Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2011-2844Google Chrome before 14.0.835.163 does not properly process MP3 files, ...check ffmpeg, http://src.chromium.org/viewvc/chrome?view=rev&revision=88382
CVE-2011-2896The LZW decompressor in the LWZReadByte function in giftoppm.c in the ...There's more: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2896
CVE-2011-5034Apache Geronimo 2.2.1 and earlier computes hash values for form ...check
CVE-2013-7444recheck after CVE assignment
CVE-2014-1972Apache Tapestry before 5.3.6 relies on client-side object storage ...check
CVE-2014-3514activerecord/lib/active_record/relation/query_methods.rb in Active ...needs to check the others rails versions
CVE-2014-7912The get_option function in dhcp.c in dhcpcd before 6.2.0, as used in ...check
CVE-2014-7913The print_option function in dhcp-common.c in dhcpcd through 6.9.1, as ...check
CVE-2014-9743Cross-site scripting (XSS) vulnerability in the httpd_HtmlError ...check
CVE-2015-1932IBM WebSphere Application Server 7.x before 7.0.0.39, 8.0.x before ...check
CVE-2015-1992IBM Systems Director 5.2.x, 6.1.x, 6.2.0.x, 6.2.1.x, 6.3.0.0, 6.3.1.x, ...check
CVE-2015-2014Open redirect vulnerability in the web server in IBM Domino 8.5 before ...check
CVE-2015-2015Cross-site scripting (XSS) vulnerability in pubnames.ntf (aka the ...check
CVE-2015-2018IBM Integration Bus 9 and 10 before 10.0.0.1 and WebSphere Message ...check
CVE-2015-2132Unspecified vulnerability in the execve system-call implementation in ...check
CVE-2015-2137Unspecified vulnerability in HP Operations Manager i (OMi) 9.22, 9.23, ...check
CVE-2015-2139HP Systems Insight Manager (SIM) before 7.5.0, as used in HP Matrix ...check
CVE-2015-2140HP Systems Insight Manager (SIM) before 7.5.0, as used in HP Matrix ...check
CVE-2015-2321Cross-site scripting (XSS) vulnerability in the Job Manager plugin ...check
CVE-2015-2583Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2623Unspecified vulnerability in the Oracle GlassFish Server component in ...check
CVE-2015-2624Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2626Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2640Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2654Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2656Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2872Multiple cross-site scripting (XSS) vulnerabilities in Trend Micro ...check
CVE-2015-2873Trend Micro Deep Discovery Inspector (DDI) on Deep Discovery Threat ...check
CVE-2015-2877Cross-VM ASL INtrospection (CAIN)check closer the referenced advisories
CVE-2015-2904Actiontec GT784WN modems with firmware before NCS01-1.0.13 have ...check
CVE-2015-2905Cross-site request forgery (CSRF) vulnerability on Actiontec GT784WN ...check
CVE-2015-2906** DISPUTED ** Mobile Devices (aka MDI) C4 OBD-II dongles with ...check
CVE-2015-2907** DISPUTED ** Mobile Devices (aka MDI) C4 OBD-II dongles with ...check
CVE-2015-2908** DISPUTED ** Mobile Devices (aka MDI) C4 OBD-II dongles with ...check
CVE-2015-2982Cross-site scripting (XSS) vulnerability in jquery.lightbox-0.5.min.js ...check
CVE-2015-2983Cross-site request forgery (CSRF) vulnerability in admin.php in PHP ...check
CVE-2015-2984I-O DATA DEVICE WN-G54/R2 routers with firmware before 1.03 and ...check
CVE-2015-3240check
CVE-2015-3269Apache Flex BlazeDS, as used in flex-messaging-core.jar in Adobe ...check
CVE-2015-3729Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as ...check
CVE-2015-3730WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3731WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3732WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3733WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3734WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3735WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3736WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3737WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3738WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3739WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3740WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3741WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3742WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3743WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3744WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3745WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3746WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3747WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3748WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3749WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x ...check
CVE-2015-3750WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before ...check
CVE-2015-3751WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before ...check
CVE-2015-3752The Content Security Policy implementation in WebKit in Apple Safari ...check
CVE-2015-3753WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before ...check
CVE-2015-3754The private-browsing implementation in WebKit in Apple Safari before ...check
CVE-2015-3765QuickTime 7 in Apple OS X before 10.10.5 allows remote attackers to ...check
CVE-2015-3767udf in Apple OS X before 10.10.5 allows local users to gain privileges ...check
CVE-2015-3778bootp in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote ...check
CVE-2015-3795libxpc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows ...check
CVE-2015-3796The TRE library in Libc in Apple iOS before 8.4.1 and OS X before ...check
CVE-2015-3797The TRE library in Libc in Apple iOS before 8.4.1 and OS X before ...check
CVE-2015-3798The TRE library in Libc in Apple iOS before 8.4.1 and OS X before ...check
CVE-2015-3804FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows ...check
CVE-2015-3806Apple iOS before 8.4.1 and OS X before 10.10.5 allow local users to ...check
CVE-2015-3807libxml2 in Apple iOS before 8.4.1 and OS X before 10.10.5 allows ...check
CVE-2015-4029Cross-site scripting (XSS) vulnerability in the WebGUI in pfSense ...check
CVE-2015-4173Unquoted Windows search path vulnerability in the autorun value in ...check
CVE-2015-4277The global-configuration implementation on Cisco ASR 9000 devices with ...check
CVE-2015-4296Nexus Data Broker (NDB) on Cisco Nexus 3000 devices with software ...check
CVE-2015-4297Open redirect vulnerability in Cisco WebEx Node for Media Convergence ...check
CVE-2015-4298Cisco Unified Web and E-Mail Interaction Manager 9.0(2) and 11.0(1) ...check
CVE-2015-4299Cisco Unified Web and E-Mail Interaction Manager 9.0(2) improperly ...check
CVE-2015-4301Cisco NX-OS on Nexus 9000 devices 11.1(1c) allows remote authenticated ...check
CVE-2015-4302The web interface in Cisco FireSIGHT Management Center 5.3.1.4 allows ...check
CVE-2015-4303Cisco TelePresence Video Communication Server (VCS) X8.5.2 allows ...check
CVE-2015-4308The webGUI configuration-export feature in Cisco Edge Bluebird ...check
CVE-2015-4310Multiple cross-site scripting (XSS) vulnerabilities in Cisco Finesse ...check
CVE-2015-4314The System Snapshot feature in Cisco TelePresence Video Communication ...check
CVE-2015-4315The Call Policy Configuration page in Cisco TelePresence Video ...check
CVE-2015-4316The Mobile and Remote Access (MRA) endpoint-validation feature in ...check
CVE-2015-4317Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 ...check
CVE-2015-4318Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 ...check
CVE-2015-4319The password-change feature in the administrative web interface in ...check
CVE-2015-4320The Configuration Log File component in Cisco TelePresence Video ...check
CVE-2015-4321The Unicast Reverse Path Forwarding (uRPF) implementation in Cisco ...check
CVE-2015-4322Cisco Content Security Management Appliance (SMA) 8.3.6-039, 9.1.0-31, ...check
CVE-2015-4323Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware ...check
CVE-2015-4324Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware ...check
CVE-2015-4327The CLI in Cisco TelePresence Video Communication Server (VCS) ...check
CVE-2015-4328Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 ...check
CVE-2015-4329The administrator web interface in Cisco TelePresence Video ...check
CVE-2015-4331Cisco Prime Infrastructure (PI) 1.4(0.45) and earlier, when AAA ...check
CVE-2015-4425Directory traversal vulnerability in pimcore before build 3473 allows ...check
CVE-2015-4426SQL injection vulnerability in pimcore before build 3473 allows remote ...check
CVE-2015-4495The PDF reader in Mozilla Firefox before 39.0.3, Firefox ESR 38.x ...check if exploitable as well for pdf.js and needs an update
CVE-2015-4670Directory traversal vulnerability in the AjaxFileUpload control in ...check
CVE-2015-4744Unspecified vulnerability in the Oracle GlassFish Server component in ...check
CVE-2015-4754Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4764Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4774Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4775Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4776Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4777Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4778Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4779Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4780Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4781Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4782Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4783Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4784Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4785Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4786Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4787Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4788Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4789Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4790Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4938IBM WebSphere Application Server 7.x before 7.0.0.39, 8.0.x before ...check
CVE-2015-5367The HP lt4112 LTE/HSPA+ Gobi 4G module with firmware before ...check
CVE-2015-5368The HP lt4112 LTE/HSPA+ Gobi 4G module with firmware before ...check
CVE-2015-5402HP Systems Insight Manager (SIM) before 7.5.0, as used in HP Matrix ...check
CVE-2015-5403HP Systems Insight Manager (SIM) before 7.5.0, as used in HP Matrix ...check
CVE-2015-5404HP Systems Insight Manager (SIM) before 7.5.0, as used in HP Matrix ...check
CVE-2015-5405HP Systems Insight Manager (SIM) before 7.5.0, as used in HP Matrix ...check
CVE-2015-5406HP CentralView Fraud Risk Management 11.1, 11.2, and 11.3; CentralView ...check
CVE-2015-5407HP CentralView Fraud Risk Management 11.1, 11.2, and 11.3; CentralView ...check
CVE-2015-5408HP CentralView Fraud Risk Management 11.1, 11.2, and 11.3; CentralView ...check
CVE-2015-5409Buffer overflow in HP Version Control Repository Manager (VCRM) before ...check
CVE-2015-5410HP Version Control Repository Manager (VCRM) before 7.5.0 allows ...check
CVE-2015-5411HP Version Control Repository Manager (VCRM) before 7.5.0 allows ...check
CVE-2015-5412Cross-site request forgery (CSRF) vulnerability in HP Version Control ...check
CVE-2015-5413HP Version Control Repository Manager (VCRM) before 7.5.0 allows ...check
CVE-2015-5427HP Matrix Operating Environment before 7.5.0 allows remote attackers ...check
CVE-2015-5428HP Matrix Operating Environment before 7.5.0 allows remote attackers ...check
CVE-2015-5429HP Matrix Operating Environment before 7.5.0 allows remote attackers ...check
CVE-2015-5430HP Matrix Operating Environment before 7.5.0 allows remote attackers ...check
CVE-2015-5431HP Matrix Operating Environment before 7.5.0 allows remote ...check
CVE-2015-5432HP Virtual Connect Enterprise Manager (VCEM) SDK before 7.5.0, as used ...check
CVE-2015-5433HP Virtual Connect Enterprise Manager (VCEM) SDK before 7.5.0, as used ...check
CVE-2015-5474BitTorrent and uTorrent allow remote attackers to inject command line ...check
CVE-2015-5481Cross-site scripting (XSS) vulnerability in forms/panels.php in the GD ...check
CVE-2015-5482Directory traversal vulnerability in the GD bbPress Attachments plugin ...check
CVE-2015-5485Cross-site scripting (XSS) vulnerability in the Event Import page ...check
CVE-2015-5566Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 ...check
CVE-2015-5599Multiple SQL injection vulnerabilities in upload.php in the Powerplay ...check
CVE-2015-5681Unrestricted file upload vulnerability in upload.php in the Powerplay ...check
CVE-2015-5757libpthread in Apple iOS before 8.4.1 and OS X before 10.10.5 allows ...check
CVE-2015-5759WebKit in Apple iOS before 8.4.1 allows remote attackers to spoof ...check
CVE-2015-5776Libinfo in Apple iOS before 8.4.1 and OS X before 10.10.5 allows ...check
CVE-2015-5785Apple QuickTime before 7.7.8 allows remote attackers to execute ...check
CVE-2015-5786Apple QuickTime before 7.7.8 allows remote attackers to execute ...check
CVE-2015-6261Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 ...check
CVE-2015-6262Cross-site request forgery (CSRF) vulnerability in Cisco Prime ...check
CVE-2015-6265The CLI in Cisco Application Control Engine (ACE) 4700 A5 3.0 and ...check
CVE-2015-6524The LDAPLoginModule implementation the Java Authentication and ...check
CVE-2015-6526perf on ppc64 can loop forever getting userlevel stacktracescheck which ppc64 kernel support perf
CVE-2015-6662XML external entity (XXE) vulnerability in SAP NetWeaver Portal 7.4 ...check
CVE-2015-6663Cross-site scripting (XSS) vulnerability in the Client form in the ...check
CVE-2015-6664XML external entity (XXE) vulnerability in the application import ...check
CVE-2015-6727recheck after CVE assignment
CVE-2015-6728recheck after CVE assignment
CVE-2015-6729recheck after CVE assignment
CVE-2015-6730recheck after CVE assignment
CVE-2015-6731recheck after CVE assignment, in extension rather than mediawiki core
CVE-2015-6732recheck after CVE assignment, in extension rather than mediawiki core
CVE-2015-6733recheck after CVE assignment, in extension rather than mediawiki core
CVE-2015-6734recheck after CVE assignment, in extension rather than mediawiki core
CVE-2015-6735recheck after CVE assignment, in extension rather than mediawiki core
CVE-2015-6736recheck after CVE assignment, in extension rather than mediawiki core
CVE-2015-6737recheck after CVE assignment, in extension rather than mediawiki core
TEMP-0000000-9FAB83Kodi Cross-Site Request Forgerycheck kodi
TEMP-0000000-A2945BStack buffer overflow when printing bad bytes in Intel Hex objectscheck
TEMP-0760455-22ED59install-sh: insecure use of /tmpcheck other automake versions
TEMP-0781640-F16931Signature Bypass in several JSON Web Token Librariescheck (various libraries)

Search for package or bug name: Reporting problems