Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2017-2910An exploitable Out-of-bounds Write vulnerability exists in the xls_add ...check
CVE-2019-18351An issue was discovered in channels/chan_sip.c in Sangoma Asterisk thr ...check with MITRE if CVE-2019-18351 simply should be dropped
CVE-2020-3702u'Specifically timed and handcrafted traffic can cause internal errors ...check, it might affect src:linux as pointed out in https://lore.kernel.org/linux-wireless/CABvG-CVvPF++0vuGzCrBj8+s=Bcx1GwWfiW1_Somu_GVncTAcQ@mail.gmail.com/
CVE-2020-23914An issue was discovered in cpp-peglib through v0.1.12. A NULL pointer ...retroarch and salmon embed peglib, check if it's actually a security issue
CVE-2020-23915An issue was discovered in cpp-peglib through v0.1.12. peg::resolve_es ...retroarch and salmon embed peglib, check if it's actually a security issue
CVE-2020-24502Improper input validation in some Intel(R) Ethernet E810 Adapter drive ...checking, might affect src:linux, ice drivers
CVE-2020-24503Insufficient access control in some Intel(R) Ethernet E810 Adapter dri ...checking, might affect src:linux, ice drivers
CVE-2020-25646A flaw was found in Ansible Collection community.crypto. openssl_priva ...check
CVE-2020-27637The R programming language’s default package manager CRAN is aff ...check details
CVE-2020-35875An issue was discovered in the tokio-rustls crate before 0.13.1 for Ru ...check
CVE-2020-35922An issue was discovered in the mio crate before 0.7.6 for Rust. It has ...check
CVE-2021-3283HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task d ...check details
CVE-2021-3538check, probably introduced after the 1.2.0 release and only in a unreleased version.
CVE-2021-20204A heap memory corruption problem (use after free) can be triggered in ...check details
CVE-2021-20206An improper limitation of path name flaw was found in containernetwork ...check details, impact on docker.io?
CVE-2021-20220A flaw was found in Undertow. A regression in the fix for CVE-2020-106 ...CVE for incomplete fix for CVE-2020-10687 but not clear if affected any Debian released version
CVE-2021-20291A deadlock vulnerability was found in 'github.com/containers/storage' ...check golang-github-containers-buildah, docker.io, golang-github-containers-storage
CVE-2021-21391CKEditor 5 provides a WYSIWYG editing solution. This CVE affects the f ...check
CVE-2021-22206An issue has been discovered in GitLab affecting all versions starting ...check
CVE-2021-22208An issue has been discovered in GitLab affecting versions starting wit ...check
CVE-2021-22209An issue has been discovered in GitLab CE/EE affecting all versions st ...check
CVE-2021-22210An issue has been discovered in GitLab CE/EE affecting all versions st ...check
CVE-2021-22211An issue has been discovered in GitLab CE/EE affecting all versions st ...check
CVE-2021-26543The "gitDiff" function in Wayfair git-parse <=1.0.4 has a command i ...check
CVE-2021-27941Unconstrained Web access to the device's private encryption key in the ...check
CVE-2021-28128In Strapi through 3.6.0, the admin panel allows the changing of one's ...check
CVE-2021-29490Jellyfin is a free software media system that provides media from a de ...check
CVE-2021-29491Mixme is a library for recursive merging of Javascript objects. In Nod ...check
CVE-2021-29493Kennnyshiwa-cogs contains cogs for Red Discordbot. An RCE exploit has ...check
CVE-2021-31245omr-admin.py in openmptcprouter-vps-admin 0.57.3 and earlier compares ...check
CVE-2021-31347An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...check
CVE-2021-31348An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...check
CVE-2021-31598An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...check
CVE-2021-31828An SSRF issue in Open Distro for Elasticsearch (ODFE) before 1.13.1.0 ...check
CVE-2021-32090The dashboard component of StackLift LocalStack 0.12.6 allows attacker ...check
CVE-2021-32091A Cross-site scripting (XSS) vulnerability exists in StackLift LocalSt ...check
CVE-2021-32092A Cross-site scripting (XSS) vulnerability in the DocumentAction compo ...check
CVE-2021-32093The ConfigFileAction component of U.S. National Security Agency (NSA) ...check
CVE-2021-32094U.S. National Security Agency (NSA) Emissary 5.9.0 allows an authentic ...check
CVE-2021-32095U.S. National Security Agency (NSA) Emissary 5.9.0 allows an authentic ...check
CVE-2021-32096The ConsoleAction component of U.S. National Security Agency (NSA) Emi ...check
TEMP-0000000-DD73A0Unexpected database bindings via requests (follow-up)check php-illuminate-database and CVE assignment

Search for package or bug name: Reporting problems