Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2018-0730This command injection vulnerability in File Station allows attackers ...check
CVE-2018-1002102Improper validation of URL redirection in the Kubernetes API server in ...check
CVE-2018-16981stb stb_image.h 2.19, as used in catimg, Emscripten, and other product ...further check, stb_image.h in older version is embedded in src:catimg
CVE-2018-18653The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI Se ...check, this should be very Ubuntu specific, but it is introduced with the out-of-tree patch from the Lockdown patchset https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/cosmic/commit/?id=03c7de9e956395f3b36f86f89b62780ad9501eef and so possibly affect our kernel as well in some way.
CVE-2018-7282The username parameter of the TITool PrintMonitor solution during the ...check
CVE-2019-0145Buffer overflow in i40e driver for Intel(R) Ethernet 700 Series Contro ...check
CVE-2019-0146Resource leak in i40e driver for Intel(R) Ethernet 700 Series Controll ...check
CVE-2019-0147Insufficient input validation in i40e driver for Intel(R) Ethernet 700 ...check
CVE-2019-0148Resource leak in i40e driver for Intel(R) Ethernet 700 Series Controll ...check
CVE-2019-0149Insufficient input validation in i40e driver for Intel(R) Ethernet 700 ...check
CVE-2019-1010091tinymce 4.7.11, 4.7.12 is affected by: CWE-79: Improper Neutralization ...check
CVE-2019-10219A vulnerability was found in Hibernate-Validator. The SafeHtml validat ...20190910: Asked for more information in #1738673. (apo)
CVE-2019-11089Insufficient input validation in Kernel Mode module for Intel(R) Graph ...check
CVE-2019-11112Memory corruption in Kernel Mode Driver in Intel(R) Graphics Driver be ...check
CVE-2019-11113Buffer overflow in Kernel Mode module for Intel(R) Graphics Driver bef ...check
CVE-2019-11554The Audible application through 2.34.0 for Android has Missing SSL Cer ...check
CVE-2019-11930An invalid free in mb_detect_order can cause the application to crash ...check
CVE-2019-11934Improper handling of close_notify alerts can result in an out-of-bound ...check
CVE-2019-11935Insufficient boundary checks when processing a string in mb_ereg_repla ...check
CVE-2019-11936Various APC functions accept keys containing null bytes as input, lead ...check
CVE-2019-11940In the course of decompressing HPACK inside the HTTP2 protocol, an une ...check
CVE-2019-12107The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd ...check, might affect minidlna
CVE-2019-12409The 8.1.1 and 8.2.0 releases of Apache Solr contain an insecure settin ...check
CVE-2019-12422Apache Shiro before 1.4.2, when using the default "remember me" config ...check details on fix
CVE-2019-14493An issue was discovered in OpenCV before 4.1.1. There is a NULL pointe ...check if the old code though is really affected, might been introduced with the refactoring
CVE-2019-14855WoT forgeries using SHA-1check for details, possibly more commits?
CVE-2019-15486django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via js_ ...check, might actually only have been introduced in upstream v0.9.0 with commits around 9850b675e3d988341c05302df236a560f7985184
CVE-2019-16769The serialize-javascript npm package before version 2.1.1 is vulnerabl ...check
CVE-2019-17178HuffmanTree_makeFromFrequencies in lodepng.c in LodePNG through 2019-0 ...check
CVE-2019-19590In radare2 through 4.0, there is an integer overflow for the variable ...check details
CVE-2019-19601OpenDetex 2.8.5 has a Buffer Overflow in TexOpen in detex.l because of ...check
CVE-2019-19624An out-of-bounds read was discovered in OpenCV before 4.1.1. Specifica ...check
CVE-2019-3690The chkstat tool in the permissions package followed symlinks before c ...check
CVE-2019-3990A User Enumeration flaw exists in Harbor. The issue is present in the ...check
CVE-2019-5076An exploitable out-of-bounds write vulnerability exists in the igcore1 ...check
CVE-2019-5083An exploitable out-of-bounds write vulnerability exists in the igcore1 ...check
CVE-2019-5098An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64 ...check
CVE-2019-7183This improper link resolution vulnerability allows remote attackers to ...check
CVE-2019-7184This cross-site scripting (XSS) vulnerability in Video Station allows ...check
CVE-2019-7185This cross-site scripting (XSS) vulnerability in Music Station allows ...check
CVE-2019-7192This improper access control vulnerability allows remote attackers to ...check
CVE-2019-7193This improper input validation vulnerability allows remote attackers t ...check
CVE-2019-7194This external control of file name or path vulnerability allows remote ...check
CVE-2019-7195This external control of file name or path vulnerability allows remote ...check
CVE-2019-7197A stored cross-site scripting (XSS) vulnerability has been reported to ...check
CVE-2019-7201An unquoted service path vulnerability is reported to affect the servi ...check
CVE-2019-9423In opencv calls that use libpng, there is a possible out of bounds wri ...check
CVE-2019-9946Cloud Native Computing Foundation (CNCF) CNI (Container Networking Int ...singularity-container seems to embed as well a copy of cni

Search for package or bug name: Reporting problems