Search CVE reports
381 – 390 of 48912 results
CR/LF bytes were not rejected by HTTP client proxy tunnel headers or host.
14 affected packages
jython, pypy3, python2.7, python3.4, python3.5...
| Package | 16.04 LTS |
|---|---|
| jython | Needs evaluation |
| pypy3 | — |
| python2.7 | Needs evaluation |
| python3.4 | — |
| python3.5 | Needs evaluation |
| python3.6 | — |
| python3.7 | — |
| python3.8 | — |
| python3.9 | — |
| python3.10 | — |
| python3.11 | — |
| python3.12 | — |
| python3.13 | — |
| python3.14 | — |
An issue was discovered in musl libc 0.7.10 through 1.2.6. Stack-based memory corruption can occur during qsort of very large arrays, due to incorrectly implemented double-word primitives. The number of elements must exceed about...
1 affected package
musl
| Package | 16.04 LTS |
|---|---|
| musl | Needs evaluation |
In systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is executed, if ForwardToWall=yes is set.
1 affected package
systemd
| Package | 16.04 LTS |
|---|---|
| systemd | Needs evaluation |
In systemd 260 before 261, a local unprivileged user can trigger an assert via an IPC API call with an array or map that has a null element.
1 affected package
systemd
| Package | 16.04 LTS |
|---|---|
| systemd | Needs evaluation |
In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.
1 affected package
systemd
| Package | 16.04 LTS |
|---|---|
| systemd | Needs evaluation |
In udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output.
1 affected package
systemd
| Package | 16.04 LTS |
|---|---|
| systemd | Needs evaluation |
In systemd 259 before 260, there is local privilege escalation in systemd-machined because varlink can be used to reach the root namespace.
1 affected package
systemd
| Package | 16.04 LTS |
|---|---|
| systemd | Needs evaluation |
In systemd 258 before 260, a local unprivileged user can trigger an assert when a Delegate=yes and User=<unset> unit exists and is running.
1 affected package
systemd
| Package | 16.04 LTS |
|---|---|
| systemd | Needs evaluation |
Apache Log4cxx's XMLLayout https://logging.apache.org/log4cxx/1.7.0/classlog4cxx_1_1xml_1_1XMLLayout.html , in versions before 1.7.0, fails to sanitize characters forbidden by the XML 1.0 specification...
1 affected package
log4cxx
| Package | 16.04 LTS |
|---|---|
| log4cxx | Needs evaluation |
Apache Log4net's XmlLayout https://logging.apache.org/log4net/manual/configuration/layouts.html#layout-list and XmlLayoutSchemaLog4J https://logging.apache.org/log4net/manual/configuration/layouts.html#layout-list , in versions...
1 affected package
log4net
| Package | 16.04 LTS |
|---|---|
| log4net | Needs evaluation |