Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2018-16981stb stb_image.h 2.19, as used in catimg, Emscripten, and other product ...further check, stb_image.h in older version is embedded in src:catimg
CVE-2018-18653The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI Se ...check, this should be very Ubuntu specific, but it is introduced with the out-of-tree patch from the Lockdown patchset https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/cosmic/commit/?id=03c7de9e956395f3b36f86f89b62780ad9501eef and so possibly affect our kernel as well in some way.
CVE-2019-0145Buffer overflow in i40e driver for Intel(R) Ethernet 700 Series Contro ...check
CVE-2019-0146Resource leak in i40e driver for Intel(R) Ethernet 700 Series Controll ...check
CVE-2019-0147Insufficient input validation in i40e driver for Intel(R) Ethernet 700 ...check
CVE-2019-0148Resource leak in i40e driver for Intel(R) Ethernet 700 Series Controll ...check
CVE-2019-0149Insufficient input validation in i40e driver for Intel(R) Ethernet 700 ...check
CVE-2019-1010091tinymce 4.7.11, 4.7.12 is affected by: CWE-79: Improper Neutralization ...check
CVE-2019-10172A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libr ...check
CVE-2019-10219A vulnerability was found in Hibernate-Validator. The SafeHtml validat ...20190910: Asked for more information in #1738673. (apo)
CVE-2019-10766Pixie versions 1.0.x before 1.0.3, and 2.0.x before 2.0.2 allow SQL In ...check
CVE-2019-11089Insufficient input validation in Kernel Mode module for Intel(R) Graph ...check
CVE-2019-11112Memory corruption in Kernel Mode Driver in Intel(R) Graphics Driver be ...check
CVE-2019-11113Buffer overflow in Kernel Mode module for Intel(R) Graphics Driver bef ...check
CVE-2019-12107The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd ...check, might affect minidlna
CVE-2019-12409The 8.1.1 and 8.2.0 releases of Apache Solr contain an insecure settin ...check
CVE-2019-12422Apache Shiro before 1.4.2, when using the default "remember me" config ...check details on fix
CVE-2019-13581An issue was discovered in Marvell 88W8688 Wi-Fi firmware before versi ...check
CVE-2019-13582An issue was discovered in Marvell 88W8688 Wi-Fi firmware before versi ...check
CVE-2019-14493An issue was discovered in OpenCV before 4.1.1. There is a NULL pointe ...check if the old code though is really affected, might been introduced with the refactoring
CVE-2019-15486django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via js_ ...check, might actually only have been introduced in upstream v0.9.0 with commits around 9850b675e3d988341c05302df236a560f7985184
CVE-2019-17178HuffmanTree_makeFromFrequencies in lodepng.c in LodePNG through 2019-0 ...check
CVE-2019-17402Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in ...check
CVE-2019-6191A potential vulnerability in the discontinued LenovoPaper software ver ...check
CVE-2019-9282In skia, there is a possible out of bounds read due to a missing bound ...check
CVE-2019-9372In libskia, there is a possible crash due to a missing null check. Thi ...check
CVE-2019-9423In opencv calls that use libpng, there is a possible out of bounds wri ...check
CVE-2019-9946Cloud Native Computing Foundation (CNCF) CNI (Container Networking Int ...singularity-container seems to embed as well a copy of cni

Search for package or bug name: Reporting problems