Search CVE reports
3181 – 3190 of 26567 results
The CombinedMult function in the CIRCL ecc/p384 package (secp384r1 curve) produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas. ECDH and ECDSA signing relying on this curve are...
1 affected package
golang-github-cloudflare-circl
| Package | 26.04 LTS |
|---|---|
| golang-github-cloudflare-circl | Needs evaluation |
strukturag libde265 commit d9fea9d wa discovered to contain a segmentation fault via the component decoder_context::compute_framedrop_table().
1 affected package
libde265
| Package | 26.04 LTS |
|---|---|
| libde265 | Needs evaluation |
saitoha libsixel until v1.8.7 was discovered to contain a memory leak via the component malloc_stub.c.
1 affected package
libsixel
| Package | 26.04 LTS |
|---|---|
| libsixel | Needs evaluation |
Some fixes available 1 of 2
libtiff up to v4.7.1 was discovered to contain a double free via the component tools/tiffcrop.c.
5 affected packages
tiff, qtwebengine-opensource-src, texmaker, gdal, neuron
| Package | 26.04 LTS |
|---|---|
| tiff | Fixed |
| qtwebengine-opensource-src | Needs evaluation |
| texmaker | Not affected |
| gdal | Not affected |
| neuron | Not affected |
libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function.
5 affected packages
tiff, qtwebengine-opensource-src, texmaker, gdal, neuron
| Package | 26.04 LTS |
|---|---|
| tiff | Vulnerable |
| qtwebengine-opensource-src | Needs evaluation |
| texmaker | Not affected |
| gdal | Not affected |
| neuron | Not affected |
libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c.
5 affected packages
tiff, qtwebengine-opensource-src, texmaker, gdal, neuron
| Package | 26.04 LTS |
|---|---|
| tiff | Vulnerable |
| qtwebengine-opensource-src | Needs evaluation |
| texmaker | Not affected |
| gdal | Not affected |
| neuron | Not affected |
A flaw was found in the 389-ds-base server. A heap buffer overflow vulnerability exists in the `schema_attr_enum_callback` function within the `schema.c` file. This occurs because the code incorrectly calculates the buffer size by...
1 affected package
389-ds-base
| Package | 26.04 LTS |
|---|---|
| 389-ds-base | Needs evaluation |
A vulnerability was detected in Cesanta Mongoose up to 7.20. This impacts the function mg_chacha20_poly1305_decrypt of the file /src/tls_chacha20.c of the component Poly1305 Authentication Tag Handler. The manipulation results in...
2 affected packages
opencpn, swupdate
| Package | 26.04 LTS |
|---|---|
| opencpn | Not affected |
| swupdate | Needs evaluation |
A security vulnerability has been detected in Cesanta Mongoose up to 7.20. This affects the function getpeer of the file /src/net_builtin.c of the component TCP Sequence Number Handler. The manipulation leads to...
1 affected package
opencpn
| Package | 26.04 LTS |
|---|---|
| opencpn | Needs evaluation |
A weakness has been identified in Cesanta Mongoose up to 7.20. The impacted element is the function mg_sendnsreq of the file /src/dns.c of the component DNS Transaction ID Handler. Executing a manipulation of the argument random...
1 affected package
opencpn
| Package | 26.04 LTS |
|---|---|
| opencpn | Needs evaluation |