Bugs with TODO items

Show "check" TODOs

BugDescriptionNote
CVE-2019-18351An issue was discovered in channels/chan_sip.c in Sangoma Asterisk thr ...check with MITRE if CVE-2019-18351 simply should be dropped
CVE-2019-25026Redmine before 3.4.13 and 4.x before 4.0.6 mishandles markup data duri ...check fixing commit, fixed in 4.0.6
CVE-2020-14409SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow ...check libsdl1.2
CVE-2020-15260PJSIP is a free and open source multimedia communication library writt ...check, might affect sc:ring
CVE-2020-24502Improper input validation in some Intel(R) Ethernet E810 Adapter drive ...checking, might affect src:linux, ice drivers
CVE-2020-24503Insufficient access control in some Intel(R) Ethernet E810 Adapter dri ...checking, might affect src:linux, ice drivers
CVE-2020-24504Uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapt ...checking, might affect src:linux, ice drivers
CVE-2020-24995Buffer overflow vulnerability in sniff_channel_order function in aacde ...check if issue introduced only when introducign support for Support for 22.2 / channel_config 13
CVE-2020-25715check details
CVE-2020-27637The R programming language’s default package manager CRAN is aff ...check details
CVE-2020-36306Redmine before 4.0.7 and 4.1.x before 4.1.1 has XSS via the back_url f ...check fixing commit, fixed in 4.0.7
CVE-2020-36307Redmine before 4.0.7 and 4.1.x before 4.1.1 has stored XSS via textile ...check fixing commit, fixed in 4.0.7
CVE-2020-36308Redmine before 4.0.7 and 4.1.x before 4.1.1 allows attackers to discov ...check fixing commit, fixed in 4.0.7
CVE-2020-3702u'Specifically timed and handcrafted traffic can cause internal errors ...check, it might affect src:linux as pointed out in https://lore.kernel.org/linux-wireless/CABvG-CVvPF++0vuGzCrBj8+s=Bcx1GwWfiW1_Somu_GVncTAcQ@mail.gmail.com/
CVE-2021-20206An improper limitation of path name flaw was found in containernetwork ...check details, impact on docker.io?
CVE-2021-20220A flaw was found in Undertow. A regression in the fix for CVE-2020-106 ...CVE for incomplete fix for CVE-2020-10687 but not clear if affected any Debian released version
CVE-2021-20291A deadlock vulnerability was found in 'github.com/containers/storage' ...check golang-github-containers-buildah, docker.io, golang-github-containers-storage
CVE-2021-20310RESERVEDCheck whether specific to IM7
CVE-2021-20311RESERVEDCheck whether specific to IM7
CVE-2021-20312RESERVEDCheck whether specific to IM7
CVE-2021-21375PJSIP is a free and open source multimedia communication library writt ...check, might affect sc:ring
CVE-2021-30163Redmine before 4.0.8 and 4.1.x before 4.1.2 allows attackers to discov ...check fixing commit, fixed in 4.0.8
CVE-2021-30164Redmine before 4.0.8 and 4.1.x before 4.1.2 allows attackers to bypass ...check fixing commit, fixed in 4.0.8
CVE-2021-3283HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task d ...check details
TEMP-0000000-DD73A0Unexpected database bindings via requests (follow-up)check php-illuminate-database and CVE assignment

Search for package or bug name: Reporting problems