Search CVE reports
81 – 90 of 41694 results
Out-of-bounds Read vulnerability in Apache HTTP Server with mod_headers and mod_mime and multiple response languages. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67.
1 affected package
apache2
| Package | 22.04 LTS |
|---|---|
| apache2 | Needs evaluation |
Possible Out of Bounds Read in X509_VERIFY_PARAM_set1_email()
5 affected packages
openssl, openssl-fips, openssl1.0, nodejs, edk2
| Package | 22.04 LTS |
|---|---|
| openssl | Not affected |
| openssl-fips | Not affected |
| openssl1.0 | Not in release |
| nodejs | Vulnerable |
| edk2 | Not affected |
Some fixes available 1 of 2
FFC-DH Peer Validation Uses Attacker-Supplied q
5 affected packages
openssl, openssl-fips, openssl1.0, nodejs, edk2
| Package | 22.04 LTS |
|---|---|
| openssl | Fixed |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
| nodejs | Vulnerable |
| edk2 | Not affected |
Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
5 affected packages
openssl, openssl-fips, openssl1.0, nodejs, edk2
| Package | 22.04 LTS |
|---|---|
| openssl | Not affected |
| openssl-fips | Not affected |
| openssl1.0 | Not in release |
| nodejs | Vulnerable |
| edk2 | Not affected |
Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
5 affected packages
openssl, openssl-fips, openssl1.0, nodejs, edk2
| Package | 22.04 LTS |
|---|---|
| openssl | Not affected |
| openssl-fips | Not affected |
| openssl1.0 | Not in release |
| nodejs | Vulnerable |
| edk2 | Not affected |
Some fixes available 1 of 2
NULL Pointer Dereference in CRMF EncryptedValue Decryption
5 affected packages
openssl, openssl-fips, openssl1.0, nodejs, edk2
| Package | 22.04 LTS |
|---|---|
| openssl | Fixed |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
| nodejs | Vulnerable |
| edk2 | Not affected |
Some fixes available 1 of 3
Possible NULL Dereference in Password-Based CMS Decryption
5 affected packages
openssl, openssl-fips, openssl1.0, nodejs, edk2
| Package | 22.04 LTS |
|---|---|
| openssl | Fixed |
| openssl-fips | Not in release |
| openssl1.0 | Not in release |
| nodejs | Vulnerable |
| edk2 | Needs evaluation |
NULL Dereference in Certificate Verification with OCSP Checking
5 affected packages
openssl, openssl-fips, openssl1.0, nodejs, edk2
| Package | 22.04 LTS |
|---|---|
| openssl | Not affected |
| openssl-fips | Not affected |
| openssl1.0 | Not in release |
| nodejs | Vulnerable |
| edk2 | Not affected |
NULL pointer dereference in QUIC server initial packet handling
5 affected packages
openssl, openssl-fips, openssl1.0, nodejs, edk2
| Package | 22.04 LTS |
|---|---|
| openssl | Not affected |
| openssl-fips | Not affected |
| openssl1.0 | Not in release |
| nodejs | Vulnerable |
| edk2 | Not affected |
Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and untrusted content This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version...
1 affected package
apache2
| Package | 22.04 LTS |
|---|---|
| apache2 | Needs evaluation |