Search CVE reports
171 – 180 of 33493 results
A vulnerability has been found in Nothings stb up to 2.30. This issue affects the function stbi__gif_load_next in the library stb_image.h of the component GIF Decoder. Such manipulation leads to denial of service. The attack may...
1 affected package
libstb
| Package | 24.04 LTS |
|---|---|
| libstb | Needs evaluation |
(OpenSSH before 10.3 mishandles the authorized_keys principals option i ...)
2 affected packages
openssh, openssh-ssh1
| Package | 24.04 LTS |
|---|---|
| openssh | Needs evaluation |
| openssh-ssh1 | Ignored |
(OpenSSH before 10.3 omits connection multiplexing confirmation for pro ...)
2 affected packages
openssh, openssh-ssh1
| Package | 24.04 LTS |
|---|---|
| openssh | Needs evaluation |
| openssh-ssh1 | Ignored |
(OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of an ...)
2 affected packages
openssh, openssh-ssh1
| Package | 24.04 LTS |
|---|---|
| openssh | Needs evaluation |
| openssh-ssh1 | Ignored |
(In OpenSSH before 10.3, command execution can occur via shell metachar ...)
2 affected packages
openssh, openssh-ssh1
| Package | 24.04 LTS |
|---|---|
| openssh | Needs evaluation |
| openssh-ssh1 | Ignored |
(In OpenSSH before 10.3, a file downloaded by scp may be installed setu ...)
2 affected packages
openssh, openssh-ssh1
| Package | 24.04 LTS |
|---|---|
| openssh | Needs evaluation |
| openssh-ssh1 | Ignored |
(An issue was discovered in Mbed TLS versions from 2.19.0 up to 3.6.5, ...)
1 affected package
mbedtls
| Package | 24.04 LTS |
|---|---|
| mbedtls | Needs evaluation |
(An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds ...)
1 affected package
mbedtls
| Package | 24.04 LTS |
|---|---|
| mbedtls | Needs evaluation |
An issue was discovered in Mbed TLS 3.5.0 through 4.0.0. Client impersonation can occur while resuming a TLS 1.3 session.
1 affected package
mbedtls
| Package | 24.04 LTS |
|---|---|
| mbedtls | Needs evaluation |
An issue was discovered in Mbed TLS 3.5.x and 3.6.x through 3.6.5 and TF-PSA-Crypto 1.0. There is a lack of contributory behavior in FFDH due to improper input validation. Using finite-field Diffie-Hellman, the other party can...
1 affected package
mbedtls
| Package | 24.04 LTS |
|---|---|
| mbedtls | Needs evaluation |