Search CVE reports
341 – 350 of 1279 results
Buffer Overflow vulnerability in psdThumbnail::Read in PSDParser.cpp in FreeImage 3.19.0 [r1859] allows remote attackers to run arbitrary code via opening of crafted psd file.
1 affected package
freeimage
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freeimage | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
Buffer Overflow vulnerability in load function in PluginICO.cpp in FreeImage 3.19.0 [r1859] allows remote attackers to run arbitrary code via opening of crafted ico file.
1 affected package
freeimage
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freeimage | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
Some fixes available 2 of 57
Buffer Overflow vulnerability in LibRaw::stretch() function in libraw\src\postprocessing\aspect_ratio.cpp.
9 affected packages
darktable, exactimage, dcraw, rawtherapee, kodi...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| darktable | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| exactimage | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| dcraw | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| rawtherapee | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| kodi | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| digikam | Not affected | Not affected | Not affected | Fixed | Not affected |
| libraw | Not affected | Not affected | Not affected | Fixed | Needs evaluation |
| ufraw | Not in release | Not in release | Not in release | Not in release | Needs evaluation |
| xbmc | Not in release | Not in release | Not in release | Not in release | Not in release |
Buffer Overflow vulnerability in FreeImage_Load function in FreeImage Library 3.19.0(r1828) allows attackers to cuase a denial of service via crafted PFM file.
1 affected package
freeimage
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freeimage | — | Fixed | Fixed | Fixed | Fixed |
Buffer Overflow vulnerability in function LoadRGB in PluginDDS.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.
1 affected package
freeimage
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freeimage | — | Fixed | Fixed | Fixed | Fixed |
Some fixes available 9 of 12
Buffer Overflow vulnerability in function LoadPixelDataRLE8 in PluginBMP.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.
1 affected package
freeimage
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freeimage | Needs evaluation | Fixed | Fixed | Fixed | Fixed |
Buffer Overflow vulnerability in function C_IStream::read in PluginEXR.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.
1 affected package
freeimage
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freeimage | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted "mailto" link.
2 affected packages
gnome-gmail, viagee
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| gnome-gmail | Not in release | Not in release | Needs evaluation | Needs evaluation | Needs evaluation |
| viagee | Not in release | Not affected | Not in release | Not in release | Ignored |
An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel,...
31 affected packages
connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt, kvpnc...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| connman | — | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | — | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | — | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | — | Not affected | Not affected | Not affected | Not in release |
| kvpnc | — | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn | — | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn-daemon | — | Not in release | Not in release | Not in release | Not in release |
| libreswan | — | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | — | Not in release | Not affected | Not in release | Not in release |
| n2n | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | — | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | — | Not affected | Not affected | Not affected | Not affected |
| openconnect | — | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | — | Not affected | Not affected | Not affected | Not affected |
| openvpn | — | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | — | Not affected | Not affected | Not affected | Not affected |
| quicktun | — | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | — | Not affected | Not in release | Not in release | Not in release |
| softether-vpn | — | Not affected | Not affected | Not in release | Not in release |
| sshuttle | — | Not affected | Not affected | Not affected | Not affected |
| tinc | — | Not affected | Not affected | Not affected | Not affected |
| vpnc | — | Not affected | Not affected | Not affected | Not affected |
| wireguard | — | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | — | Not in release | Not in release | Not in release | Not in release |
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if...
31 affected packages
connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt, kvpnc...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| connman | — | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | — | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | — | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | — | Not affected | Not affected | Not affected | Not in release |
| kvpnc | — | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn | — | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn-daemon | — | Not in release | Not in release | Not in release | Not in release |
| libreswan | — | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | — | Not in release | Not affected | Not in release | Not in release |
| n2n | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | — | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | — | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | — | Not affected | Not affected | Not affected | Not affected |
| openconnect | — | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | — | Not affected | Not affected | Not affected | Not affected |
| openvpn | — | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | — | Not affected | Not affected | Not affected | Not affected |
| quicktun | — | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | — | Not affected | Not in release | Not in release | Not in release |
| softether-vpn | — | Not affected | Not affected | Not in release | Not in release |
| sshuttle | — | Not affected | Not affected | Not affected | Not affected |
| tinc | — | Not affected | Not affected | Not affected | Not affected |
| vpnc | — | Not affected | Not affected | Not affected | Not affected |
| wireguard | — | Ignored | Ignored | Not affected | Ignored |
| zentyal-openvpn | — | Not in release | Not in release | Not in release | Not in release |