Search CVE reports

451 – 460 of 41630 results

Detailed view

Sort by:

Status is adjusted based on your filters.

CVE-2026-1536

Medium priority

Needs evaluation

A flaw was found in libsoup. An attacker who can control the input for the Content-Disposition header can inject CRLF (Carriage Return Line Feed) sequences into the header value. These sequences are then interpreted verbatim when...

2 affected packages

libsoup2.4, libsoup3

Package	18.04 LTS
libsoup2.4	Needs evaluation
libsoup3	—

CVE-2026-23014

Medium priority

Ignored

In the Linux kernel, the following vulnerability has been resolved: perf: Ensure swevent hrtimer is properly destroyed With the change to hrtimer_try_to_cancel() in perf_swevent_cancel_hrtimer() it appears possible for the hrtimer...

149 affected packages

linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux, linux-hwe-5.11...

Package	18.04 LTS
linux-hwe	Ignored
linux-hwe-5.4	Not affected
linux-hwe-5.8	Not in release
linux	Not affected
linux-hwe-5.11	Not in release
linux-hwe-5.13	Not in release
linux-hwe-5.15	Not in release
linux-hwe-5.19	Not in release
linux-hwe-6.2	Not in release
linux-hwe-6.5	Not in release
linux-hwe-6.8	Not in release
linux-hwe-6.11	Not in release
linux-hwe-6.14	Not in release
linux-hwe-edge	Ignored
linux-lts-xenial	Not in release
linux-kvm	Not affected
linux-allwinner-5.19	Not in release
linux-aws-5.0	Ignored
linux-aws-5.3	Ignored
linux-aws-5.4	Not affected
linux-aws-5.8	Not in release
linux-aws-5.11	Not in release
linux-aws	Not affected
linux-aws-5.13	Not in release
linux-aws-5.15	Not in release
linux-aws-5.19	Not in release
linux-aws-6.2	Not in release
linux-aws-6.5	Not in release
linux-aws-6.8	Not in release
linux-aws-6.14	Not in release
linux-aws-hwe	Not in release
linux-azure	Ignored
linux-azure-4.15	Not affected
linux-azure-5.3	Ignored
linux-azure-5.4	Not affected
linux-azure-5.8	Not in release
linux-azure-5.11	Not in release
linux-azure-5.13	Not in release
linux-azure-5.15	Not in release
linux-azure-5.19	Not in release
linux-azure-6.2	Not in release
linux-azure-6.5	Not in release
linux-azure-6.8	Not in release
linux-azure-6.11	Not in release
linux-azure-6.14	Not in release
linux-azure-fde	Not in release
linux-azure-fde-5.15	Not in release
linux-azure-fde-5.19	Not in release
linux-azure-fde-6.2	Not in release
linux-azure-fde-6.8	Not in release
linux-azure-fde-6.14	Not in release
linux-azure-nvidia	Not in release
linux-azure-nvidia-6.14	Not in release
linux-bluefield	Not in release
linux-azure-edge	Ignored
linux-fips	Not affected
linux-aws-fips	Not affected
linux-azure-fips	Not affected
linux-gcp-fips	Not affected
linux-gcp	Ignored
linux-gcp-4.15	Not affected
linux-gcp-5.3	Ignored
linux-gcp-5.4	Not affected
linux-gcp-5.8	Not in release
linux-gcp-5.11	Not in release
linux-gcp-5.13	Not in release
linux-gcp-5.15	Not in release
linux-gcp-5.19	Not in release
linux-gcp-6.2	Not in release
linux-gcp-6.5	Not in release
linux-gcp-6.8	Not in release
linux-gcp-6.11	Not in release
linux-gcp-6.14	Not in release
linux-gke	Not in release
linux-gke-4.15	Ignored
linux-gke-5.4	Ignored
linux-gke-5.15	Not in release
linux-gkeop	Not in release
linux-gkeop-5.4	Ignored
linux-gkeop-5.15	Not in release
linux-ibm	Not in release
linux-ibm-5.4	Not affected
linux-ibm-5.15	Not in release
linux-ibm-6.8	Not in release
linux-intel-5.13	Not in release
linux-intel-iotg	Not in release
linux-intel-iotg-5.15	Not in release
linux-iot	Not in release
linux-intel-iot-realtime	Not in release
linux-lowlatency	Not in release
linux-lowlatency-hwe-5.15	Not in release
linux-lowlatency-hwe-5.19	Not in release
linux-lowlatency-hwe-6.2	Not in release
linux-lowlatency-hwe-6.5	Not in release
linux-lowlatency-hwe-6.8	Not in release
linux-lowlatency-hwe-6.11	Not in release
linux-nvidia	Not in release
linux-nvidia-6.2	Not in release
linux-nvidia-6.5	Not in release
linux-nvidia-6.8	Not in release
linux-nvidia-6.11	Not in release
linux-nvidia-lowlatency	Not in release
linux-nvidia-tegra	Not in release
linux-nvidia-tegra-5.15	Not in release
linux-nvidia-tegra-igx	Not in release
linux-oracle-5.0	Ignored
linux-oracle-5.3	Ignored
linux-oracle-5.4	Not affected
linux-oracle-5.8	Not in release
linux-oracle-5.11	Not in release
linux-oracle-5.13	Not in release
linux-oracle-5.15	Not in release
linux-oracle-6.5	Not in release
linux-oracle-6.8	Not in release
linux-oracle-6.14	Not in release
linux-oem	Ignored
linux-oem-5.6	Not in release
linux-oem-5.10	Not in release
linux-oem-5.13	Not in release
linux-oem-5.14	Not in release
linux-oem-5.17	Not in release
linux-oem-6.0	Not in release
linux-oem-6.1	Not in release
linux-oem-6.5	Not in release
linux-oem-6.8	Not in release
linux-oem-6.11	Not in release
linux-oem-6.14	Not in release
linux-oem-6.17	Not in release
linux-raspi2	Ignored
linux-raspi-5.4	Not affected
linux-raspi-realtime	Not in release
linux-realtime-6.8	Not in release
linux-realtime-6.14	Not in release
linux-riscv	Not in release
linux-riscv-5.8	Not in release
linux-riscv-5.11	Not in release
linux-riscv-5.15	Not in release
linux-riscv-5.19	Not in release
linux-riscv-6.5	Not in release
linux-riscv-6.8	Not in release
linux-riscv-6.14	Not in release
linux-starfive-5.19	Not in release
linux-starfive-6.2	Not in release
linux-starfive-6.5	Not in release
linux-xilinx	Not in release
linux-xilinx-zynqmp	Not in release
linux-oracle	Not affected
linux-raspi	Not in release
linux-realtime	Not in release

CVE-2020-36986

Medium priority

Needs evaluation

Prey 1.9.6 contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in the CronService to insert malicious code that...

1 affected package

prey

Package	18.04 LTS
prey	Needs evaluation

CVE-2026-24842

Medium priority

Needs evaluation

node-tar,a Tar for Node.js, contains a vulnerability in versions prior to 7.5.7 where the security check for hardlink entries uses different path resolution semantics than the actual hardlink creation logic. This mismatch allows...

1 affected package

node-tar

Package	18.04 LTS
node-tar	Needs evaluation

CVE-2026-23553

Medium priority

Needs evaluation

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly...

1 affected package

xen

Package	18.04 LTS
xen	Needs evaluation

CVE-2025-58150

Medium priority

Needs evaluation

Shadow mode tracing code uses a set of per-CPU variables to avoid cumbersome parameter passing. Some of these variables are written to with guest controlled data, of guest controllable size. That size can be larger than the...

1 affected package

xen

Package	18.04 LTS
xen	Needs evaluation

CVE-2026-24765

Medium priority

Needs evaluation

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution....

1 affected package

phpunit

Package	18.04 LTS
phpunit	Needs evaluation

CVE-2026-24688

Medium priority

Needs evaluation

pypdf is a free and open-source pure-python PDF library. An attacker who uses an infinite loop vulnerability that is present in versions prior to 6.6.2 can craft a PDF which leads to an infinite loop. This requires accessing the...

2 affected packages

pypdf, pypdf2

Package	18.04 LTS
pypdf	—
pypdf2	Needs evaluation

CVE-2026-24883

Medium priority

Not affected

In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success with sig->data[] set to a NULL value, leading to a denial of service (application crash).

1 affected package

gnupg2

Package	18.04 LTS
gnupg2	Not affected

CVE-2026-24882

Medium priority

Not affected

In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT command for TPM-backed RSA and ECC keys.

1 affected package

gnupg2

Package	18.04 LTS
gnupg2	Not affected

Export to JSON

Results by page: