Search CVE reports
51 – 60 of 27992 results
CVE-2025-0650
Medium priorityA flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass egress access control lists (ACLs) in OVN installations configured with a logical switch with DNS records set on it and if the...
1 affected package
ovn
| Package | 20.04 LTS |
|---|---|
| ovn | Needs evaluation |
CVE-2025-0612
Medium priorityOut of bounds memory access in V8 in Google Chrome prior to 132.0.6834.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 20.04 LTS |
|---|---|
| chromium-browser | Not affected |
CVE-2025-0611
Medium priorityObject corruption in V8 in Google Chrome prior to 132.0.6834.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 20.04 LTS |
|---|---|
| chromium-browser | Not affected |
CVE-2025-0395
Medium priorityWhen the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message...
2 affected packages
eglibc, glibc
| Package | 20.04 LTS |
|---|---|
| eglibc | Not in release |
| glibc | Needs evaluation |
CVE-2024-11218
Medium priorityNot in release
A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux...
1 affected package
podman
| Package | 20.04 LTS |
|---|---|
| podman | Not in release |
CVE-2025-23090
Medium priorityWith the aid of the diagnostics_channel utility, an event can be hooked into whenever a worker thread is created. This is not limited only to workers but also exposes internal workers, where an instance of them can be fetched,...
1 affected package
nodejs
| Package | 20.04 LTS |
|---|---|
| nodejs | Needs evaluation |
CVE-2025-23083
Medium priorityWith the aid of the diagnostics_channel utility, an event can be hooked into whenever a worker thread is created. This is not limited only to workers but also exposes internal workers, where an instance of them can be fetched, and...
1 affected package
nodejs
| Package | 20.04 LTS |
|---|---|
| nodejs | Needs evaluation |
CVE-2025-23085
Medium priority[GOAWAY HTTP/2 frames cause memory leak outside heap]
1 affected package
nodejs
| Package | 20.04 LTS |
|---|---|
| nodejs | Needs evaluation |
CVE-2025-0509
Medium priority[Unknown description]
11 affected packages
openjdk-13, openjdk-16, openjdk-17, openjdk-18, openjdk-19...
| Package | 20.04 LTS |
|---|---|
| openjdk-13 | Ignored |
| openjdk-16 | Ignored |
| openjdk-17 | Needs evaluation |
| openjdk-18 | Not in release |
| openjdk-19 | Not in release |
| openjdk-21 | Needs evaluation |
| openjdk-22 | Not in release |
| openjdk-23 | Not in release |
| openjdk-8 | Needs evaluation |
| openjdk-9 | Not in release |
| openjdk-lts | Needs evaluation |
CVE-2024-52948
Medium priority[CSRF on 2FA registration]
1 affected package
lemonldap-ng
| Package | 20.04 LTS |
|---|---|
| lemonldap-ng | Needs evaluation |