Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2012-0952A heap buffer overflow was discovered in the device control ioctl in t ...check
CVE-2012-0953A race condition was discovered in the Linux drivers for Nvidia graphi ...check
CVE-2013-1866OpenSC OpenSC.tokend has an Arbitrary File Creation/Overwrite Vulnerab ...check
CVE-2014-1423signond before 8.57+15.04.20141127.1-0ubuntu1, as used in Ubuntu Touch ...check
CVE-2015-7946Information Exposure vulnerability in Unity8 as used on the Ubuntu pho ...check
CVE-2018-18405jQuery v2.2.2 allows XSS via a crafted onerror attribute of an IMG ele ...to be checked, unclear validity of the CVE
CVE-2018-18653The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI Se ...check, this should be very Ubuntu specific, but it is introduced with the out-of-tree patch from the Lockdown patchset https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/cosmic/commit/?id=03c7de9e956395f3b36f86f89b62780ad9501eef and so possibly affect our kernel as well in some way.
CVE-2018-5493ATTO FibreBridge 7500N firmware versions prior to 2.90 are susceptible ...check
CVE-2018-8956ntpd in ntp 4.2.8p10, 4.2.8p11, 4.2.8p12 and 4.2.8p13 allow remote att ...check
CVE-2019-0145Buffer overflow in i40e driver for Intel(R) Ethernet 700 Series Contro ...check
CVE-2019-0146Resource leak in i40e driver for Intel(R) Ethernet 700 Series Controll ...check
CVE-2019-0147Insufficient input validation in i40e driver for Intel(R) Ethernet 700 ...check
CVE-2019-0148Resource leak in i40e driver for Intel(R) Ethernet 700 Series Controll ...check
CVE-2019-0149Insufficient input validation in i40e driver for Intel(R) Ethernet 700 ...check
CVE-2019-1010091tinymce 4.7.11, 4.7.12 is affected by: CWE-79: Improper Neutralization ...check
CVE-2019-11480The pc-kernel snap build process hardcoded the --allow-insecure-reposi ...check
CVE-2019-11823CRLF injection vulnerability in Network Center in Synology Router Mana ...check
CVE-2019-11938Java Facebook Thrift servers would not error upon receiving messages d ...check
CVE-2019-12107The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd ...check, might affect minidlna
CVE-2019-12522An issue was discovered in Squid through 4.7. When Squid is run as roo ...check
CVE-2019-13021The administrative passwords for all versions of Bond JetSelect are st ...check
CVE-2019-13022Bond JetSelect (all versions) has an issue in the Java class (ENCtool. ...check
CVE-2019-13023An issue was discovered in all versions of Bond JetSelect. Within the ...check
CVE-2019-14493An issue was discovered in OpenCV before 4.1.1. There is a NULL pointe ...check if the old code though is really affected, might been introduced with the refactoring
CVE-2019-14871The REENT_CHECK macro (see newlib/libc/include/sys/reent.h) as used by ...picolibc might be affected, not yet in the archive
CVE-2019-14872The _dtoa_r function of the newlib libc library, prior to version 3.3. ...picolibc might be affected, not yet in the archive
CVE-2019-14873In the __multadd function of the newlib libc library, prior to version ...picolibc might be affected, not yet in the archive
CVE-2019-14877In the __mdiff function of the newlib libc library, all versions prior ...picolibc might be affected, not yet in the archive
CVE-2019-14878In the __d2b function of the newlib libc library, all versions prior t ...picolibc might be affected, not yet in the archive
CVE-2019-14900check with Red Hat, unspecific information apart the it affecting 4.3 to 5.4 inclusive
CVE-2019-17066In Ivanti WorkSpace Control before 10.4.40.0, a user can elevate right ...check
CVE-2019-17101Improper Neutralization of Special Elements used in a Command ('Comman ...check
CVE-2019-17178HuffmanTree_makeFromFrequencies in lodepng.c in LodePNG through 2019-0 ...check
CVE-2019-17558Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code ...check, whilst the advisory claims 5.0.0 upwards only the SolrParamResourceLoader might be of issue already earlier?
CVE-2019-19456A Reflected XSS was found in the server selection box inside the login ...check
CVE-2019-19721An off-by-one error in the DecodeBlock function in codec/sdl_image.c i ...check
CVE-2019-2388In affected Ops Manager versions there is an exposed http route was th ...check
CVE-2019-4209HCL Connections v5.5, v6.0, and v6.5 contains an open redirect vulnera ...check
CVE-2019-5614In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEAS ...check
CVE-2019-5618A-PDF WAV to MP3 version 1.0.0 suffers from an instance of CWE-121: St ...check
CVE-2019-5997Video Insight VMS 7.5 and earlier allows remote attackers to conduct c ...check
CVE-2019-7246An issue was discovered in atillk64.sys in AMD ATI Diagnostics Hardwar ...check
CVE-2019-7247An issue was discovered in AODDriver2.sys in AMD OverDrive. The vulner ...check
CVE-2019-9682Dahua devices with Build time before December 2019 use strong security ...check
CVE-2019-9946Cloud Native Computing Foundation (CNCF) CNI (Container Networking Int ...singularity-container seems to embed as well a copy of cni
CVE-2020-0094In setImageHeight and setImageWidth of ExifUtils.cpp, there is a possi ...check
CVE-2020-0100In onTransact of IHDCP.cpp, there is a possible out of bounds read due ...check
CVE-2020-0101In BnCrypto::onTransact of ICrypto.cpp, there is a possible informatio ...check
CVE-2020-0220In crus_afe_callback of msm-cirrus-playback.c, there is a possible out ...check
CVE-2020-0221Airbrush FW's scratch memory allocator is susceptible to numeric overf ...check
CVE-2020-0901A remote code execution vulnerability exists in Microsoft Excel softwa ...check
CVE-2020-0909A denial of service vulnerability exists when Hyper-V on a Windows Ser ...check
CVE-2020-0963An information disclosure vulnerability exists when the Windows GDI co ...check
CVE-2020-1010An elevation of privilege vulnerability exists in Windows Block Level ...check
CVE-2020-10135Legacy pairing and secure-connections pairing authentication in Blueto ...check, the CVE was specifically associated with kernel part
CVE-2020-1021An elevation of privilege vulnerability exists in Windows Error Report ...check
CVE-2020-1023A remote code execution vulnerability exists in Microsoft SharePoint w ...check
CVE-2020-1024A remote code execution vulnerability exists in Microsoft SharePoint w ...check
CVE-2020-1028A memory corruption vulnerability exists when Windows Media Foundation ...check
CVE-2020-1035A remote code execution vulnerability exists in the way that the VBScr ...check
CVE-2020-1037A remote code execution vulnerability exists in the way that the Chakr ...check
CVE-2020-1048An elevation of privilege vulnerability exists when the Windows Print ...check
CVE-2020-1051A remote code execution vulnerability exists when the Windows Jet Data ...check
CVE-2020-1054An elevation of privilege vulnerability exists in Windows when the Win ...check
CVE-2020-1055A cross-site-scripting (XSS) vulnerability exists when Active Director ...check
CVE-2020-1056An elevation of privilege vulnerability exists when Microsoft Edge doe ...check
CVE-2020-1058A remote code execution vulnerability exists in the way that the VBScr ...check
CVE-2020-1059A spoofing vulnerability exists when Microsoft Edge does not properly ...check
CVE-2020-1060A remote code execution vulnerability exists in the way that the VBScr ...check
CVE-2020-1061A remote code execution vulnerability exists in the way that the Micro ...check
CVE-2020-1062A remote code execution vulnerability exists when Internet Explorer im ...check
CVE-2020-1063A cross site scripting vulnerability exists when Microsoft Dynamics 36 ...check
CVE-2020-1064A remote code execution vulnerability exists in the way that the MSHTM ...check
CVE-2020-1065A remote code execution vulnerability exists in the way that the Chakr ...check
CVE-2020-1066An elevation of privilege vulnerability exists in .NET Framework which ...check
CVE-2020-1067A remote code execution vulnerability exists in the way that Windows h ...check
CVE-2020-1068An elevation of privilege vulnerability exists in Windows Media Servic ...check
CVE-2020-10688check details, not much information provided by Red Hat.
CVE-2020-1069A remote code execution vulnerability exists in Microsoft SharePoint S ...check
CVE-2020-1070An elevation of privilege vulnerability exists when the Windows Print ...check
CVE-2020-1071An elevation of privilege vulnerability exists when Windows improperly ...check
CVE-2020-10719check, no details on Red Hat bugreport
CVE-2020-1072An information disclosure vulnerability exists when the Windows kernel ...check
CVE-2020-1075An information disclosure vulnerability exists when Windows Subsystem ...check
CVE-2020-1076A denial of service vulnerability exists when Windows improperly handl ...check
CVE-2020-1077An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1078An elevation of privilege vulnerability exists in Windows Installer be ...check
CVE-2020-1079An elevation of privilege vulnerability exists when the Windows fails ...check
CVE-2020-10809An issue was discovered in HDF5 through 1.12.0. A heap-based buffer ov ...check details
CVE-2020-1081An elevation of privilege vulnerability exists when the Windows Printe ...check
CVE-2020-10810An issue was discovered in HDF5 through 1.12.0. A NULL pointer derefer ...check details
CVE-2020-10811An issue was discovered in HDF5 through 1.12.0. A heap-based buffer ov ...check details
CVE-2020-10812An issue was discovered in HDF5 through 1.12.0. A NULL pointer derefer ...check details
CVE-2020-1082An elevation of privilege vulnerability exists in Windows Error Report ...check
CVE-2020-1084A Denial Of Service vulnerability exists when Connected User Experienc ...check
CVE-2020-1086An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1087An elevation of privilege vulnerability exists in the way that the Win ...check
CVE-2020-1088An elevation of privilege vulnerability exists in Windows Error Report ...check
CVE-2020-1090An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1092A remote code execution vulnerability exists when Internet Explorer im ...check
CVE-2020-1093A remote code execution vulnerability exists in the way that the VBScr ...check
CVE-2020-10933An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6 ...Verify the relevant introducing commits for the issue.
CVE-2020-1096A remote code execution vulnerability exists when Microsoft Edge PDF R ...check
CVE-2020-1099A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...check
CVE-2020-1100A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...check
CVE-2020-1101A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...check
CVE-2020-1102A remote code execution vulnerability exists in Microsoft SharePoint w ...check
CVE-2020-1103An information disclosure vulnerability exists where certain modes of ...check
CVE-2020-1104A spoofing vulnerability exists when Microsoft SharePoint Server does ...check
CVE-2020-1105A spoofing vulnerability exists when Microsoft SharePoint Server does ...check
CVE-2020-1106A cross-site-scripting (XSS) vulnerability exists when Microsoft Share ...check
CVE-2020-1107A spoofing vulnerability exists when Microsoft SharePoint Server does ...check
CVE-2020-11076In Puma (RubyGem) before 4.3.4 and 3.12.5, an attacker could smuggle a ...check
CVE-2020-11077In Puma (RubyGem) before 4.3.5 and 3.12.6, a client could smuggle a re ...check
CVE-2020-11078In httplib2 before version 0.18.0, an attacker controlling unescaped p ...check
CVE-2020-1109An elevation of privilege vulnerability exists when the Windows Update ...check
CVE-2020-1110An elevation of privilege vulnerability exists when the Windows Update ...check
CVE-2020-1111An elevation of privilege vulnerability exists when Windows improperly ...check
CVE-2020-1112An elevation of privilege vulnerability exists when the Windows Backgr ...check
CVE-2020-1113A security feature bypass vulnerability exists in Microsoft Windows wh ...check
CVE-2020-1114An elevation of privilege vulnerability exists when the Windows kernel ...check
CVE-2020-1116An information disclosure vulnerability exists when the Windows Client ...check
CVE-2020-1117A remote code execution vulnerability exists in the way that the Color ...check
CVE-2020-1118A denial of service vulnerability exists in the Windows implementation ...check
CVE-2020-1121An elevation of privilege vulnerability exists when Windows improperly ...check
CVE-2020-1123A denial of service vulnerability exists when Connected User Experienc ...check
CVE-2020-1124An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1125An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1126A memory corruption vulnerability exists when Windows Media Foundation ...check
CVE-2020-1131An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1132An elevation of privilege vulnerability exists when Windows Error Repo ...check
CVE-2020-1134An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1135An elevation of privilege vulnerability exists when the Windows Graphi ...check
CVE-2020-1136A memory corruption vulnerability exists when Windows Media Foundation ...check
CVE-2020-1137An elevation of privilege vulnerability exists in the way the Windows ...check
CVE-2020-1138An elevation of privilege vulnerability exists when the Storage Servic ...check
CVE-2020-1139An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1140An elevation of privilege vulnerability exists when DirectX improperly ...check
CVE-2020-1141An information disclosure vulnerability exists in the way that the Win ...check
CVE-2020-1142An elevation of privilege vulnerability exists in the way that the Win ...check
CVE-2020-1143An elevation of privilege vulnerability exists in Windows when the Win ...check
CVE-2020-1144An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1145An information disclosure vulnerability exists in the way that the Win ...check
CVE-2020-1149An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1150A memory corruption vulnerability exists when Windows Media Foundation ...check
CVE-2020-1151An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1153A remote code execution vulnerability exists in the way that Microsoft ...check
CVE-2020-1154An elevation of privilege vulnerability exists when the Windows Common ...check
CVE-2020-1155An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-11558An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by ...check
CVE-2020-1156An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1157An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1158An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1164An elevation of privilege vulnerability exists when the Windows Runtim ...check
CVE-2020-1165An elevation of privilege vulnerability exists when Windows improperly ...check
CVE-2020-1166An elevation of privilege vulnerability exists when Windows improperly ...check
CVE-2020-1171A remote code execution vulnerability exists in Visual Studio Code whe ...check
CVE-2020-11724An issue was discovered in OpenResty before 1.15.8.4. ngx_http_lua_sub ...check details (patch applies to src:ngnix, but check if issue is specific to OpenResty before 1.15.8.4)
CVE-2020-1173A spoofing vulnerability exists in Microsoft Power BI Report Server in ...check
CVE-2020-1174A remote code execution vulnerability exists when the Windows Jet Data ...check
CVE-2020-1175A remote code execution vulnerability exists when the Windows Jet Data ...check
CVE-2020-11758An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bo ...check isolated commit to fix issue
CVE-2020-11759An issue was discovered in OpenEXR before 2.4.1. Because of integer ov ...check completeness for upstream commits to cover CVE-2020-11759
CVE-2020-1176A remote code execution vulnerability exists when the Windows Jet Data ...check
CVE-2020-11763An issue was discovered in OpenEXR before 2.4.1. There is an std::vect ...check fixing commit
CVE-2020-1179An information disclosure vulnerability exists when the Windows GDI co ...check
CVE-2020-1184An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1185An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1186An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1187An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1188An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1189An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1190An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1191An elevation of privilege vulnerability exists when the Windows State ...check
CVE-2020-1192A remote code execution vulnerability exists in Visual Studio Code whe ...check
CVE-2020-1195An elevation of privilege vulnerability exists in Microsoft Edge (Chro ...check
CVE-2020-13249libmariadb/mariadb_lib.c in MariaDB Connector/C before 3.1.8 does not ...check
CVE-2020-13433Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php h ...check
CVE-2020-13434SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf ...check
CVE-2020-13435SQLite through 3.32.0 has a segmentation fault in sqlite3ExprCodeTarge ...check
CVE-2020-13438ffjpeg through 2020-02-24 has an invalid read in jfif_encode in jfif.c ...check
CVE-2020-13439ffjpeg through 2020-02-24 has a heap-based buffer over-read in jfif_de ...check
CVE-2020-13440ffjpeg through 2020-02-24 has an invalid write in bmp_load in bmp.c. ...check
CVE-2020-1799E6878-370 with versions of 10.0.3.1(H557SP27C233), 10.0.3.1(H563SP1C00 ...check
CVE-2020-1897A use-after-free is possible due to an error in lifetime management in ...check
CVE-2020-2024An improper link resolution vulnerability affects Kata Containers vers ...check
CVE-2020-2025Kata Containers before 1.11.0 on Cloud Hypervisor persists guest files ...check
CVE-2020-3184A vulnerability in the web-based management interface of Cisco Prime C ...check
CVE-2020-3272A vulnerability in the DHCP server of Cisco Prime Network Registrar co ...check
CVE-2020-3280A vulnerability in the Java Remote Management Interface of Cisco Unifi ...check
CVE-2020-3314A vulnerability in the file scan process of Cisco AMP for Endpoints Ma ...check
CVE-2020-3343A vulnerability in Cisco AMP for Endpoints Linux Connector Software an ...check
CVE-2020-3344A vulnerability in Cisco AMP for Endpoints Linux Connector Software an ...check
CVE-2020-3956VMware Cloud Director 10.0.x before 10.0.0.2, 9.7.0.x before 9.7.0.5, ...check
CVE-2020-5529HtmlUnit prior to 2.37.0 contains code execution vulnerabilities. Html ...check details, might affect jenkins-htmlunit
CVE-2020-5537Cybozu Desktop for Windows 2.0.23 to 2.2.40 allows remote code executi ...check
CVE-2020-5579SQL injection vulnerability in the Paid Memberships versions prior to ...check
CVE-2020-5752Relative path traversal in Druva inSync Windows Client 6.6.3 allows a ...check
CVE-2020-5753Signal Private Messenger Android v4.59.0 and up and iOS v3.8.1.5 and u ...check
CVE-2020-6091An exploitable authentication bypass vulnerability exists in the ESPON ...check
CVE-2020-6616Some Broadcom chips mishandle Bluetooth random-number generation becau ...check
CVE-2020-7137A validation issue in HPE Superdome Flex's RMC component may allow loc ...check
CVE-2020-7138Potential remote code execution security vulnerabilities have been ide ...check
CVE-2020-7139Potential remote access security vulnerabilities have been identified ...check
CVE-2020-7646curlrequest through 1.0.1 allows execution of arbitrary commands.It is ...check
CVE-2020-7647All versions before 1.6.7 and all versions after 2.0.0 inclusive and b ...check
CVE-2020-7655netius prior to 1.17.58 is vulnerable to HTTP Request Smuggling. HTTP ...check
CVE-2020-7656jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load ...check
CVE-2020-7658meinheld prior to 1.0.2 is vulnerable to HTTP Request Smuggling. HTTP ...check
CVE-2020-7808In RAONWIZ K Upload v2018.0.2.51 and prior, automatic update processin ...check
CVE-2020-7813Ezhttptrans.ocx ActiveX Control in Kaoni ezHTTPTrans 1.0.0.70 and prio ...check
CVE-2020-7919Go before 1.12.16 and 1.13.x before 1.13.7 (and the crypto/cryptobyte ...check older versions than golang-1.11
CVE-2020-7921Improper serialization of internal state in the authorization subsyste ...check
CVE-2020-8020A Improper Neutralization of Input During Web Page Generation vulnerab ...check
CVE-2020-8021a Improper Access Control vulnerability in of Open Build Service allow ...check
CVE-2020-8034Gollem before 3.0.13, as used in Horde Groupware Webmail Edition 5.2.2 ...check
CVE-2020-8035The image view functionality in Horde Groupware Webmail Edition before ...check
CVE-2020-8149Lack of output sanitization allowed an attack to execute arbitrary she ...check
CVE-2020-8151There is a possible information disclosure issue in Active Resource &l ...check
CVE-2020-8572Element OS prior to version 12.0 and Element HealthTools prior to vers ...check
CVE-2020-8789Composr 10.0.30 allows Persistent XSS via a Usergroup name under the S ...check
CVE-2020-9045During installation or upgrade to Software House C•CURE 9000 v2. ...check
CVE-2020-9069There is an information leakage vulnerability in some Huawei products. ...check
CVE-2020-9409The administrative UI component of TIBCO Software Inc.'s TIBCO JasperR ...check
CVE-2020-9410The report generator component of TIBCO Software Inc.'s TIBCO JasperRe ...check
CVE-2020-9753Whale Browser Installer before 1.2.0.5 versions don't support signatur ...check

Search for package or bug name: Reporting problems