Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2011-1551SUSE openSUSE Factory assigns ownership of the /var/log/cobbler/ ...check, /var/log/cobbler is set to cobbler:cobbler and daemon runs as root
CVE-2011-2844Google Chrome before 14.0.835.163 does not properly process MP3 files, ...check ffmpeg, http://src.chromium.org/viewvc/chrome?view=rev&revision=88382
CVE-2011-2896The LZW decompressor in the LWZReadByte function in giftoppm.c in the ...There's more: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2896
CVE-2011-5034Apache Geronimo 2.2.1 and earlier computes hash values for form ...check
CVE-2013-1799Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before ...check if fix applied to Debian in 3.4.2-2 was incomplete
CVE-2013-7440incorrect wildcard matching rulescheck affected versions
CVE-2014-3514activerecord/lib/active_record/relation/query_methods.rb in Active ...needs to check the others rails versions
CVE-2014-7912The get_option function in dhcp.c in dhcpcd before 6.2.0, as used in ...check
CVE-2014-7913The print_option function in dhcp-common.c in dhcpcd through 6.9.1, as ...check
CVE-2015-0732Cross-site scripting (XSS) vulnerability in Cisco AsyncOS on the Web ...check
CVE-2015-1009Schneider Electric InduSoft Web Studio before 7.1.3.5 Patch 5 and ...check
CVE-2015-1486The management console in Symantec Endpoint Protection Manager (SEPM) ...check
CVE-2015-1487The management console in Symantec Endpoint Protection Manager (SEPM) ...check
CVE-2015-1488An unspecified action handler in the management console in Symantec ...check
CVE-2015-1489The management console in Symantec Endpoint Protection Manager (SEPM) ...check
CVE-2015-1490Directory traversal vulnerability in the management console in ...check
CVE-2015-1491SQL injection vulnerability in the management console in Symantec ...check
CVE-2015-1492Untrusted search path vulnerability in the client in Symantec Endpoint ...check
CVE-2015-1904IBM Business Process Manager (BPM) 8.0.x through 8.0.1.3, 8.5.0 ...check
CVE-2015-2580Unspecified vulnerability in Oracle Sun Solaris 10 and 11.2 allows ...check
CVE-2015-2583Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2616Unspecified vulnerability in Oracle Sun Solaris 3.3 and 4.2 allows ...check
CVE-2015-2623Unspecified vulnerability in the Oracle GlassFish Server component in ...check
CVE-2015-2624Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2626Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2640Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2654Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2656Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-2778Quassel before 0.12-rc1 uses an incorrect data-type size when ...check affected versions
CVE-2015-2779Stack consumption vulnerability in the message splitting functionality ...check affected versions
CVE-2015-2847Honeywell Tuxedo Touch before 5.2.19.0_VA relies on client-side ...check
CVE-2015-2848Cross-site request forgery (CSRF) vulnerability in Honeywell Tuxedo ...check
CVE-2015-2870Cross-site scripting (XSS) vulnerability on Chiyu BF-630, BF-630W, and ...check
CVE-2015-2871Chiyu BF-660C fingerprint access-control devices allow remote ...check
CVE-2015-2890The BIOS implementation on Dell Latitude, OptiPlex, Precision Mobile ...check
CVE-2015-2973Multiple cross-site scripting (XSS) vulnerabilities in the Welcart ...check
CVE-2015-2974LEMON-S PHP Gazou BBS plus before 2.36 allows remote attackers to ...check
CVE-2015-2975Research Artisan Lite before 1.18 does not ensure that a user has ...check
CVE-2015-2976Multiple cross-site scripting (XSS) vulnerabilities in Research ...check
CVE-2015-2977Webservice-DIC yoyaku_v41 allows remote attackers to create arbitrary ...check
CVE-2015-2978Webservice-DIC yoyaku_v41 allows remote attackers to bypass ...check
CVE-2015-2979Webservice-DIC yoyaku_v41 allows remote attackers to execute arbitrary ...check
CVE-2015-3192check
CVE-2015-3277incorrect multi-keyword mode cipherstring parsingcheck
CVE-2015-3291double check for erliest introducing version
CVE-2015-3625The NVIDIA GPU driver for FreeBSD R352 before 352.09, 346 before ...check
CVE-2015-4286The web framework in Cisco UCS Central Software 1.3(0.99) allows ...check
CVE-2015-4287Cisco Firepower Extensible Operating System 1.1(1.86) on Firepower ...check
CVE-2015-4288The LDAP implementation on the Cisco Web Security Appliance (WSA) ...check
CVE-2015-4289Directory traversal vulnerability in Cisco AnyConnect Secure Mobility ...check
CVE-2015-4290The kernel extension in Cisco AnyConnect Secure Mobility Client ...check
CVE-2015-4291Cisco IOS XE 2.x before 2.4.3 and 2.5.x before 2.5.1 on ASR 1000 ...check
CVE-2015-4292Cross-site scripting (XSS) vulnerability in the management interface ...check
CVE-2015-4293The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier ...check
CVE-2015-4294Cross-site scripting (XSS) vulnerability in Cisco IM and Presence ...check
CVE-2015-4295The Prime Collaboration Deployment component in Cisco Unified ...check
CVE-2015-4744Unspecified vulnerability in the Oracle GlassFish Server component in ...check
CVE-2015-4754Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4764Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4770Unspecified vulnerability in Oracle Sun Solaris 10 and 11.2 allows ...check
CVE-2015-4773Unspecified vulnerability in the Hyperion Common Security component in ...check
CVE-2015-4774Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4775Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4776Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4777Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4778Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4779Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4780Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4781Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4782Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4783Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4784Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4785Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4786Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4787Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4788Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4789Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4790Unspecified vulnerability in the Data Store component in Oracle ...check
CVE-2015-4945Unspecified vulnerability in the IBM Maximo Anywhere application 7.5.1 ...check
CVE-2015-5084The Siemens SIMATIC WinCC Sm@rtClient and Sm@rtClient Lite ...check
CVE-2015-5157check, might need to be revised if erlier versions as 3.3 are as well affected
CVE-2015-5165QEMU leak of uninitialized heap memory in rtl8139 device modelcheck affected versions
CVE-2015-5395CSRFcheck
CVE-2015-5537The SSL layer of the HTTPS service in Siemens RuggedCom ROS before ...check
CVE-2015-5618Chiyu BF-630 and BF-630W fingerprint access-control devices allow ...check
TEMP-0000000-9C98EFdenial of servicecheck
TEMP-0000000-9FAB83Kodi Cross-Site Request Forgerycheck kodi
TEMP-0000000-A2945BStack buffer overflow when printing bad bytes in Intel Hex objectscheck
TEMP-0760455-22ED59install-sh: insecure use of /tmpcheck other automake versions
TEMP-0781640-F16931Signature Bypass in several JSON Web Token Librariescheck (various libraries)

Search for package or bug name: Reporting problems