Search CVE reports

Toggle filters

41 – 50 of 65 results

CVE-2021-43519

Low priority
Needs evaluation

Stack overflow in lua_resume of ldo.c in Lua Interpreter 5.1.0~5.4.4 allows attackers to perform a Denial of Service via a crafted script file.

45 affected packages

enigma, freeciv, freedroidrpg, fs-uae, golly...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
enigma Not affected Not affected Not affected Not affected
freeciv Not affected Not affected Not affected Not affected
freedroidrpg Needs evaluation Needs evaluation Needs evaluation Needs evaluation
fs-uae Needs evaluation Needs evaluation Needs evaluation Needs evaluation
golly Needs evaluation Needs evaluation Needs evaluation Needs evaluation
goxel Needs evaluation Needs evaluation Needs evaluation Needs evaluation
grub2 Not affected Not affected Not affected Not affected
gtk2-engines Not affected Not affected Not affected Not affected
haskell-hslua Not affected Not affected Not affected Not affected
hedgewars Not affected Not affected Not affected Not affected
lua5.1 Not affected Not affected Not affected Not affected
lua5.2 Not affected Not affected Not affected Not affected
lua5.3 Not affected Not affected Not affected Not affected
lua5.4 Not affected Not affected Not in release Not in release
lua50 Not in release Not in release Not affected Not affected
luajit Not affected Not affected Not affected Not affected
mame Not affected Not affected Not affected Not affected
naev Needs evaluation Needs evaluation Needs evaluation
openscenegraph Not affected Not affected Not affected Not affected
redis Not affected Not affected Not affected Not affected
rust-lua52-sys Needs evaluation Needs evaluation Needs evaluation
scite Needs evaluation Needs evaluation Needs evaluation Needs evaluation
scorched3d Needs evaluation Needs evaluation Needs evaluation Needs evaluation
scummvm Not affected Not affected Not affected Not affected
spring Not affected Not affected Not affected Not affected
syslinux Not affected Not affected Not affected Not affected
syslinux-legacy Not in release Not in release Not affected Not affected
tagua Not affected Not affected Not affected Not affected
tarantool Needs evaluation Needs evaluation Needs evaluation
texlive-bin Not affected Not affected Not affected Not affected
tup Needs evaluation Needs evaluation Needs evaluation
ufoai Not affected Not affected Not affected Not affected
vifm Needs evaluation Needs evaluation Needs evaluation Needs evaluation
wcc Needs evaluation Needs evaluation Needs evaluation Needs evaluation
wesnoth
widelands Needs evaluation Needs evaluation Needs evaluation Needs evaluation
xmoto Not affected Not affected Not affected Not affected
zfs-linux Not affected Not affected Not affected Not affected
ardour Not affected Not affected Not affected Not affected
bam Needs evaluation Needs evaluation Needs evaluation Needs evaluation
blobby Needs evaluation Needs evaluation Needs evaluation Needs evaluation
ceph Not affected Not affected Not affected Not affected
darktable Needs evaluation Needs evaluation Needs evaluation Needs evaluation
eja Not in release Needs evaluation Needs evaluation Needs evaluation
emscripten Needs evaluation Needs evaluation Needs evaluation
Show all 45 packages Show less packages

CVE-2021-3418

Medium priority
Not affected

If certificates that signed grub are installed into db, grub can be booted directly. It will then boot any kernel without signature validation. The booted kernel will think it was booted in secureboot mode and will implement...

3 affected packages

grub2, grub2-signed, grub2-unsigned

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
grub2 Not affected Not affected Not affected
grub2-signed Not affected Not affected Not affected
grub2-unsigned Not affected Not affected Not affected
Show less packages

CVE-2021-20233

Medium priority

Some fixes available 12 of 13

A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually...

3 affected packages

grub2-signed, grub2-unsigned, grub2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
grub2-signed Not affected Not affected Fixed Fixed
grub2-unsigned Not affected Not affected Fixed Fixed
grub2 Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-20225

Medium priority

Some fixes available 12 of 13

A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The...

3 affected packages

grub2-signed, grub2-unsigned, grub2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
grub2-signed Not affected Not affected Fixed Fixed
grub2-unsigned Not affected Not affected Fixed Fixed
grub2 Not affected Not affected Not affected Not affected
Show less packages

CVE-2020-27779

Medium priority

Some fixes available 12 of 13

A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot...

3 affected packages

grub2-signed, grub2-unsigned, grub2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
grub2-signed Not affected Not affected Fixed Fixed
grub2-unsigned Not affected Not affected Fixed Fixed
grub2 Not affected Not affected Not affected Not affected
Show less packages

CVE-2020-27749

Medium priority

Some fixes available 12 of 13

A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient...

3 affected packages

grub2-unsigned, grub2-signed, grub2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
grub2-unsigned Not affected Not affected Fixed Fixed
grub2-signed Not affected Not affected Fixed Fixed
grub2 Not affected Not affected Not affected Not affected
Show less packages

CVE-2020-25647

Medium priority
Not affected

A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker...

3 affected packages

grub2, grub2-signed, grub2-unsigned

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
grub2 Not affected Not affected Not affected
grub2-signed Not affected Not affected Not affected
grub2-unsigned Not affected Not affected Not affected
Show less packages

CVE-2020-25632

Medium priority

Some fixes available 12 of 13

A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free...

3 affected packages

grub2-unsigned, grub2-signed, grub2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
grub2-unsigned Not affected Not affected Fixed Fixed
grub2-signed Not affected Not affected Fixed Fixed
grub2 Not affected Not affected Not affected Not affected
Show less packages

CVE-2020-14372

Medium priority

Some fixes available 12 of 13

A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary...

3 affected packages

grub2-signed, grub2-unsigned, grub2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
grub2-signed Not affected Not affected Fixed Fixed
grub2-unsigned Not affected Not affected Fixed Fixed
grub2 Not affected Not affected Not affected Not affected
Show less packages

CVE-2020-15707

Medium priority

Some fixes available 8 of 9

Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading...

3 affected packages

grub2, grub2-signed, grub2-unsigned

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
grub2 Not affected Not affected Fixed Fixed
grub2-signed Not affected Not affected Fixed Fixed
grub2-unsigned Not affected Not affected Not affected Not affected
Show less packages
  1. Previous page
  2. 3
  3. 4
  4. 5
  5. 6
  6. 7
  7. Next page
Export to JSON