Bugs with TODO items

Hide "check" TODOs

CVE-2011-1551SUSE openSUSE Factory assigns ownership of the /var/log/cobbler/ ...check after having entered the archive
CVE-2011-2844Google Chrome before 14.0.835.163 does not properly process MP3 files, ...check ffmpeg, http://src.chromium.org/viewvc/chrome?view=rev&revision=88382
CVE-2011-2896The LZW decompressor in the LWZReadByte function in giftoppm.c in the ...There's more: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2896
CVE-2011-4952check after having entered the archive
CVE-2011-4954check after having entered the archive
CVE-2011-5034Apache Geronimo 2.2.1 and earlier computes hash values for form ...check
CVE-2012-1978Multiple cross-site request forgery (CSRF) vulnerabilities in Simple ...check
CVE-2012-2092check after having entered the archive
CVE-2012-3243Cross-site scripting (XSS) vulnerability in the SEOgento plugin for ...check
CVE-2012-4901Cross-site scripting (XSS) vulnerability in Template CMS 2.1.1 and ...check
CVE-2012-4902Multiple cross-site request forgery (CSRF) vulnerabilities in Template ...check
CVE-2012-5849Multiple SQL injection vulnerabilities in ClipBucket 2.6 Revision 738 ...check
CVE-2013-1799Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before ...check if fix applied to Debian in 3.4.2-2 was incomplete
CVE-2014-0227java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in ...check
CVE-2014-1900Y-Cam camera models SD range YCB003, YCK003, and YCW003; S range ...check
CVE-2014-1901Y-Cam camera models SD range YCB003, YCK003, and YCW003; S range ...check
CVE-2014-1902Multiple cross-site scripting (XSS) vulnerabilities in Y-Cam camera ...check
CVE-2014-2886GKSu 2.0.2, when sudo-mode is not enabled, uses " (double quote) ...check
CVE-2014-3514activerecord/lib/active_record/relation/query_methods.rb in Active ...needs to check the others rails versions
CVE-2014-4776IBM License Metric Tool 9 before does not have an off ...check
CVE-2014-6211The command-line scripts in IBM WebSphere Commerce 6.0 through ...check
CVE-2014-7810security manager bypass via EL expressionscheck
CVE-2014-8171kernel: memcg: OOM handling DoScheck
CVE-2014-8172The filesystem implementation in the Linux kernel before 3.13 performs ...unclear, if given commit actually fixes the issue, see http://www.openwall.com/lists/oss-security/2015/03/09/3
CVE-2014-8383The InFocus IN3128HD projector with firmware 0.26 allows remote ...check
CVE-2014-8384The InFocus IN3128HD projector with firmware 0.26 does not restrict ...check
CVE-2014-8924The server in IBM License Metric Tool 7.2.2 before IF15 and 7.5 before ...check
CVE-2014-9204Stack-based buffer overflow in OPCTest.exe in Rockwell Automation ...check
CVE-2015-0189The cluster repository manager in IBM WebSphere MQ 7.5 before ...check
CVE-2015-0634Cross-site scripting (XSS) vulnerability in the administrative ...check
CVE-2015-0717Cisco Unified Communications Manager 10.0(1.10000.12) allows local ...check
CVE-2015-0723The wireless web-authentication subsystem on Cisco Wireless LAN ...check
CVE-2015-0724Multiple cross-site scripting (XSS) vulnerabilities in dncs ...check
CVE-2015-0726The web administration interface on Cisco Wireless LAN Controller ...check
CVE-2015-0727Cross-site scripting (XSS) vulnerability in the HTTP module in Cisco ...check
CVE-2015-0728Cross-site scripting (XSS) vulnerability in Cisco Access Control ...check
CVE-2015-0729Cross-site scripting (XSS) vulnerability in Cisco Secure Access ...check
CVE-2015-0730The SMB module in Cisco Wide Area Application Services (WAAS) 6.0(1) ...check
CVE-2015-0731The ISDN implementation in Cisco IOS 15.3S allows remote attackers to ...check
CVE-2015-0734Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Email ...check
CVE-2015-0735Cross-site request forgery (CSRF) vulnerability in Cisco Unified ...check
CVE-2015-0736Cross-site request forgery (CSRF) vulnerability in Cisco MediaSense ...check
CVE-2015-0738Cross-site scripting (XSS) vulnerability in the Web Tracking Report ...check
CVE-2015-0739The Lights-Out Management (LOM) implementation in Cisco FireSIGHT ...check
CVE-2015-0740Cross-site request forgery (CSRF) vulnerability in Cisco Unified ...check
CVE-2015-0741Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco ...check
CVE-2015-0742The Protocol Independent Multicast (PIM) application in Cisco Adaptive ...check
CVE-2015-0746The REST API in Cisco Access Control Server (ACS) 5.5(0.46.2) allows ...check
CVE-2015-0899input validation bypass in MultiPageValidatorcheck
CVE-2015-0915Cross-site scripting (XSS) vulnerability in RAKUS MailDealer 11.2.1 ...check
CVE-2015-1188The certificate verification functions in the HNDS service in Swisscom ...check
CVE-2015-1902Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and ...check
CVE-2015-1903Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and ...check
CVE-2015-1920IBM WebSphere Application Server (WAS) 6.1 through, 7.0 ...check
CVE-2015-2250Multiple cross-site scripting (XSS) vulnerabilities in concrete5 ...check
CVE-2015-2346XML external entity (XXE) in Huawei SEQ Analyst before ...check
CVE-2015-2667Untrusted search path vulnerability in GNS3 before 1.2.3 allows local ...check
CVE-2015-2778Quassel before 0.12-rc1 uses an incorrect data-type size when ...check affected versions
CVE-2015-2779Stack consumption vulnerability in the message splitting functionality ...check affected versions
CVE-2015-3036Stack-based buffer overflow in the run_init_sbus function in the ...check
CVE-2015-3141Multiple cross-site request forgery (CSRF) vulnerabilities in ...check
CVE-2015-3182crash on a sample capture file genbroad.snoopcheck
CVE-2015-3885Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier ...check still needed (list complete? affected versions?)
CVE-2015-3987Multiple unquoted Windows search path vulnerabilities in the (1) ...check
CVE-2015-3988Multiple cross-site scripting (XSS) vulnerabilities in OpenStack ...check
TEMP-0760455-22ED59install-sh: insecure use of /tmpcheck other automake versions
TEMP-0781640-F16931Signature Bypass in several JSON Web Token Librariescheck (various libraries)

Search for package or bug name: Reporting problems