Search CVE reports
81 – 90 of 28513 results
Out-of-bounds Read vulnerability in Apache HTTP Server with mod_headers and mod_mime and multiple response languages. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67.
1 affected package
apache2
| Package | 26.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Possible Out of Bounds Read in X509_VERIFY_PARAM_set1_email()
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 26.04 LTS |
|---|---|
| edk2 | Not affected |
| nodejs | Not affected |
| openssl | Not affected |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
Some fixes available 1 of 2
FFC-DH Peer Validation Uses Attacker-Supplied q
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 26.04 LTS |
|---|---|
| edk2 | Needs evaluation |
| nodejs | Not affected |
| openssl | Fixed |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
Some fixes available 1 of 2
Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 26.04 LTS |
|---|---|
| edk2 | Needs evaluation |
| nodejs | Not affected |
| openssl | Fixed |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
Some fixes available 1 of 2
Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 26.04 LTS |
|---|---|
| edk2 | Needs evaluation |
| nodejs | Not affected |
| openssl | Fixed |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
Some fixes available 1 of 2
NULL Pointer Dereference in CRMF EncryptedValue Decryption
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 26.04 LTS |
|---|---|
| edk2 | Needs evaluation |
| nodejs | Not affected |
| openssl | Fixed |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
Some fixes available 1 of 2
Possible NULL Dereference in Password-Based CMS Decryption
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 26.04 LTS |
|---|---|
| edk2 | Needs evaluation |
| nodejs | Not affected |
| openssl | Fixed |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
NULL Dereference in Certificate Verification with OCSP Checking
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 26.04 LTS |
|---|---|
| edk2 | Not affected |
| nodejs | Not affected |
| openssl | Not affected |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
Some fixes available 1 of 2
NULL pointer dereference in QUIC server initial packet handling
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 26.04 LTS |
|---|---|
| edk2 | Needs evaluation |
| nodejs | Not affected |
| openssl | Fixed |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and untrusted content This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version...
1 affected package
apache2
| Package | 26.04 LTS |
|---|---|
| apache2 | Needs evaluation |