Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2018-9383In asn1_ber_decoder of asn1_decoder.c, there is a possible out of boun ...check
CVE-2018-9389In ip6_append_data of ip6_output.c, there is a possible way to achieve ...check, potentially src:linux upstream and not Android specific
CVE-2021-41527An error related to the 2-factor authorization (2FA) on the RISC Platf ...check
CVE-2021-41528An error when handling authorization related to the import / export in ...check
CVE-2022-23538github.com/sylabs/scs-library-client is the Go client for the Singular ...check details, might as well affect golang-github-apptainer-container-library-client
CVE-2023-24010An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 ...check
CVE-2023-24011An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 ...check
CVE-2023-24012An attacker can arbitrarily craft malicious DDS Participants (or ROS 2 ...check
CVE-2023-26044react/http is an event-driven, streaming HTTP client and server implem ...check, is embedded inicinga-php-thirdparty, icingaweb2-module-reactbundle possibly affected
CVE-2023-49316In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively larg ...check if affecting ldap-account-manager or unused path
CVE-2023-50251php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked
CVE-2023-50252php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked
CVE-2023-50262Dompdf is an HTML to PDF converter for PHP. When parsing SVG images Do ...check sources embedding php-dompdf if affected
CVE-2024-10383An issue has been discovered in the gitlab-web-ide-vscode-fork compone ...check
CVE-2024-10395No proper validation of the length of user input in http_server_get_co ...check
CVE-2024-10649wandb/openui latest commit c945bb859979659add5f490a874140ad17c56a5d co ...check
CVE-2024-11831A flaw was found in npm-serialize-javascript. The vulnerability occurs ...check
CVE-2024-22420JupyterLab is an extensible environment for interactive and reproducib ...check completeness, src:jupyter-notebook?
CVE-2024-22421JupyterLab is an extensible environment for interactive and reproducib ...check completeness, src:jupyter-notebook?
CVE-2024-24911In rare scenarios, the cpca process on the Security Management Server ...check
CVE-2024-25883The mstatus register in RSD commit 3d13a updates incorrectly, leading ...check
CVE-2024-28180Package jose aims to provide an implementation of the Javascript Objec ...check completeness
CVE-2024-43097In resizeToAtLeast of SkRegion.cpp, there is a possible out of bounds ...check
CVE-2024-43767In prepare_to_draw_into_mask of SkBlurMaskFilterImpl.cpp, there is a p ...check
CVE-2024-43768In skia_alloc_func of SkDeflate.cpp, there is a possible out of bounds ...check
CVE-2024-55456lunasvg v3.0.1 was discovered to contain a segmentation violation via ...check
CVE-2024-56946Denial of service in DNS-over-QUIC in Technitium DNS Server <= v13.2.2 ...check
CVE-2024-57098Moss v0.1.3 version has an SQL injection vulnerability that allows att ...check
CVE-2024-57177A host header injection vulnerability exists in the NPM package of per ...check
CVE-2024-57392Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remo ...check
CVE-2024-57520Insecure Permissions vulnerability in asterisk v22 allows a remote att ...check
CVE-2024-57672An issue in floodlight v1.2 allows a local attacker to cause a denial ...check
CVE-2024-57673An issue in floodlight v1.2 allows a local attacker to cause a denial ...check
CVE-2024-57699A security issue was found in Netplex Json-smart 2.5.0 through 2.5.1. ...check
CVE-2025-0982Sandbox escape in the JavaScript Task feature of Google Cloud Applicat ...check
CVE-2025-1072A Denial of Service (DoS) issue has been discovered in GitLab CE/EE af ...check
CVE-2025-23090With the aid of the diagnostics_channel utility, an event can be hooke ...check, seems to be duplicate of CVE-2025-23083, verify it with CNA
CVE-2025-24370Django-Unicorn adds modern reactive component functionality to Django ...check
CVE-2025-24981MDC is a tool to take regular Markdown and write documents interacting ...check
CVE-2025-25186Net::IMAP implements Internet Message Access Protocol (IMAP) client fu ...check

Search for package or bug name: Reporting problems