Search CVE reports
1 – 10 of 33416 results
Docker Compose trusts the path information embedded in remote OCI compose artifacts. When a layer includes the annotations com.docker.compose.extends or com.docker.compose.envfile, Compose joins the attacker‑supplied value from...
1 affected package
docker-compose
| Package | 22.04 LTS |
|---|---|
| docker-compose | Needs evaluation |
ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage...
1 affected package
imagemagick
| Package | 22.04 LTS |
|---|---|
| imagemagick | Needs evaluation |
Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred (including exceeding limits) during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not...
3 affected packages
tomcat10, tomcat11, tomcat9
| Package | 22.04 LTS |
|---|---|
| tomcat10 | Not in release |
| tomcat11 | Not in release |
| tomcat9 | Needs evaluation |
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_link_info function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted...
2 affected packages
frr, quagga
| Package | 22.04 LTS |
|---|---|
| frr | Needs evaluation |
| quagga | Not in release |
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_adj_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a...
2 affected packages
frr, quagga
| Package | 22.04 LTS |
|---|---|
| frr | Needs evaluation |
| quagga | Not in release |
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_rmt_itf_addr function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via...
2 affected packages
frr, quagga
| Package | 22.04 LTS |
|---|---|
| frr | Needs evaluation |
| quagga | Not in release |
FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospf_opaque_lsa_dump function at ospf_opaque.c. This vulnerability allows attackers to cause a Denial of Service (DoS) under...
2 affected packages
frr, quagga
| Package | 22.04 LTS |
|---|---|
| frr | Needs evaluation |
| quagga | Not in release |
FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaque_info_detail function at ospf_opaque.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a...
2 affected packages
frr, quagga
| Package | 22.04 LTS |
|---|---|
| frr | Needs evaluation |
| quagga | Not in release |
Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. Tomcat did not escape ANSI escape sequences in log messages. If Tomcat was running in a console on a Windows operating system, and the...
3 affected packages
tomcat10, tomcat11, tomcat9
| Package | 22.04 LTS |
|---|---|
| tomcat10 | Not in release |
| tomcat11 | Not in release |
| tomcat9 | Needs evaluation |
Relative Path Traversal vulnerability in Apache Tomcat. The fix for bug 60013 introduced a regression where the rewritten URL was normalized before it was decoded. This introduced the possibility that, for rewrite...
3 affected packages
tomcat10, tomcat11, tomcat9
| Package | 22.04 LTS |
|---|---|
| tomcat10 | Not in release |
| tomcat11 | Not in release |
| tomcat9 | Needs evaluation |