Search CVE reports
131 – 140 of 37106 results
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed...
8 affected packages
postgresql-18, postgresql-17, postgresql-16, postgresql-14, postgresql-12...
| Package | 20.04 LTS |
|---|---|
| postgresql-18 | — |
| postgresql-17 | — |
| postgresql-16 | — |
| postgresql-14 | — |
| postgresql-12 | Needs evaluation |
| postgresql-10 | — |
| postgresql-9.5 | — |
| postgresql-9.3 | — |
Arbitrary file read in the model loading mechanism (HDF5 integration) in Keras versions 3.0.0 through 3.13.1 on all supported platforms allows a remote attacker to read local files and disclose sensitive information via a crafted...
1 affected package
keras
| Package | 20.04 LTS |
|---|---|
| keras | Needs evaluation |
[Denial of Service due to malformed SFTP message]
1 affected package
libssh
| Package | 20.04 LTS |
|---|---|
| libssh | Needs evaluation |
[Denial of Service via inefficient regular expression processing]
1 affected package
libssh
| Package | 20.04 LTS |
|---|---|
| libssh | Needs evaluation |
[Buffer underflow in ssh_get_hexa() on invalid input]
1 affected package
libssh
| Package | 20.04 LTS |
|---|---|
| libssh | Needs evaluation |
[Denial of Service via improper configuration file handling]
1 affected package
libssh
| Package | 20.04 LTS |
|---|---|
| libssh | Needs evaluation |
[Improper sanitation of paths received from SCP servers]
1 affected package
libssh
| Package | 20.04 LTS |
|---|---|
| libssh | Needs evaluation |
ajv (Another JSON Schema Validator) through version 8.17.1 is vulnerable to Regular Expression Denial of Service (ReDoS) when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax ($data...
1 affected package
node-ajv
| Package | 20.04 LTS |
|---|---|
| node-ajv | Needs evaluation |
WWW::OAuth 1.000 and earlier for Perl uses the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions.
1 affected package
libwww-oauth-perl
| Package | 20.04 LTS |
|---|---|
| libwww-oauth-perl | Needs evaluation |
[Insecure default configuration leads to local man-in-the-middle attacks on Windows]
1 affected package
libssh
| Package | 20.04 LTS |
|---|---|
| libssh | Not affected |