Search CVE reports
101 – 110 of 43740 results
Not in release
Fiber is an Express inspired web framework written in Go. Prior to 3.3.0, the default Authorizer function in the BasicAuth middleware in middleware/basicauth/config.go uses short-circuit evaluation that skips password hash...
1 affected package
golang-github-gofiber-fiber
| Package | 22.04 LTS |
|---|---|
| golang-github-gofiber-fiber | Not in release |
[Unknown description]
1 affected package
xrdp
| Package | 22.04 LTS |
|---|---|
| xrdp | Needs evaluation |
(Handshakes which used Encrypted Client Hello could be de-anonymized by ...)
16 affected packages
golang, golang-1.6, golang-1.8, golang-1.9, golang-1.10...
| Package | 22.04 LTS |
|---|---|
| golang | Not in release |
| golang-1.6 | Not in release |
| golang-1.8 | Not in release |
| golang-1.9 | Not in release |
| golang-1.10 | Not in release |
| golang-1.13 | Needs evaluation |
| golang-1.14 | Not in release |
| golang-1.16 | Not in release |
| golang-1.17 | Needs evaluation |
| golang-1.18 | Needs evaluation |
| golang-1.20 | Needs evaluation |
| golang-1.21 | Needs evaluation |
| golang-1.22 | Needs evaluation |
| golang-1.23 | Needs evaluation |
| golang-1.24 | Needs evaluation |
| golang-1.25 | Not in release |
[Unknown description]
1 affected package
xrdp
| Package | 22.04 LTS |
|---|---|
| xrdp | Needs evaluation |
[Unknown description]
1 affected package
xrdp
| Package | 22.04 LTS |
|---|---|
| xrdp | Needs evaluation |
[Unknown description]
1 affected package
xrdp
| Package | 22.04 LTS |
|---|---|
| xrdp | Needs evaluation |
(On Unix systems, opening a file in an os.Root improperly follows symli ...)
16 affected packages
golang, golang-1.6, golang-1.8, golang-1.9, golang-1.10...
| Package | 22.04 LTS |
|---|---|
| golang | Not in release |
| golang-1.6 | Not in release |
| golang-1.8 | Not in release |
| golang-1.9 | Not in release |
| golang-1.10 | Not in release |
| golang-1.13 | Needs evaluation |
| golang-1.14 | Not in release |
| golang-1.16 | Not in release |
| golang-1.17 | Needs evaluation |
| golang-1.18 | Needs evaluation |
| golang-1.20 | Needs evaluation |
| golang-1.21 | Needs evaluation |
| golang-1.22 | Needs evaluation |
| golang-1.23 | Needs evaluation |
| golang-1.24 | Needs evaluation |
| golang-1.25 | Not in release |
A SQL injection vulnerability in SOGo before 5.12.7 allows authenticated users to execute arbitrary SQL statements via the newPassword parameter in the password change functionality.
1 affected package
sogo
| Package | 22.04 LTS |
|---|---|
| sogo | Needs evaluation |
A SQL injection vulnerability in SOGo before 5.12.7 allows authenticated users to execute arbitrary SQL statements via the search parameter of the allContactSearch endpoint.
1 affected package
sogo
| Package | 22.04 LTS |
|---|---|
| sogo | Needs evaluation |
[virtio-gpu: fix overflow check when allocating 2d image]
1 affected package
qemu
| Package | 22.04 LTS |
|---|---|
| qemu | Needs evaluation |