8 | Not in release |
linux-oracle | Not affected |
linux-oracle-5.0 | Not in release |
linux-oracle-5.11 | Not in release |
linux-oracle-5.13 | Not in release |
linux-oracle-5.15 | Not in release |
linux-oracle-5.3 | Not in release |
linux-oracle-5.4 | Not in release |
linux-oracle-5.8 | Not in release |
linux-oracle-6.5 | Ignored |
linux-raspi | Not affected |
linux-raspi-5.4 | Not in release |
linux-raspi-realtime | Not in release |
linux-raspi2 | Not in release |
linux-realtime | Ignored |
linux-riscv | Ignored |
linux-riscv-5.11 | Not in release |
linux-riscv-5.15 | Not in release |
linux-riscv-5.19 | Ignored |
linux-riscv-5.8 | Not in release |
linux-riscv-6.5 | Ignored |
linux-riscv-6.8 | Not affected |
linux-starfive-5.19 | Ignored |
linux-starfive-6.2 | Ignored |
linux-starfive-6.5 | Ignored |
linux-xilinx-zynqmp | Not affected |
CVE-2024-44944
Medium priorityIn the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: use helper function to calculate expect ID Delete expectation path is missing a call to the nf_expect_get_id() helper function to calculate...
121 affected packages
linux, linux-allwinner-5.19, linux-aws, linux-aws-5.0, linux-aws-5.11...
Package | 22.04 LTS |
---|---|
linux | Vulnerable |
linux-allwinner-5.19 | Ignored |
linux-aws | Vulnerable |
linux-aws-5.0 | Not in release |
linux-aws-5.11 | Not in release |
linux-aws-5.13 | Not in release |
linux-aws-5.15 | Not in release |
linux-aws-5.19 | Ignored |
linux-aws-5.3 | Not in release |
linux-aws-5.4 | Not in release |
linux-aws-5.8 | Not in release |
linux-aws-6.2 | Ignored |
linux-aws-6.5 | Ignored |
linux-aws-fips | Not in release |
linux-aws-hwe | Not in release |
linux-azure | Vulnerable |
linux-azure-4.15 | Not in release |
linux-azure-5.11 | Not in release |
linux-azure-5.13 | Not in release |
linux-azure-5.15 | Not in release |
linux-azure-5.19 | Ignored |
linux-azure-5.3 | Not in release |
linux-azure-5.4 | Not in release |
linux-azure-5.8 | Not in release |
linux-azure-6.2 | Ignored |
linux-azure-6.5 | Ignored |
linux-azure-edge | Not in release |
linux-azure-fde | Vulnerable |
linux-azure-fde-5.15 | Not in release |
linux-azure-fde-5.19 | Ignored |
linux-azure-fde-6.2 | Ignored |
linux-azure-fips | Not in release |
linux-bluefield | Not in release |
linux-fips | Not in release |
linux-gcp | Vulnerable |
linux-gcp-4.15 | Not in release |
linux-gcp-5.11 | Not in release |
linux-gcp-5.13 | Not in release |
linux-gcp-5.15 | Not in release |
linux-gcp-5.19 | Ignored |
linux-gcp-5.3 | Not in release |
linux-gcp-5.4 | Not in release |
linux-gcp-5.8 | Not in release |
linux-gcp-6.2 | Ignored |
linux-gcp-6.5 | Ignored |
linux-gcp-fips | Not in release |
linux-gke | Vulnerable |
linux-gke-4.15 | Not in release |
linux-gke-5.15 | Not in release |
linux-gke-5.4 | Not in release |
linux-gkeop | Vulnerable |
linux-gkeop-5.15 | Not in release |
linux-gkeop-5.4 | Not in release |
linux-hwe | Not in release |
linux-hwe-5.11 | Not in release |
linux-hwe-5.13 | Not in release |
linux-hwe-5.15 | Not in release |
linux-hwe-5.19 | Ignored |
linux-hwe-5.4 | Not in release |
linux-hwe-5.8 | Not in release |
linux-hwe-6.2 | Ignored |
linux-hwe-6.5 | Ignored |
linux-hwe-6.8 | Vulnerable |
linux-hwe-edge | Not in release |
linux-ibm | Vulnerable |
linux-ibm-5.15 | Not in release |
linux-ibm-5.4 | Not in release |
linux-intel | Not in release |
linux-intel-5.13 | Not in release |
linux-intel-iot-realtime | Not in release |
linux-intel-iotg | Vulnerable |
linux-intel-iotg-5.15 | Not in release |
linux-iot | Not in release |
linux-kvm | Vulnerable |
linux-lowlatency | Vulnerable |
linux-lowlatency-hwe-5.15 | Not in release |
linux-lowlatency-hwe-5.19 | Ignored |
linux-lowlatency-hwe-6.2 | Ignored |
linux-lowlatency-hwe-6.5 | Ignored |
linux-lowlatency-hwe-6.8 | Vulnerable |
linux-lts-xenial | Not in release |
linux-nvidia | Vulnerable |
linux-nvidia-6.2 | Ignored |
linux-nvidia-6.5 | Vulnerable |
linux-nvidia-6.8 | Vulnerable |
linux-nvidia-lowlatency | Not in release |
linux-oem | Not in release |
linux-oem-5.10 | Not in release |
linux-oem-5.13 | Not in release |
linux-oem-5.14 | Not in release |
linux-oem-5.17 | Ignored |
linux-oem-5.6 | Not in release |
linux-oem-6.0 | Ignored |
linux-oem-6.1 | Ignored |
linux-oem-6.5 | Ignored |
linux-oem-6.8 | Not in release |
linux-oracle | Vulnerable |
linux-oracle-5.0 | Not in release |
linux-oracle-5.11 | Not in release |
linux-oracle-5.13 | Not in release |
linux-oracle-5.15 | Not in release |
linux-oracle-5.3 | Not in release |
linux-oracle-5.4 | Not in release |
linux-oracle-5.8 | Not in release |
linux-oracle-6.5 | Ignored |
linux-raspi | Vulnerable |
linux-raspi-5.4 | Not in release |
linux-raspi-realtime | Not in release |
linux-raspi2 | Not in release |
linux-realtime | Ignored |
linux-riscv | Ignored |
linux-riscv-5.11 | Not in release |
linux-riscv-5.15 | Not in release |
linux-riscv-5.19 | Ignored |
linux-riscv-5.8 | Not in release |
linux-riscv-6.5 | Ignored |
linux-riscv-6.8 | Vulnerable |
linux-starfive-5.19 | Ignored |
linux-starfive-6.2 | Ignored |
linux-starfive-6.5 | Ignored |
linux-xilinx-zynqmp | Vulnerable |
CVE-2024-45492
Medium prioritySome fixes available 1 of 8
An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX).
23 affected packages
apache2, apr-util, ayttm, cableswig, cadaver...
Package | 22.04 LTS |
---|---|
apache2 | Not affected |
apr-util | Not affected |
ayttm | Not in release |
cableswig | Not in release |
cadaver | Needs evaluation |
cmake | Not affected |
coin3 | Not affected |
expat | Fixed |
firefox | Not affected |
gdcm | Not affected |
ghostscript | Not affected |
insighttoolkit4 | Needs evaluation |
libxmltok | Not affected |
matanza | Needs evaluation |
smart | Not in release |
swish-e | Needs evaluation |
tdom | Needs evaluation |
texlive-bin | Not affected |
thunderbird | Not affected |
vnc4 | Not in release |
vtk | Not in release |
wbxml2 | Needs evaluation |
xmlrpc-c | Needs evaluation |
CVE-2024-45491
Medium prioritySome fixes available 2 of 9
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).
23 affected packages
apache2, apr-util, ayttm, cableswig, cadaver...
Package | 22.04 LTS |
---|---|
apache2 | Not affected |
apr-util | Not affected |
ayttm | Not in release |
cableswig | Not in release |
cadaver | Needs evaluation |
cmake | Not affected |
coin3 | Not affected |
expat | Fixed |
firefox | Not affected |
gdcm | Not affected |
ghostscript | Not affected |
insighttoolkit4 | Needs evaluation |
libxmltok | Fixed |
matanza | Needs evaluation |
smart | Not in release |
swish-e | Needs evaluation |
tdom | Needs evaluation |
texlive-bin | Not affected |
thunderbird | Not affected |
vnc4 | Not in release |
vtk | Not in release |
wbxml2 | Needs evaluation |
xmlrpc-c | Needs evaluation |
CVE-2024-45490
Medium prioritySome fixes available 2 of 9
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.
23 affected packages
apache2, apr-util, ayttm, cableswig, cadaver...
Package | 22.04 LTS |
---|---|
apache2 | Not affected |
apr-util | Not affected |
ayttm | Not in release |
cableswig | Not in release |
cadaver | Needs evaluation |
cmake | Not affected |
coin3 | Not affected |
expat | Fixed |
firefox | Not affected |
gdcm | Not affected |
ghostscript | Not affected |
insighttoolkit4 | Needs evaluation |
libxmltok | Fixed |
matanza | Needs evaluation |
smart | Not in release |
swish-e | Needs evaluation |
tdom | Needs evaluation |
texlive-bin | Not affected |
thunderbird | Not affected |
vnc4 | Not in release |
vtk | Not in release |
wbxml2 | Needs evaluation |
xmlrpc-c | Needs evaluation |
CVE-2024-2881
Medium priorityFault Injection vulnerability in wc_ed25519_sign_msg function in wolfssl/wolfcrypt/src/ed25519.c in WolfSSL wolfssl5.6.6 on Linux/Windows allows remote attacker co-resides in the same system with a victim process to disclose...
1 affected packages
wolfssl
Package | 22.04 LTS |
---|---|
wolfssl | Needs evaluation |