Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2010-5321v4l: videobuf: hotfix a bug on multiple calls to mmap()check
CVE-2011-2844Google Chrome before 14.0.835.163 does not properly process MP3 files, ...check ffmpeg, http://src.chromium.org/viewvc/chrome?view=rev&revision=88382
CVE-2011-2896The LZW decompressor in the LWZReadByte function in giftoppm.c in the ...There's more: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2896
CVE-2011-5034Apache Geronimo 2.2.1 and earlier computes hash values for form ...check
CVE-2013-1799Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before ...check if fix applied to Debian in 3.4.2-2 was incomplete
CVE-2014-0227java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in ...check
CVE-2014-2886GKSu 2.0.2, when sudo-mode is not enabled, uses " (double quote) ...check
CVE-2014-3514activerecord/lib/active_record/relation/query_methods.rb in Active ...needs to check the others rails versions
CVE-2014-5409The 17046 Ethernet card before 94450214LFMT100SEM-L.R3-CL for the GE ...check
CVE-2014-8119augeas path expression injection via interface namecheck
CVE-2014-8172The filesystem implementation in the Linux kernel before 3.13 performs ...unclear, if given commit actually fixes the issue, see http://www.openwall.com/lists/oss-security/2015/03/09/3
CVE-2015-0646Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, ...check
CVE-2015-0896Multiple cross-site scripting (XSS) vulnerabilities in eXtplorer ...check
CVE-2015-0898futomi CGI Cafe MP Form Mail CGI eCommerce before 2.0.12 on Windows ...check
CVE-2015-0941The Inetc plugin for Nullsoft Scriptable Install System (NSIS), as ...check
CVE-2015-0978Multiple untrusted search path vulnerabilities in (1) ...check
CVE-2015-0979Heap-based buffer overflow in the SOAP web interface in SCADA Engine ...check
CVE-2015-0980Format string vulnerability in BACnOPCServer.exe in the SOAP web ...check
CVE-2015-0981The SOAP web interface in SCADA Engine BACnet OPC Server before ...check
CVE-2015-0982Buffer overflow in an unspecified DLL in Schneider Electric Pelco ...check
CVE-2015-1388The "RAP console" feature in ArubaOS 5.x through 6.2.x, 6.3.x before ...check
CVE-2015-2107HP Operations Manager i Management Pack 1.x before 1.01 for SAP allows ...check
CVE-2015-2149Multiple cross-site scripting (XSS) vulnerabilities in the administrative ...check
CVE-2015-2237Multiple SQL injection vulnerabilities in Betster (aka PHP Betoffice) ...check
CVE-2015-2264Multiple untrusted search path vulnerabilities in (1) ...check
CVE-2015-2275Cross-site scripting (XSS) vulnerability in WoltLab Community Gallery ...check
CVE-2015-2281Stack-based buffer overflow in collectoragent.exe in Fortinet Single ...check
CVE-2015-2562Multiple SQL injection vulnerabilities in the Web-Dorado ECommerce WD ...check
CVE-2015-2563SQL injection vulnerability in groups.php in Vastal I-Tech phpVID ...check
CVE-2015-2564SQL injection vulnerability in client-edit.php in ProjectSend ...check
CVE-2015-2678Multiple cross-site scripting (XSS) vulnerabilities in MetalGenix ...check
CVE-2015-2679Multiple SQL injection vulnerabilities in MetalGenix GeniXCMS before ...check
CVE-2015-2680Cross-site request forgery (CSRF) vulnerability in MetalGenix GeniXCMS ...check
CVE-2015-2682Citrix Command Center before 5.1 Build 35.4 and 5.2 before Build 42.7 ...check
CVE-2015-2683Citrix Command Center before 5.1 Build 35.4 and 5.2 before Build 42.7 ...check
CVE-2015-2746The network diagnostics tool (CommandLineServlet) in the Appliance ...check
CVE-2015-2747Multiple cross-site scripting (XSS) vulnerabilities in the data loss ...check
CVE-2015-2748Websense TRITON AP-WEB before 8.0.0 does not properly restrict access ...check
CVE-2015-2778check affected versions
CVE-2015-2779check affected versions
TEMP-0760455-22ED59install-sh: insecure use of /tmpcheck other automake versions
TEMP-0781547-BCD9B7nbd-server: server dies if client asks for a non-existing exportcheck details

Search for package or bug name: Reporting problems