Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2018-9389In ip6_append_data of ip6_output.c, there is a possible way to achieve ...check, potentially src:linux upstream and not Android specific
CVE-2019-16536Stack overflow leading to DoS can be triggered by a malicious authenti ...check
CVE-2022-23538github.com/sylabs/scs-library-client is the Go client for the Singular ...check details, might as well affect golang-github-apptainer-container-library-client
CVE-2023-26044react/http is an event-driven, streaming HTTP client and server implem ...check, is embedded inicinga-php-thirdparty, icingaweb2-module-reactbundle possibly affected
CVE-2023-49316In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively larg ...check if affecting ldap-account-manager or unused path
CVE-2023-50251php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked
CVE-2023-50252php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked
CVE-2023-50262Dompdf is an HTML to PDF converter for PHP. When parsing SVG images Do ...check sources embedding php-dompdf if affected
CVE-2024-22420JupyterLab is an extensible environment for interactive and reproducib ...check completeness, src:jupyter-notebook?
CVE-2024-22421JupyterLab is an extensible environment for interactive and reproducib ...check completeness, src:jupyter-notebook?
CVE-2024-28180Package jose aims to provide an implementation of the Javascript Objec ...check completeness
CVE-2024-36353Insufficient clearing of GPU global memory could allow a malicious pro ...check, AMD GPU related, but unclear if src:linux
CVE-2024-48869Improper restriction of software interfaces to hardware features for s ...check; might be fixed with microcode updates and is not part of 20250512 updates
CVE-2024-53359An issue in Zalo v23.09.01 allows attackers to obtain sensitive user i ...check
CVE-2025-4382A flaw was found in systems utilizing LUKS-encrypted disks with GRUB c ...double check if vulnerability only considered present after grub_is_cli_disabled is introduced
CVE-2025-4476A denial-of-service vulnerability has been identified in the libsoup H ...check if affects as well libsoup2.4
CVE-2025-4949In Eclipse JGit versions 7.2.0.202503040940-r and older, the ManifestP ...check
CVE-2025-5007A vulnerability was found in Part-DB up to 1.17.0. It has been declare ...check
CVE-2025-23090With the aid of the diagnostics_channel utility, an event can be hooke ...check, seems to be duplicate of CVE-2025-23083, verify it with CNA
CVE-2025-40633A Stored Cross-Site Scripting (XSS) vulnerability has been found in K ...check
CVE-2025-46724Langroid is a Python framework to build large language model (LLM)-pow ...check
CVE-2025-46725Langroid is a Python framework to build large language model (LLM)-pow ...check
CVE-2025-48056Hubble is a fully distributed networking and security observability pl ...check

Search for package or bug name: Reporting problems