Search CVE reports
1401 – 1410 of 44409 results
xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based buffer overflow vulnerability in its logon processing. In environments where domain_user_separator is configured in xrdp.ini, an unauthenticated...
1 affected package
xrdp
| Package | 18.04 LTS |
|---|---|
| xrdp | Needs evaluation |
xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated...
1 affected package
xrdp
| Package | 18.04 LTS |
|---|---|
| xrdp | Needs evaluation |
xrdp is an open source RDP server. In versions through 0.10.5, xrdp does not implement verification for the Message Authentication Code (MAC) signature of encrypted RDP packets when using the "Classic RDP Security" layer. While...
1 affected package
xrdp
| Package | 18.04 LTS |
|---|---|
| xrdp | Needs evaluation |
Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when deserializing a slice packet, the xdr_datum() function does not validate that a cstring length conforms to the...
2 affected packages
firebird3.0, firebird4.0
| Package | 18.04 LTS |
|---|---|
| firebird3.0 | Needs evaluation |
| firebird4.0 | — |
Firebird is an open-source relational database management system. In versions prior to 6.0.0, 5.0.4, 4.0.7 and 3.0.14, when processing an op_slice network packet, the server passes an unprepared structure containing a null pointer...
2 affected packages
firebird3.0, firebird4.0
| Package | 18.04 LTS |
|---|---|
| firebird3.0 | Needs evaluation |
| firebird4.0 | — |
Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when processing CNCT_specific_data segments during authentication, the server assumes segments arrive in strictly...
2 affected packages
firebird3.0, firebird4.0
| Package | 18.04 LTS |
|---|---|
| firebird3.0 | Needs evaluation |
| firebird4.0 | — |
Firebird is an open-source relational database management system. In versions FB3 of the client library placed incorrect data length values into XSQLDA fields when communicating with FB4 or higher servers, resulting in an...
2 affected packages
firebird3.0, firebird4.0
| Package | 18.04 LTS |
|---|---|
| firebird3.0 | Needs evaluation |
| firebird4.0 | — |
A security vulnerability has been detected in libvips up to 8.18.2. The affected element is the function im_minpos_vec of the file libvips/deprecated/vips7compat.c of the component nip2 Handler. Such manipulation of the argument n...
1 affected package
vips
| Package | 18.04 LTS |
|---|---|
| vips | Needs evaluation |
(: Use of a Broken or Risky Cryptographic Algorithm vulnerability in Le ...)
1 affected package
bouncycastle
| Package | 18.04 LTS |
|---|---|
| bouncycastle | Needs evaluation |
In OCaml opam before 2.5.1, a .install field containing a destination filepath can use ../ to reach a parent directory.
1 affected package
opam
| Package | 18.04 LTS |
|---|---|
| opam | Vulnerable |