Search CVE reports
1261 – 1270 of 1756 results
Multiple SQL injection vulnerabilities in view_all_bug_page.php in MantisBT before 1.2.18 allow remote attackers to execute arbitrary SQL commands via the (1) sort or (2) dir parameter to view_all_set.php.
1 affected package
mantis
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mantis | — | — | — | — | — |
MantisBT before 1.2.18 allows remote authenticated users to bypass the $g_download_attachments_threshold and $g_view_attachments_threshold restrictions and read attachments for private projects by leveraging access to a project...
1 affected package
mantis
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mantis | — | — | — | — | — |
Cross-site scripting (XSS) vulnerability in the selection list in the filters in the Configuration Report page (adm_config_report.php) in MantisBT 1.2.13 through 1.2.17 allows remote administrators to inject arbitrary web script...
1 affected package
mantis
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mantis | — | — | — | — | — |
The XML Import/Export plugin in MantisBT 1.2.x does not restrict access, which allows remote attackers to (1) upload arbitrary XML files via the import page or (2) obtain sensitive information via the export page. NOTE: this...
1 affected package
mantis
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mantis | — | — | — | — | — |
The XmlImportExport plugin in MantisBT 1.2.17 and earlier allows remote attackers to execute arbitrary PHP code via a crafted (1) description field or (2) issuelink attribute in an XML file, which is not properly handled when...
1 affected package
mantis
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mantis | — | — | — | — | — |
SQL injection vulnerability in the mc_project_get_attachments function in api/soap/mc_project_api.php in MantisBT before 1.2.18 allows remote attackers to execute arbitrary SQL commands via the project_id parameter. NOTE: this...
1 affected package
mantis
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mantis | — | — | — | — | — |
The instruction decoder in arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel before 3.18-rc2 does not properly handle invalid instructions, which allows guest OS users to cause a denial of service (NULL pointer...
24 affected packages
linux, linux-2.6, linux-armadaxp, linux-ec2, linux-flo...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-2.6 | — | — | — | — | — |
| linux-armadaxp | — | — | — | — | — |
| linux-ec2 | — | — | — | — | — |
| linux-flo | — | — | — | — | — |
| linux-fsl-imx51 | — | — | — | — | — |
| linux-goldfish | — | — | — | — | — |
| linux-grouper | — | — | — | — | — |
| linux-linaro-omap | — | — | — | — | — |
| linux-linaro-shared | — | — | — | — | — |
| linux-linaro-vexpress | — | — | — | — | — |
| linux-lts-quantal | — | — | — | — | — |
| linux-lts-raring | — | — | — | — | — |
| linux-lts-saucy | — | — | — | — | — |
| linux-lts-trusty | — | — | — | — | — |
| linux-lts-utopic | — | — | — | — | — |
| linux-lts-vivid | — | — | — | — | — |
| linux-maguro | — | — | — | — | — |
| linux-mako | — | — | — | — | — |
| linux-manta | — | — | — | — | — |
| linux-mvl-dove | — | — | — | — | — |
| linux-qcm-msm | — | — | — | — | — |
| linux-raspi2 | — | — | — | — | — |
| linux-ti-omap4 | — | — | — | — | — |
The instruction decoder in arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel before 3.18-rc2 lacks intended decoder-table flags for certain RIP-relative instructions, which allows guest OS users to cause a denial of...
24 affected packages
linux, linux-2.6, linux-armadaxp, linux-ec2, linux-flo...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-2.6 | — | — | — | — | — |
| linux-armadaxp | — | — | — | — | — |
| linux-ec2 | — | — | — | — | — |
| linux-flo | — | — | — | — | — |
| linux-fsl-imx51 | — | — | — | — | — |
| linux-goldfish | — | — | — | — | — |
| linux-grouper | — | — | — | — | — |
| linux-linaro-omap | — | — | — | — | — |
| linux-linaro-shared | — | — | — | — | — |
| linux-linaro-vexpress | — | — | — | — | — |
| linux-lts-quantal | — | — | — | — | — |
| linux-lts-raring | — | — | — | — | — |
| linux-lts-saucy | — | — | — | — | — |
| linux-lts-trusty | — | — | — | — | — |
| linux-lts-utopic | — | — | — | — | — |
| linux-lts-vivid | — | — | — | — | — |
| linux-maguro | — | — | — | — | — |
| linux-mako | — | — | — | — | — |
| linux-manta | — | — | — | — | — |
| linux-mvl-dove | — | — | — | — | — |
| linux-qcm-msm | — | — | — | — | — |
| linux-raspi2 | — | — | — | — | — |
| linux-ti-omap4 | — | — | — | — | — |
Some fixes available 7 of 32
The ieee80211_fragment function in net/mac80211/tx.c in the Linux kernel before 3.13.5 does not properly maintain a certain tail pointer, which allows remote attackers to obtain sensitive cleartext information by reading packets.
30 affected packages
linux, linux-armadaxp, linux-aws, linux-ec2, linux-flo...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-armadaxp | — | — | — | — | — |
| linux-aws | — | — | — | — | — |
| linux-ec2 | — | — | — | — | — |
| linux-flo | — | — | — | — | — |
| linux-fsl-imx51 | — | — | — | — | — |
| linux-gke | — | — | — | — | — |
| linux-goldfish | — | — | — | — | — |
| linux-grouper | — | — | — | — | — |
| linux-hwe | — | — | — | — | — |
| linux-hwe-edge | — | — | — | — | — |
| linux-linaro-omap | — | — | — | — | — |
| linux-linaro-shared | — | — | — | — | — |
| linux-linaro-vexpress | — | — | — | — | — |
| linux-lts-quantal | — | — | — | — | — |
| linux-lts-raring | — | — | — | — | — |
| linux-lts-saucy | — | — | — | — | — |
| linux-lts-trusty | — | — | — | — | — |
| linux-lts-utopic | — | — | — | — | — |
| linux-lts-vivid | — | — | — | — | — |
| linux-lts-wily | — | — | — | — | — |
| linux-lts-xenial | — | — | — | — | — |
| linux-maguro | — | — | — | — | — |
| linux-mako | — | — | — | — | — |
| linux-manta | — | — | — | — | — |
| linux-mvl-dove | — | — | — | — | — |
| linux-qcm-msm | — | — | — | — | — |
| linux-raspi2 | — | — | — | — | — |
| linux-snapdragon | — | — | — | — | — |
| linux-ti-omap4 | — | — | — | — | — |
Some fixes available 7 of 34
The d_walk function in fs/dcache.c in the Linux kernel through 3.17.2 does not properly maintain the semantics of rename_lock, which allows local users to cause a denial of service (deadlock and system hang) via a crafted application.
30 affected packages
linux, linux-armadaxp, linux-aws, linux-ec2, linux-flo...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-armadaxp | — | — | — | — | — |
| linux-aws | — | — | — | — | — |
| linux-ec2 | — | — | — | — | — |
| linux-flo | — | — | — | — | — |
| linux-fsl-imx51 | — | — | — | — | — |
| linux-gke | — | — | — | — | — |
| linux-goldfish | — | — | — | — | — |
| linux-grouper | — | — | — | — | — |
| linux-hwe | — | — | — | — | — |
| linux-hwe-edge | — | — | — | — | — |
| linux-linaro-omap | — | — | — | — | — |
| linux-linaro-shared | — | — | — | — | — |
| linux-linaro-vexpress | — | — | — | — | — |
| linux-lts-quantal | — | — | — | — | — |
| linux-lts-raring | — | — | — | — | — |
| linux-lts-saucy | — | — | — | — | — |
| linux-lts-trusty | — | — | — | — | — |
| linux-lts-utopic | — | — | — | — | — |
| linux-lts-vivid | — | — | — | — | — |
| linux-lts-wily | — | — | — | — | — |
| linux-lts-xenial | — | — | — | — | — |
| linux-maguro | — | — | — | — | — |
| linux-mako | — | — | — | — | — |
| linux-manta | — | — | — | — | — |
| linux-mvl-dove | — | — | — | — | — |
| linux-qcm-msm | — | — | — | — | — |
| linux-raspi2 | — | — | — | — | — |
| linux-snapdragon | — | — | — | — | — |
| linux-ti-omap4 | — | — | — | — | — |