Search CVE reports

11 – 20 of 27992 results

Detailed view

Sort by:

Status is adjusted based on your filters.

CVE-2024-45341

Medium priority

Needs evaluation

A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only...

18 affected packages

golang, golang-1.10, golang-1.13, golang-1.14, golang-1.16...

Package	20.04 LTS
golang	Not in release
golang-1.10	Not in release
golang-1.13	Needs evaluation
golang-1.14	Needs evaluation
golang-1.16	Needs evaluation
golang-1.17	Not in release
golang-1.18	Needs evaluation
golang-1.20	Needs evaluation
golang-1.21	Needs evaluation
golang-1.22	Needs evaluation
golang-1.23	Not in release
golang-1.24	Not in release
golang-1.6	Not in release
golang-1.8	Not in release
golang-1.9	Not in release
golang-go.crypto	Needs evaluation
lxd	Not affected
snapd	Needs evaluation

CVE-2024-45336

Medium priority

Needs evaluation

The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization header which is redirected to b.com/ will not send that header to b.com. In the event...

16 affected packages

golang, golang-1.10, golang-1.13, golang-1.14, golang-1.16...

Package	20.04 LTS
golang	Not in release
golang-1.10	Not in release
golang-1.13	Needs evaluation
golang-1.14	Needs evaluation
golang-1.16	Needs evaluation
golang-1.17	Not in release
golang-1.18	Needs evaluation
golang-1.19	Not in release
golang-1.20	Needs evaluation
golang-1.21	Needs evaluation
golang-1.22	Needs evaluation
golang-1.23	Not in release
golang-1.24	Not in release
golang-1.6	Not in release
golang-1.8	Not in release
golang-1.9	Not in release

CVE-2025-22865

Medium priority

Needs evaluation

Using ParsePKCS1PrivateKey to parse a RSA key that is missing the CRT values would panic when verifying that the key is well formed.

15 affected packages

golang, golang-1.10, golang-1.13, golang-1.14, golang-1.16...

Package	20.04 LTS
golang	Not in release
golang-1.10	Not in release
golang-1.13	Needs evaluation
golang-1.14	Needs evaluation
golang-1.16	Needs evaluation
golang-1.17	Not in release
golang-1.18	Needs evaluation
golang-1.20	Needs evaluation
golang-1.21	Needs evaluation
golang-1.22	Needs evaluation
golang-1.23	Not in release
golang-1.24	Not in release
golang-1.6	Not in release
golang-1.8	Not in release
golang-1.9	Not in release

CVE-2025-0750

Medium priority

Not in release

A vulnerability was found in CRI-O. A path traversal issue in the log management functions (UnMountPodLogs and LinkContainerLogs) may allow an attacker with permissions to create and delete Pods to unmount arbitrary host paths,...

1 affected package

cri-o

Package	20.04 LTS
cri-o	Not in release

CVE-2025-0290

Medium priority

Not in release

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 prior to 17.5.5, from 17.6 prior to 17.6.3, and from 17.7 prior to 17.7.1. Under certain conditions, processing of CI artifacts metadata could...

1 affected package

gitlab

Package	20.04 LTS
gitlab	Not in release

CVE-2024-53869

Medium priority

Needs evaluation

NVIDIA Unified Memory driver for Linux contains a vulnerability where an attacker could leak uninitialized memory. A successful exploit of this vulnerability might lead to information disclosure.

34 affected packages

nvidia-graphics-drivers-304, nvidia-graphics-drivers-304-updates, nvidia-graphics-drivers-340, nvidia-graphics-drivers-340-updates, nvidia-graphics-drivers-352...

Package	20.04 LTS
nvidia-graphics-drivers-304	Not in release
nvidia-graphics-drivers-304-updates	Not in release
nvidia-graphics-drivers-340	Ignored
nvidia-graphics-drivers-340-updates	Not in release
nvidia-graphics-drivers-352	Not in release
nvidia-graphics-drivers-352-updates	Not in release
nvidia-graphics-drivers-361	Not in release
nvidia-graphics-drivers-367	Not in release
nvidia-graphics-drivers-375	Not in release
nvidia-graphics-drivers-384	Not in release
nvidia-graphics-drivers-390	Ignored
nvidia-graphics-drivers-418-server	Ignored
nvidia-graphics-drivers-430	Ignored
nvidia-graphics-drivers-435	Ignored
nvidia-graphics-drivers-440	Ignored
nvidia-graphics-drivers-440-server	Ignored
nvidia-graphics-drivers-450	Ignored
nvidia-graphics-drivers-450-server	Ignored
nvidia-graphics-drivers-455	Ignored
nvidia-graphics-drivers-460	Ignored
nvidia-graphics-drivers-460-server	Ignored
nvidia-graphics-drivers-470	Ignored
nvidia-graphics-drivers-470-server	Ignored
nvidia-graphics-drivers-495	Not affected
nvidia-graphics-drivers-510	Ignored
nvidia-graphics-drivers-510-server	Not affected
nvidia-graphics-drivers-515	Ignored
nvidia-graphics-drivers-515-server	Ignored
nvidia-graphics-drivers-520	Ignored
nvidia-graphics-drivers-525	Not affected
nvidia-graphics-drivers-525-server	Not affected
nvidia-graphics-drivers-530	Ignored
nvidia-graphics-drivers-535	Needs evaluation
nvidia-graphics-drivers-535-server	Needs evaluation

CVE-2024-45340

Medium priority

Needs evaluation

Credentials provided via the new GOAUTH feature were not being properly segmented by domain, allowing a malicious server to request credentials they should not have access to. By default, unless otherwise set, this only affected...

15 affected packages

golang, golang-1.10, golang-1.13, golang-1.14, golang-1.16...

Package	20.04 LTS
golang	Not in release
golang-1.10	Not in release
golang-1.13	Needs evaluation
golang-1.14	Needs evaluation
golang-1.16	Needs evaluation
golang-1.17	Not in release
golang-1.18	Needs evaluation
golang-1.20	Needs evaluation
golang-1.21	Needs evaluation
golang-1.22	Needs evaluation
golang-1.23	Not in release
golang-1.24	Not in release
golang-1.6	Not in release
golang-1.8	Not in release
golang-1.9	Not in release

CVE-2024-45339

Medium priority

Needs evaluation

When logs are written to a widely-writable directory (the default), an unprivileged attacker may predict a privileged process's log file path and pre-create a symbolic link to a sensitive file in its place. When that privileged...

1 affected package

golang-glog

Package	20.04 LTS
golang-glog	Needs evaluation

CVE-2024-0150

Medium priority

Needs evaluation

NVIDIA GPU display driver for Windows and Linux contains a vulnerability where data is written past the end or before the beginning of a buffer. A successful exploit of this vulnerability might lead to information disclosure,...

34 affected packages

nvidia-graphics-drivers-304, nvidia-graphics-drivers-304-updates, nvidia-graphics-drivers-340, nvidia-graphics-drivers-340-updates, nvidia-graphics-drivers-352...

Package	20.04 LTS
nvidia-graphics-drivers-304	Not in release
nvidia-graphics-drivers-304-updates	Not in release
nvidia-graphics-drivers-340	Ignored
nvidia-graphics-drivers-340-updates	Not in release
nvidia-graphics-drivers-352	Not in release
nvidia-graphics-drivers-352-updates	Not in release
nvidia-graphics-drivers-361	Not in release
nvidia-graphics-drivers-367	Not in release
nvidia-graphics-drivers-375	Not in release
nvidia-graphics-drivers-384	Not in release
nvidia-graphics-drivers-390	Ignored
nvidia-graphics-drivers-418-server	Ignored
nvidia-graphics-drivers-430	Ignored
nvidia-graphics-drivers-435	Ignored
nvidia-graphics-drivers-440	Ignored
nvidia-graphics-drivers-440-server	Ignored
nvidia-graphics-drivers-450	Ignored
nvidia-graphics-drivers-450-server	Ignored
nvidia-graphics-drivers-455	Ignored
nvidia-graphics-drivers-460	Ignored
nvidia-graphics-drivers-460-server	Ignored
nvidia-graphics-drivers-470	Ignored
nvidia-graphics-drivers-470-server	Ignored
nvidia-graphics-drivers-495	Not affected
nvidia-graphics-drivers-510	Ignored
nvidia-graphics-drivers-510-server	Not affected
nvidia-graphics-drivers-515	Ignored
nvidia-graphics-drivers-515-server	Ignored
nvidia-graphics-drivers-520	Ignored
nvidia-graphics-drivers-525	Not affected
nvidia-graphics-drivers-525-server	Not affected
nvidia-graphics-drivers-530	Ignored
nvidia-graphics-drivers-535	Needs evaluation
nvidia-graphics-drivers-535-server	Needs evaluation

CVE-2024-0149

Medium priority

Needs evaluation

NVIDIA GPU Display Driver for Linux contains a vulnerability which could allow an attacker unauthorized access to files. A successful exploit of this vulnerability might lead to limited information disclosure.

34 affected packages

nvidia-graphics-drivers-304, nvidia-graphics-drivers-304-updates, nvidia-graphics-drivers-340, nvidia-graphics-drivers-340-updates, nvidia-graphics-drivers-352...

Package	20.04 LTS
nvidia-graphics-drivers-304	Not in release
nvidia-graphics-drivers-304-updates	Not in release
nvidia-graphics-drivers-340	Ignored
nvidia-graphics-drivers-340-updates	Not in release
nvidia-graphics-drivers-352	Not in release
nvidia-graphics-drivers-352-updates	Not in release
nvidia-graphics-drivers-361	Not in release
nvidia-graphics-drivers-367	Not in release
nvidia-graphics-drivers-375	Not in release
nvidia-graphics-drivers-384	Not in release
nvidia-graphics-drivers-390	Ignored
nvidia-graphics-drivers-418-server	Ignored
nvidia-graphics-drivers-430	Ignored
nvidia-graphics-drivers-435	Ignored
nvidia-graphics-drivers-440	Ignored
nvidia-graphics-drivers-440-server	Ignored
nvidia-graphics-drivers-450	Ignored
nvidia-graphics-drivers-450-server	Ignored
nvidia-graphics-drivers-455	Ignored
nvidia-graphics-drivers-460	Ignored
nvidia-graphics-drivers-460-server	Ignored
nvidia-graphics-drivers-470	Ignored
nvidia-graphics-drivers-470-server	Ignored
nvidia-graphics-drivers-495	Not affected
nvidia-graphics-drivers-510	Ignored
nvidia-graphics-drivers-510-server	Not affected
nvidia-graphics-drivers-515	Ignored
nvidia-graphics-drivers-515-server	Ignored
nvidia-graphics-drivers-520	Ignored
nvidia-graphics-drivers-525	Not affected
nvidia-graphics-drivers-525-server	Not affected
nvidia-graphics-drivers-530	Ignored
nvidia-graphics-drivers-535	Needs evaluation
nvidia-graphics-drivers-535-server	Needs evaluation

Export to JSON

Results by page: