Search CVE reports
241 – 250 of 30559 results
A vulnerability was determined in Open Asset Import Library Assimp up to 6.0.4. Affected is the function Assimp::Exporter::ExportToBlob of the file code/AssetLib/Ply/PlyLoader.cpp of the component PLY Model Handler....
1 affected package
assimp
| Package | 26.04 LTS |
|---|---|
| assimp | Needs evaluation |
Not in release
A flaw was found in the Fine-Grained Admin Permissions (FGAP) v2 implementation within Keycloak's administrative services. When FGAP v2 is enabled, the system fails to properly filter child groups based on the caller's specific...
1 affected package
python-keycloak
| Package | 26.04 LTS |
|---|---|
| python-keycloak | Not in release |
Not in release
A flaw was found in the ClientResource component of Keycloak's admin services when Fine-Grained Admin Permissions (FGAP) v2 is enabled. This issue allows a delegated administrator, who should only have limited control over...
1 affected package
python-keycloak
| Package | 26.04 LTS |
|---|---|
| python-keycloak | Not in release |
Not in release
A vulnerability was discovered in Keycloak's administrative interface that allows certain administrators to see information about groups they shouldn't have access to. When the new Fine-Grained Admin Permissions (FGAP v2) are...
1 affected package
python-keycloak
| Package | 26.04 LTS |
|---|---|
| python-keycloak | Not in release |
Two off-by-one errors in the FreeIPA ipa-otpd daemon's OAuth2 device authorization handler can cause out-of-bounds memory access when processing an oversized response from a configured external OAuth2/OIDC Identity Provider. An...
1 affected package
freeipa
| Package | 26.04 LTS |
|---|---|
| freeipa | Needs evaluation |
Puppet resource_api (shipped in Puppet Core 8.x and Puppet Enterprise 2023.8.x and 2025.x) does not preserve the sensitive flag on parameters defined via the resource-api, causing values such as passwords to be stored in cleartext...
1 affected package
ruby-puppet-resource-api
| Package | 26.04 LTS |
|---|---|
| ruby-puppet-resource-api | Needs evaluation |
[Unknown description]
1 affected package
gobgp
| Package | 26.04 LTS |
|---|---|
| gobgp | Needs evaluation |
A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur...
1 affected package
hplip
| Package | 26.04 LTS |
|---|---|
| hplip | Needs evaluation |
In PHP versions 8.2.* before 8.2.32, 8.3.* before 8.3.32, 8.4.* before 8.4.23, 8.5.* before 8.5.8, the AES-WRAP-PAD algorithm implementation in OpenSSL extension contains a buffer allocation flaw. The output buffer for the AES...
8 affected packages
php5, php7.0, php7.2, php7.4, php8.1...
| Package | 26.04 LTS |
|---|---|
| php5 | Not in release |
| php7.0 | Not in release |
| php7.2 | Not in release |
| php7.4 | Not in release |
| php8.1 | Not in release |
| php8.3 | Not in release |
| php8.4 | Not in release |
| php8.5 | Needs evaluation |
tls_wrap_reneg use after free
1 affected package
openvpn
| Package | 26.04 LTS |
|---|---|
| openvpn | Needs evaluation |