Search CVE reports
331 – 340 of 388 results
In wolfSSL before 5.5.1, malicious clients can cause a buffer overflow during a TLS 1.3 handshake. This occurs when an attacker supposedly resumes a previous TLS session. During the resumption Client Hello a Hello Retry Request...
2 affected packages
mariadb-10.6, wolfssl
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb-10.6 | — | Not in release | Not affected | Not in release | Not in release |
| wolfssl | — | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Some fixes available 2 of 4
In MariaDB before 10.9.2, compress_write in extra/mariabackup/ds_compress.cc does not release data_mutex upon a stream write failure, which allows local users to trigger a deadlock.
6 affected packages
mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5, mariadb-10.0
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb-10.1 | — | Not in release | Not in release | Not in release | Needs evaluation |
| mariadb-10.3 | — | Not in release | Not in release | Fixed | Not in release |
| mariadb-10.5 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.6 | — | Not in release | Fixed | Not in release | Not in release |
| mariadb-5.5 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.0 | — | Not in release | Not in release | Not in release | Not in release |
Some fixes available 3 of 6
MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc.
6 affected packages
mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb-10.0 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.1 | — | Not in release | Not in release | Not in release | Needs evaluation |
| mariadb-10.3 | — | Not in release | Not in release | Fixed | Not in release |
| mariadb-10.5 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.6 | — | Not in release | Fixed | Not in release | Not in release |
| mariadb-5.5 | — | Not in release | Not in release | Not in release | Not in release |
Some fixes available 3 of 6
MariaDB v10.5 to v10.7 was discovered to contain a segmentation fault via the component st_select_lex_unit::exclude_level.
6 affected packages
mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb-10.0 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.1 | — | Not in release | Not in release | Not in release | Needs evaluation |
| mariadb-10.3 | — | Not in release | Not in release | Fixed | Not in release |
| mariadb-10.5 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.6 | — | Not in release | Fixed | Not in release | Not in release |
| mariadb-5.5 | — | Not in release | Not in release | Not in release | Not in release |
Some fixes available 3 of 6
MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Exec_time_tracker::get_loops/Filesort_tracker::report_use/filesort.
6 affected packages
mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb-10.0 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.1 | — | Not in release | Not in release | Not in release | Needs evaluation |
| mariadb-10.3 | — | Not in release | Not in release | Fixed | Not in release |
| mariadb-10.5 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.6 | — | Not in release | Fixed | Not in release | Not in release |
| mariadb-5.5 | — | Not in release | Not in release | Not in release | Not in release |
Some fixes available 2 of 5
MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Item_args::walk_args.
6 affected packages
mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb-10.0 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.1 | — | Not in release | Not in release | Not in release | Needs evaluation |
| mariadb-10.3 | — | Not in release | Not in release | Fixed | Not in release |
| mariadb-10.5 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.6 | — | Not in release | Fixed | Not in release | Not in release |
| mariadb-5.5 | — | Not in release | Not in release | Not in release | Not in release |
Some fixes available 2 of 5
MariaDB v10.4 to v10.8 was discovered to contain a segmentation fault via the component Item_field::fix_outer_field.
6 affected packages
mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb-10.0 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.1 | — | Not in release | Not in release | Not in release | Needs evaluation |
| mariadb-10.3 | — | Not in release | Not in release | Fixed | Not in release |
| mariadb-10.5 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.6 | — | Not in release | Fixed | Not in release | Not in release |
| mariadb-5.5 | — | Not in release | Not in release | Not in release | Not in release |
Some fixes available 2 of 5
MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Item_func_in::cleanup/Item::cleanup_processor.
6 affected packages
mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb-10.0 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.1 | — | Not in release | Not in release | Not in release | Needs evaluation |
| mariadb-10.3 | — | Not in release | Not in release | Fixed | Not in release |
| mariadb-10.5 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.6 | — | Not in release | Fixed | Not in release | Not in release |
| mariadb-5.5 | — | Not in release | Not in release | Not in release | Not in release |
Some fixes available 3 of 4
MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component sub_select.
6 affected packages
mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb-10.0 | Not in release | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.1 | Not in release | Not in release | Not in release | Not in release | Ignored |
| mariadb-10.3 | Not in release | Not in release | Not in release | Fixed | Not in release |
| mariadb-10.5 | Not in release | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.6 | Not in release | Not in release | Fixed | Not in release | Not in release |
| mariadb-5.5 | Not in release | Not in release | Not in release | Not in release | Not in release |
Some fixes available 2 of 5
MariaDB v10.2 to v10.6.1 was discovered to contain a segmentation fault via the component Item_subselect::init_expr_cache_tracker.
6 affected packages
mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.5, mariadb-10.6, mariadb-5.5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| mariadb-10.0 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.1 | — | Not in release | Not in release | Not in release | Needs evaluation |
| mariadb-10.3 | — | Not in release | Not in release | Fixed | Not in release |
| mariadb-10.5 | — | Not in release | Not in release | Not in release | Not in release |
| mariadb-10.6 | — | Not in release | Fixed | Not in release | Not in release |
| mariadb-5.5 | — | Not in release | Not in release | Not in release | Not in release |