Search CVE reports
71 – 80 of 50764 results
AES-OCB IV Ignored on EVP_Cipher() Path
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 16.04 LTS |
|---|---|
| edk2 | — |
| nodejs | — |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
Buffer Underwrite vulnerability in Apache HTTP Server on crafted regular expressions in the configuration. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which...
1 affected package
apache2
| Package | 16.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in the mod_proxy_ftp module in Apache HTTP Server with an attacker controlled backend FTP server. This issue affects undefined: from 2.4.0 through 2.4.67. Users...
1 affected package
apache2
| Package | 16.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP server This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version...
1 affected package
apache2
| Package | 16.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Improper Privilege Management vulnerability in Apache HTTP Server 2.4.67 and earlier allows local .htaccess authors to read files with the privileges of the httpd user. This issue affects Apache HTTP Server: from through...
1 affected package
apache2
| Package | 16.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Out-of-bounds Read vulnerability in Apache HTTP Server with mod_headers and mod_mime and multiple response languages. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67.
1 affected package
apache2
| Package | 16.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Possible Out of Bounds Read in X509_VERIFY_PARAM_set1_email()
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 16.04 LTS |
|---|---|
| edk2 | — |
| nodejs | — |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
FFC-DH Peer Validation Uses Attacker-Supplied q
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 16.04 LTS |
|---|---|
| edk2 | — |
| nodejs | — |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 16.04 LTS |
|---|---|
| edk2 | — |
| nodejs | — |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |
Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
5 affected packages
edk2, nodejs, openssl, openssl-fips, openssl1.0
| Package | 16.04 LTS |
|---|---|
| edk2 | — |
| nodejs | — |
| openssl | Not affected |
| openssl-fips | — |
| openssl1.0 | — |