Search CVE reports
221 – 230 of 33052 results
Not in release
Exposure of session signing secret in Checkmk <2.4.0p23, <2.3.0p45 and 2.2.0 allows an administrator of a remote site with config sync enabled to hijack sessions on the central site by forging session cookies.
1 affected package
check-mk
| Package | 24.04 LTS |
|---|---|
| check-mk | Not in release |
[Unknown description]
1 affected package
libplack-middleware-session-perl
| Package | 24.04 LTS |
|---|---|
| libplack-middleware-session-perl | Not affected |
Sending a maliciously crafted message to the kea-ctrl-agent, kea-dhcp-ddns, kea-dhcp4, or kea-dhcp6 daemons over any configured API socket or HA listener can cause the receiving daemon to exit with a stack overflow error.
1 affected package
isc-kea
| Package | 24.04 LTS |
|---|---|
| isc-kea | Needs evaluation |
A stack use-after-return flaw in SIG(0) handling code may enable ACL bypass
3 affected packages
bind9, isc-dhcp, bind9-libs
| Package | 24.04 LTS |
|---|---|
| bind9 | Not affected |
| isc-dhcp | Needs evaluation |
| bind9-libs | Not in release |
Authenticated query containing a TKEY record may cause named to terminate unexpectedly
3 affected packages
bind9, isc-dhcp, bind9-libs
| Package | 24.04 LTS |
|---|---|
| bind9 | Not affected |
| isc-dhcp | Needs evaluation |
| bind9-libs | Not in release |
Memory leak in code preparing DNSSEC proofs of non-existence
3 affected packages
bind9, isc-dhcp, bind9-libs
| Package | 24.04 LTS |
|---|---|
| bind9 | Not affected |
| isc-dhcp | Needs evaluation |
| bind9-libs | Not in release |
Some fixes available 1 of 2
Excessive NSEC3 iterations cause high CPU load during insecure delegation validation
3 affected packages
bind9, isc-dhcp, bind9-libs
| Package | 24.04 LTS |
|---|---|
| bind9 | Fixed |
| isc-dhcp | Needs evaluation |
| bind9-libs | Not in release |
Apache Artemis before version 2.52.0 is affected by an authentication bypass flaw which allows reading all messages exchanged via the broker and injection of new message ( CVE-2026-27446 https://www.cve.org/CVERecord ). Since...
1 affected package
artemis
| Package | 24.04 LTS |
|---|---|
| artemis | Needs evaluation |
Incorrect Authorization (CWE-863) vulnerability in Apache Artemis, Apache ActiveMQ Artemis exists when an application using the OpenWire protocol attempts to create a non-durable JMS topic subscription on an address that doesn't...
1 affected package
artemis
| Package | 24.04 LTS |
|---|---|
| artemis | Needs evaluation |
Out-of-bounds Read vulnerability in fabiangreffrath woof.This issue affects woof: before woof_15.3.0.
2 affected packages
woof, woof-doom
| Package | 24.04 LTS |
|---|---|
| woof | Not in release |
| woof-doom | Needs evaluation |