| Bug | Description | Note |
|---|
| CVE-2016-10729 | An issue was discovered in Amanda 3.3.1. A user with backup privileges ... | check |
| CVE-2016-10730 | An issue was discovered in Amanda 3.3.1. A user with backup privileges ... | check |
| CVE-2017-11750 | The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and ... | check if patch simplifying patch applied in any suite |
| CVE-2017-18220 | The ReadOneJNGImage and ReadJNGImage functions in coders/png.c in ... | check, needs clarification, the issue is CloseBlob use-after-free |
| CVE-2017-18240 | The Gentoo app-admin/collectd package before 5.7.2-r1 sets the ... | check |
| CVE-2018-0673 | Directory traversal vulnerability in Cybozu Garoon 3.5.0 to 4.6.3 ... | check |
| CVE-2018-0679 | Cross-site scripting vulnerability in multiple FXC Inc. network ... | check |
| CVE-2018-0680 | Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, ... | check |
| CVE-2018-0681 | Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, ... | check |
| CVE-2018-0682 | Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, ... | check |
| CVE-2018-0683 | Buffer overflow in Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P ... | check |
| CVE-2018-0684 | Buffer overflow in Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P ... | check |
| CVE-2018-0685 | SQL injection vulnerability in the Denbun POP version V3.3P R4.0 and ... | check |
| CVE-2018-0686 | Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, ... | check |
| CVE-2018-0687 | Cross-site scripting vulnerability in Denbun by NEOJAPAN Inc. (Denbun ... | check |
| CVE-2018-0690 | An unvalidated software update vulnerability in Music Center for PC ... | check |
| CVE-2018-0691 | Multiple +Message Apps (Softbank +Message App for Android prior to ... | check |
| CVE-2018-0692 | Untrusted search path vulnerability in Baidu Browser Version ... | check |
| CVE-2018-0693 | Directory traversal vulnerability in FileZen V3.0.0 to V4.2.1 allows ... | check |
| CVE-2018-0694 | FileZen V3.0.0 to V4.2.1 allows remote attackers to execute arbitrary ... | check |
| CVE-2018-0695 | Cross-site scripting vulnerability in User-friendly SVN (USVN) Version ... | check |
| CVE-2018-0697 | Cross-site scripting vulnerability in Metabase version 0.29.3 and ... | check |
| CVE-2018-0699 | Cross-site scripting vulnerability in YukiWiki 2.1.3 and earlier ... | check |
| CVE-2018-0700 | YukiWiki 2.1.3 and earlier does not process a particular request ... | check |
| CVE-2018-0701 | BlueStacks App Player (BlueStacks App Player for Windows 3.0.0 to ... | check |
| CVE-2018-0765 | A denial of service vulnerability exists when .NET and .NET Core ... | check, can potentially affect mono packages |
| CVE-2018-11832 | In all android releases (Android for MSM, Firefox OS for MSM, QRD ... | check |
| CVE-2018-12466 | openSUSE openbuildservice before 9.2.4 allowed authenticated users to ... | check if introducing commit is right and fix status |
| CVE-2018-12467 | Authorized users of the openbuildservice before 2.9.4 could delete ... | check if introducing commit is right and fix status |
| CVE-2018-15708 | Snoopy 1.0 in Nagios XI 5.5.6 allows remote unauthenticated attackers ... | check |
| CVE-2018-16329 | In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the ... | check if though missing null checks are present as well in 6.x series |
| CVE-2018-1643 | The Installation Verification Tool of IBM WebSphere Application Server ... | check |
| CVE-2018-16856 | Private keys written to world-readable log files | check if Debian affected by the problem or Red Hat specific setup |
| CVE-2018-16981 | stb stb_image.h 2.19, as used in catimg, Emscripten, and other ... | further check, stb_image.h in older version is embedded in src:catimg |
| CVE-2018-17846 | The html package (aka x/net/html) through 2018-09-25 in Go mishandles ... | check, possibly introduced in later versions |
| CVE-2018-17847 | The html package (aka x/net/html) through 2018-09-25 in Go mishandles ... | check, possibly introduced in later versions |
| CVE-2018-17848 | The html package (aka x/net/html) through 2018-09-25 in Go mishandles ... | check, possibly introduced in later versions |
| CVE-2018-18653 | The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI ... | check, this should be very Ubuntu specific, but it is introduced with the out-of-tree patch from the Lockdown patchset https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/cosmic/commit/?id=03c7de9e956395f3b36f86f89b62780ad9501eef and so possibly affect our kernel as well in some way. |
| CVE-2018-19211 | In ncurses 6.1, there is a NULL pointer dereference at function ... | check |
| CVE-2018-19212 | In libwebm through 2018-10-03, there is an abort caused by ... | check |
| CVE-2018-19216 | Netwide Assembler (NASM) before 2.13.02 has a use-after-free in detoken ... | Something is not correct about this CVE, the upstream bug is 3392425, but commit references 3392525, and the former is really fixed in 2.13.02 but the latter is unfixed in 2.13.02 and even 2.13.03. |
| CVE-2018-19286 | The server in mubu note 2018-11-11 has XSS by configuring an account ... | check |
| CVE-2018-3621 | Insufficient input validation in the Intel Driver & Support Assistant ... | check |
| CVE-2018-3635 | Insufficient input validation in installer in Intel Rapid Store ... | check |
| CVE-2018-3697 | Improper directory permissions in the installer for the Intel Media ... | check |
| CVE-2018-3698 | Improper file permissions in the installer for the Intel Ready Mode ... | check |
| CVE-2018-3847 | Multiple exploitable buffer overflow vulnerabilities exist in image ... | double-check |
| CVE-2018-5360 | LibTIFF before 4.0.6 mishandles the reading of TIFF files, as ... | claimed to be fixed in latest libtiff, but no idication yet which changes adresses the issue |
| CVE-2018-5495 | All StorageGRID Webscale versions are susceptible to a vulnerability ... | check |
| CVE-2018-6260 | NVIDIA graphics driver contains a vulnerability that may allow access ... | check |
| CVE-2018-8416 | A tampering vulnerability exists when .NET Core improperly handles ... | check |
| CVE-2018-8529 | A remote code execution vulnerability exists when Team Foundation ... | check |
| CVE-2018-9246 | The PGObject::Util::DBAdmin module before 0.120.0 for Perl, as used in ... | check if set of commits complete |
| CVE-2018-9457 | In onCheckedChanged of BluetoothPairingController.java, there is a ... | check |
| CVE-2018-9521 | In parseMPEGCCData of NuPlayer2CCDecoder.cpp, there is a possible out ... | check |
| CVE-2018-9522 | In the serialization functions of StatsLogEventWrapper.java, there is ... | check |
| CVE-2018-9523 | In Parcel.writeMapInternal of Parcel.java, there is a possible parcel ... | check |
| CVE-2018-9524 | In functionality implemented in System UI, there are insufficient ... | check |
| CVE-2018-9525 | In the AndroidManifest.xml file defining the SliceBroadcastReceiver ... | check |
| CVE-2018-9526 | In device configuration data, there is an improperly configured ... | check |
| CVE-2018-9527 | In vorbis_book_decodev_set of codebook.c there is a possible out of ... | check |
| CVE-2018-9528 | In ixheaacd_over_lap_add1_armv8 of ixheaacd_overlap_add1.s there is a ... | check |
| CVE-2018-9529 | In ixheaacd_individual_ch_stream of ixheaacd_channel.c there is a ... | check |
| CVE-2018-9530 | In ixheaacd_tns_ar_filter_dec of ixheaacd_aac_tns.c there is a ... | check |
| CVE-2018-9531 | In AudioSpecificConfig_Parse of tpdec_asc.cpp, there is a possible ... | check |
| CVE-2018-9532 | In ixheaacd_extract_frame_info_ld of ixheaacd_env_extr.c there is a ... | check |
| CVE-2018-9533 | In ixheaacd_dec_data_init of ixheaacd_create.c there is a possible out ... | check |
| CVE-2018-9534 | In ixheaacd_mps_getstridemap of ixheaacd_mps_parse.c there is a ... | check |
| CVE-2018-9535 | In ixheaacd_reset_acelp_data_fix of ixheaacd_lpc.c there is a possible ... | check |
| CVE-2018-9536 | In numerous functions of libFDK, there are possible out of bounds ... | check |
| CVE-2018-9537 | In CAacDecoder_DecodeFrame of aacdecode.cpp, there is a possible ... | check |
| CVE-2018-9539 | In the ClearKey CAS descrambler, there is a possible use after free ... | check |
| CVE-2018-9540 | In avrc_ctrl_pars_vendor_rsp of avrc_pars_ct.c, there is a possible ... | check |
| CVE-2018-9541 | In avrc_pars_vendor_rsp of avcr_pars_ct.cc, there is a possible ... | check |
| CVE-2018-9542 | In avrc_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible out of ... | check |
| CVE-2018-9543 | In f2fs_format_utils.c WITH_BLKDISCARD is not defined, which may cause ... | check |
| CVE-2018-9544 | In register_app of btif_hd.cc, there is a possible out-of-bounds read ... | check |
| CVE-2018-9545 | In BTA_HdRegisterApp of bta_hd_api.cc, there is a possible ... | check |
| CVE-2018-9580 | A Elevation of privilege vulnerability in the HTC bootloader. Product: ... | check |