Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2009-5144vulnerability involving the directory contextcheck, the patch from http://issues.outoforder.cc/view.php?id=93 is applied in 0.5.6 upstream
CVE-2010-5321v4l: videobuf: hotfix a bug on multiple calls to mmap()check
CVE-2011-2844Google Chrome before 14.0.835.163 does not properly process MP3 files, ...check ffmpeg, http://src.chromium.org/viewvc/chrome?view=rev&revision=88382
CVE-2011-2896The LZW decompressor in the LWZReadByte function in giftoppm.c in the ...There's more: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2896
CVE-2011-4367Multiple directory traversal vulnerabilities in MyFaces JavaServer ...check
CVE-2011-5034Apache Geronimo 2.2.1 and earlier computes hash values for form ...check
CVE-2013-1799Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before ...check if fix applied to Debian in 3.4.2-2 was incomplete
CVE-2014-0227java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in ...check
CVE-2014-2188The Authentication Proxy feature in Cisco IOS does not properly handle ...check
CVE-2014-2886GKSu 2.0.2, when sudo-mode is not enabled, uses " (double quote) ...check
CVE-2014-3514activerecord/lib/active_record/relation/query_methods.rb in Active ...needs to check the others rails versions
CVE-2014-5286The ActiveMatrix Policy Manager Authentication module in TIBCO ...check
CVE-2014-6113Cross-site scripting (XSS) vulnerability in the Web Reports component ...check
CVE-2014-6115IBM Rational Insight 1.1.1.5 allows remote attackers to bypass ...check
CVE-2014-6139The Search REST API in IBM Business Process Manager 8.0.1.3, 8.5.0.1, ...check
CVE-2014-6147IBM Flex System Manager (FSM) 1.1.x.x, 1.2.0.x, 1.2.1.x, 1.3.0.0, ...check
CVE-2014-6154Directory traversal vulnerability in IBM Optim Performance Manager for ...check
CVE-2014-6184Stack-based buffer overflow in dsmtca in the client in IBM Tivoli ...check
CVE-2014-6194Directory traversal vulnerability in an unspecified web form in IBM ...check
CVE-2014-6195The (1) Java GUI and (2) Web GUI components in the IBM Tivoli Storage ...check
CVE-2014-6301Multiple cross-site scripting (XSS) vulnerabilities in the ...check
CVE-2014-6302The Monitoring Administration pages in PNMsoft Sequence Kinetics ...check
CVE-2014-6303The Monitoring Administration pages in PNMsoft Sequence Kinetics ...check
CVE-2014-6304The Form Controls CSS file in PNMsoft Sequence Kinetics before 7.7 ...check
CVE-2014-6440Heap Overflow in VLC Transcode Modulecheck
CVE-2014-7850Cross-site scripting (XSS) vulnerability in the Web UI in FreeIPA 4.x ...check (possibly unimportant severity if we don't include WebUI part and only have vulnerable code)
CVE-2014-7883HP Universal CMDB (UCMDB) Probe 9.05, 10.01, and 10.11 enables the ...check
CVE-2014-7896Multiple cross-site scripting (XSS) vulnerabilities in HP XP P9000 ...check
CVE-2014-7922The GoogleAuthUtil.getToken method in the Google Play services SDK ...check
CVE-2014-8487Kony Management (aka Enterprise Mobile Management or EMM) 1.2 and ...check
CVE-2014-8617Cross-site scripting (XSS) vulnerability in the Web Action Quarantine ...check
CVE-2014-8921The IBM Notes Traveler Companion application 1.0 and 1.1 before ...check
CVE-2014-9282Directory traversal vulnerability in the Speed Root Explorer ...check
CVE-2014-9283The BestWebSoft Captcha plugin before 4.0.7 for WordPress allows ...check
CVE-2014-9685Multiple cross-site scripting (XSS) vulnerabilities in Vanilla Forums ...check
CVE-2014-9687eCryptfs key wrapping help to crack user passwordcheck
CVE-2015-0167Cross-site scripting (XSS) vulnerability in textAngular-sanitize.js in ...check
CVE-2015-0209check
CVE-2015-0271OpenStack dashboard: log file arbitrary file retrievalcheck, duplicate bug from Red Hat Bugzilla has restricted access
CVE-2015-0288check
CVE-2015-0885checkpw 1.02 and earlier allows remote attackers to cause a denial of ...check
CVE-2015-0887npppd in the PPP Access Concentrator (PPPAC) on SEIL SEIL/x86 Fuji ...check
CVE-2015-0891Cross-site scripting (XSS) vulnerability in Maroyaka CGI Maroyaka ...check
CVE-2015-0892Cross-site scripting (XSS) vulnerability in Maroyaka CGI Maroyaka ...check
CVE-2015-0893Cross-site scripting (XSS) vulnerability in Maroyaka CGI Maroyaka ...check
CVE-2015-1474Multiple integer overflows in the GraphicBuffer::unflatten function in ...check
CVE-2015-2044Information leak via internal x86 system device emulationcheck
CVE-2015-2045Information leak through version information hypercallcheck
CVE-2015-2209DLGuard 4.5 allows remote attackers to obtain the installation path ...check
TEMP-0000000-151D2Bglibc scanf implementation crashes on certain inputscheck
TEMP-0000000-3D1157information leak in event device handlingcheck in which version the issue was introduced exactly
TEMP-0000000-8732AEActiveModel::Name to_json Call Infinite Loop Remote DoSceck and add all affected source packages
TEMP-0760455-22ED59install-sh: insecure use of /tmpcheck other automake versions
TEMP-0779587-F20A8A_IO_wstr_overflow integer overflowcheck

Search for package or bug name: Reporting problems