Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2017-14451An exploitable out-of-bounds read vulnerability exists in libevm (Ethe ...check
CVE-2017-2910An exploitable Out-of-bounds Write vulnerability exists in the xls_add ...check
CVE-2020-11867Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USE ...check
CVE-2020-12313Insufficient control flow management in some Intel(R) PROSet/Wireless ...check details
CVE-2020-12317Improper buffer restriction in some Intel(R) PROSet/Wireless WiFi prod ...check details
CVE-2020-12319Insufficient control flow management in some Intel(R) PROSet/Wireless ...check details
CVE-2020-12321Improper buffer restriction in some Intel(R) Wireless Bluetooth(R) pro ...check, maybe fixed all already in firmware-nonfree/20201022 (and so next sid upload, but part of the fixes are in 20200918-1)
CVE-2020-15257containerd is an industry-standard container runtime and is available ...check details
CVE-2020-22278** DISPUTED ** phpMyAdmin through 5.0.2 allows CSV injection via Expor ...check, wait for validation of vulnerability status
CVE-2020-25265AppImage libappimage before 1.0.3 allows attackers to trigger an overw ...check
CVE-2020-25266AppImage appimaged before 1.0.3 does not properly check whether a down ...check
CVE-2020-25646A flaw was found in Ansible Collection community.crypto. openssl_priva ...check
CVE-2020-26244Python oic is a Python OpenID Connect implementation. In Python oic be ...check
CVE-2020-26246Pimcore is an open source digital experience platform. In Pimcore befo ...check
CVE-2020-26250OAuthenticator is an OAuth login mechanism for JupyterHub. In oauthent ...check
CVE-2020-28272Prototype pollution vulnerability in 'keyget' versions 1.0.0 through 2 ...check
CVE-2020-28273Prototype pollution vulnerability in 'set-in' versions 1.0.0 through 2 ...check
CVE-2020-29282SQL injection vulnerability in BloodX 1.0 allows attackers to bypass a ...check
CVE-2020-5423CAPI (Cloud Controller) versions prior to 1.101.0 are vulnerable to a ...check
CVE-2020-6018Valve's Game Networking Sockets prior to version v1.2.0 improperly han ...check
CVE-2020-7545A CWE-284:Improper Access Control vulnerability exists in EcoStruxure& ...check
CVE-2020-7546A CWE-79: Improper Neutralization of Input During Web Page Generation ...check
CVE-2020-7547A CWE-284: Improper Access Control vulnerability exists in EcoStruxure ...check
CVE-2020-7548A CWE-330 - Use of Insufficiently Random Values vulnerability exists i ...check
CVE-2020-7780This affects the package com.softwaremill.akka-http-session:core_2.13 ...check
CVE-2020-9114FusionCompute versions 6.3.0, 6.3.1, 6.5.0, 6.5.1 and 8.0.0 have a pri ...check
CVE-2020-9115ManageOne versions 6.5.1.1.B010, 6.5.1.1.B020, 6.5.1.1.B030, 6.5.1.1.B ...check

Search for package or bug name: Reporting problems