Search CVE reports
261 – 270 of 37173 results
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, urb_select_interface can free the device's MS config on error but later code still dereferences it, leading to a use after free...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Fixed |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, video_timer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Not affected |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, a NULL pointer dereference vulnerability in rdp_write_logon_info_v2() allows a malicious RDP server to crash FreeRDP proxy by sending a specially...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Fixed |
| freerdp3 | — |
Crafted zones can lead to increased incoming network traffic.
1 affected package
pdns-recursor
| Package | 20.04 LTS |
|---|---|
| pdns-recursor | Needs evaluation |
Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning in Recursor.
1 affected package
pdns-recursor
| Package | 20.04 LTS |
|---|---|
| pdns-recursor | Needs evaluation |
Crafted delegations or IP fragments can poison cached delegations in Recursor.
1 affected package
pdns-recursor
| Package | 20.04 LTS |
|---|---|
| pdns-recursor | Needs evaluation |
Crafted delegations or IP fragments can poison cached delegations in Recursor.
1 affected package
pdns-recursor
| Package | 20.04 LTS |
|---|---|
| pdns-recursor | Needs evaluation |
A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of...
1 affected package
gnutls28
| Package | 20.04 LTS |
|---|---|
| gnutls28 | Needs evaluation |
Authentication Bypass by Alternate Name vulnerability in Apache Shiro. This issue affects Apache Shiro: before 2.0.7. Users are recommended to upgrade to version 2.0.7, which fixes the issue. The issue only effects static files....
1 affected package
shiro
| Package | 20.04 LTS |
|---|---|
| shiro | Needs evaluation |
Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13, when "Block remote images" is used, does not block SVG feImage.
1 affected package
roundcube
| Package | 20.04 LTS |
|---|---|
| roundcube | Needs evaluation |