Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2018-9389In ip6_append_data of ip6_output.c, there is a possible way to achieve ...check, potentially src:linux upstream and not Android specific
CVE-2022-23538github.com/sylabs/scs-library-client is the Go client for the Singular ...check details, might as well affect golang-github-apptainer-container-library-client
CVE-2023-26044react/http is an event-driven, streaming HTTP client and server implem ...check, is embedded inicinga-php-thirdparty, icingaweb2-module-reactbundle possibly affected
CVE-2023-49316In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively larg ...check if affecting ldap-account-manager or unused path
CVE-2023-50251php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked
CVE-2023-50252php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked
CVE-2023-50262Dompdf is an HTML to PDF converter for PHP. When parsing SVG images Do ...check sources embedding php-dompdf if affected
CVE-2024-22420JupyterLab is an extensible environment for interactive and reproducib ...check completeness, src:jupyter-notebook?
CVE-2024-22421JupyterLab is an extensible environment for interactive and reproducib ...check completeness, src:jupyter-notebook?
CVE-2024-25176LuaJIT through 2.1 has a stack-buffer-overflow in lj_strfmt_wfnum in l ...check
CVE-2024-25177LuaJIT through 2.1 has an unsinking of IR_FSTORE for NULL metatable, w ...check
CVE-2024-25178LuaJIT through 2.1 has an out-of-bounds read in the stack-overflow han ...check
CVE-2024-28180Package jose aims to provide an implementation of the Javascript Objec ...check completeness
CVE-2024-36348A transient execution vulnerability in some AMD processors may allow a ...check
CVE-2024-36349A transient execution vulnerability in some AMD processors may allow a ...check
CVE-2024-36350A transient execution vulnerability in some AMD processors may allow a ...check amd64-microcode update covering the updates
CVE-2024-36357A transient execution vulnerability in some AMD processors may allow a ...check amd64-microcode update covering the updates
CVE-2024-44905go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerabil ...check details
CVE-2025-4382A flaw was found in systems utilizing LUKS-encrypted disks with GRUB c ...double check if vulnerability only considered present after grub_is_cli_disabled is introduced
CVE-2025-5333Remote attackers can execute arbitrary code in the context of the vuln ...check
CVE-2025-6499A vulnerability classified as problematic was found in vstakhov libucl ...check
CVE-2025-21195Improper link resolution before file access ('link following') in Serv ...check
CVE-2025-23090With the aid of the diagnostics_channel utility, an event can be hooke ...Duplicate of CVE-2025-23083, verify it with CNA, CNA contacted for rejection
CVE-2025-24508Extraction of Account Connectivity Credentials (ACCs) from the IT Mana ...check
CVE-2025-27558IEEE P802.11-REVme D1.1 through D7.0 allows FragAttacks against mesh n ...check
CVE-2025-34075An authenticated virtual machine escape vulnerability exists in HashiC ...check
CVE-2025-45006Improper mstatus.SUM bit retention (non-zero) in Open-Source RISC-V Pr ...check
CVE-2025-46733OP-TEE is a Trusted Execution Environment (TEE) designed as companion ...check
CVE-2025-48172CHMLib through 2bef8d0, as used in SumatraPDF and other products, has ...check
CVE-2025-52887cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTT ...double check if only affects 0.21.0 version
CVE-2025-53547Helm is a package manager for Charts for Kubernetes. Prior to 3.18.4, ...check

Search for package or bug name: Reporting problems