Vulnerabilities |
87 via 380 paths |
---|---|
Dependencies |
414 |
Source |
Docker |
Target OS |
ubuntu:21.10 |
medium severity
- Vulnerable module: curl
- Introduced through: curl@7.74.0-1.3ubuntu2.2, curl/libcurl3-gnutls@7.74.0-1.3ubuntu2.2 and others
- Fixed in: 7.74.0-1.3ubuntu2.3
Detailed paths
-
Introduced through: buildpack-deps@impish › curl@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl3-gnutls@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl4@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl4-openssl-dev@7.74.0-1.3ubuntu2.2
NVD Description
Note: Versions mentioned in the description apply only to the upstream curl
package and not the curl
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
When curl < 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the operation with a rename from a temporary name to the final target file name.In that rename operation, it might accidentally widen the permissions for the target file, leaving the updated file accessible to more users than intended.
Remediation
Upgrade Ubuntu:21.10
curl
to version 7.74.0-1.3ubuntu2.3 or higher.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-32207
- https://hackerone.com/reports/1573634
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
- https://www.debian.org/security/2022/dsa-5197
- https://security.netapp.com/advisory/ntap-20220915-0003/
- https://support.apple.com/kb/HT213488
- http://seclists.org/fulldisclosure/2022/Oct/41
- http://seclists.org/fulldisclosure/2022/Oct/28
- https://security.gentoo.org/glsa/202212-01
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
medium severity
- Vulnerable module: freetype/libfreetype-dev
- Introduced through: freetype/libfreetype-dev@2.10.4+dfsg-1build1, freetype/libfreetype6@2.10.4+dfsg-1build1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › freetype/libfreetype-dev@2.10.4+dfsg-1build1
-
Introduced through: buildpack-deps@impish › freetype/libfreetype6@2.10.4+dfsg-1build1
-
Introduced through: buildpack-deps@impish › freetype/libfreetype6-dev@2.10.4+dfsg-1build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream freetype
package and not the freetype
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function sfnt_init_face.
Remediation
There is no fixed version for Ubuntu:21.10
freetype
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-27404
- https://gitlab.freedesktop.org/freetype/freetype/-/issues/1138
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FDU2FOEMCEF6WVR6ZBIH5MT5O7FAK6UP/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYVC2NPKKXKP3TWJWG4ONYWNO6ZPHLA5/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EFPNRKDLCXHZVYYQLQMP44UHLU32GA6Z/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IWQ7IB2A75MEHM63WEUXBYEC7OR5SGDY/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TCEMWCM46PKM4U5ENRASPKQD6JDOLKRU/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EFPNRKDLCXHZVYYQLQMP44UHLU32GA6Z/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FDU2FOEMCEF6WVR6ZBIH5MT5O7FAK6UP/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IWQ7IB2A75MEHM63WEUXBYEC7OR5SGDY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYVC2NPKKXKP3TWJWG4ONYWNO6ZPHLA5/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TCEMWCM46PKM4U5ENRASPKQD6JDOLKRU/
- https://security.gentoo.org/glsa/202402-06
medium severity
- Vulnerable module: openssl
- Introduced through: openssl@1.1.1l-1ubuntu1.3, openssl/libssl-dev@1.1.1l-1ubuntu1.3 and others
- Fixed in: 1.1.1l-1ubuntu1.5
Detailed paths
-
Introduced through: buildpack-deps@impish › openssl@1.1.1l-1ubuntu1.3
-
Introduced through: buildpack-deps@impish › openssl/libssl-dev@1.1.1l-1ubuntu1.3
-
Introduced through: buildpack-deps@impish › openssl/libssl1.1@1.1.1l-1ubuntu1.3
NVD Description
Note: Versions mentioned in the description apply only to the upstream openssl
package and not the openssl
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. When the CVE-2022-1292 was fixed it was not discovered that there are other places in the script where the file names of certificates being hashed were possibly passed to a command executed through the shell. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.4 (Affected 3.0.0,3.0.1,3.0.2,3.0.3). Fixed in OpenSSL 1.1.1p (Affected 1.1.1-1.1.1o). Fixed in OpenSSL 1.0.2zf (Affected 1.0.2-1.0.2ze).
Remediation
Upgrade Ubuntu:21.10
openssl
to version 1.1.1l-1ubuntu1.5 or higher.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-2068
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9639817dac8bbbaa64d09efad7464ccc405527c7
- https://www.openssl.org/news/secadv/20220621.txt
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7a9c027159fe9e1bbc2cd38a8a2914bff0d5abd9
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2c9c35870601b4a44d86ddbf512b38df38285cfa
- https://www.debian.org/security/2022/dsa-5169
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6WZZBKUHQFGSKGNXXKICSRPL7AMVW5M5/
- https://security.netapp.com/advisory/ntap-20220707-0008/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCMNWKERPBKOEBNL7CLTTX3ZZCZLH7XA/
- https://cert-portal.siemens.com/productcert/pdf/ssa-332410.pdf
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=2c9c35870601b4a44d86ddbf512b38df38285cfa
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=7a9c027159fe9e1bbc2cd38a8a2914bff0d5abd9
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=9639817dac8bbbaa64d09efad7464ccc405527c7
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6WZZBKUHQFGSKGNXXKICSRPL7AMVW5M5/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMNWKERPBKOEBNL7CLTTX3ZZCZLH7XA/
medium severity
- Vulnerable module: aom/libaom0
- Introduced through: aom/libaom0@1.0.0.errata1-3build1
Detailed paths
-
Introduced through: buildpack-deps@impish › aom/libaom0@1.0.0.errata1-3build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream aom
package and not the aom
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
AOM v2.0.1 was discovered to contain a global buffer overflow via the component av1/encoder/partition_search.h.
Remediation
There is no fixed version for Ubuntu:21.10
aom
.
References
medium severity
- Vulnerable module: aom/libaom0
- Introduced through: aom/libaom0@1.0.0.errata1-3build1
Detailed paths
-
Introduced through: buildpack-deps@impish › aom/libaom0@1.0.0.errata1-3build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream aom
package and not the aom
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
AOM v2.0.1 was discovered to contain a stack buffer overflow via the component stats/rate_hist.c.
Remediation
There is no fixed version for Ubuntu:21.10
aom
.
References
medium severity
- Vulnerable module: aom/libaom0
- Introduced through: aom/libaom0@1.0.0.errata1-3build1
Detailed paths
-
Introduced through: buildpack-deps@impish › aom/libaom0@1.0.0.errata1-3build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream aom
package and not the aom
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
AOM v2.0.1 was discovered to contain a stack buffer overflow via the component src/aom_image.c.
Remediation
There is no fixed version for Ubuntu:21.10
aom
.
References
medium severity
- Vulnerable module: gdk-pixbuf/gir1.2-gdkpixbuf-2.0
- Introduced through: gdk-pixbuf/gir1.2-gdkpixbuf-2.0@2.42.6+dfsg-1build2, gdk-pixbuf/libgdk-pixbuf-2.0-0@2.42.6+dfsg-1build2 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › gdk-pixbuf/gir1.2-gdkpixbuf-2.0@2.42.6+dfsg-1build2
-
Introduced through: buildpack-deps@impish › gdk-pixbuf/libgdk-pixbuf-2.0-0@2.42.6+dfsg-1build2
-
Introduced through: buildpack-deps@impish › gdk-pixbuf/libgdk-pixbuf-2.0-dev@2.42.6+dfsg-1build2
-
Introduced through: buildpack-deps@impish › gdk-pixbuf/libgdk-pixbuf2.0-bin@2.42.6+dfsg-1build2
-
Introduced through: buildpack-deps@impish › gdk-pixbuf/libgdk-pixbuf2.0-common@2.42.6+dfsg-1build2
NVD Description
Note: Versions mentioned in the description apply only to the upstream gdk-pixbuf
package and not the gdk-pixbuf
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
GNOME gdk-pixbuf 2.42.6 is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image data in GIF files with lzw minimum code size equals to 12.
Remediation
There is no fixed version for Ubuntu:21.10
gdk-pixbuf
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-44648
- https://gitlab.gnome.org/GNOME/gdk-pixbuf/-/issues/136
- https://sahildhar.github.io/blogpost/GdkPixbuf-Heap-Buffer-Overflow-in-lzw_decoder_new/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JEVTOGIJITK2N5AOOLKKMDIICZDQE6CH/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PEKBMOO52RXONWKB6ZKKHTVPLF6WC3KF/
- https://www.debian.org/security/2022/dsa-5228
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JEVTOGIJITK2N5AOOLKKMDIICZDQE6CH/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEKBMOO52RXONWKB6ZKKHTVPLF6WC3KF/
medium severity
- Vulnerable module: sqlite3/libsqlite3-0
- Introduced through: sqlite3/libsqlite3-0@3.35.5-1ubuntu0.1 and sqlite3/libsqlite3-dev@3.35.5-1ubuntu0.1
Detailed paths
-
Introduced through: buildpack-deps@impish › sqlite3/libsqlite3-0@3.35.5-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › sqlite3/libsqlite3-dev@3.35.5-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream sqlite3
package and not the sqlite3
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. A malicious application may cause a denial of service or potentially disclose memory contents.
Remediation
There is no fixed version for Ubuntu:21.10
sqlite3
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2020-9794
- https://security-tracker.debian.org/tracker/CVE-2020-9794
- https://support.apple.com/HT211168
- https://support.apple.com/HT211170
- https://support.apple.com/HT211171
- https://support.apple.com/HT211175
- https://support.apple.com/HT211178
- https://support.apple.com/HT211179
- https://support.apple.com/HT211181
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
medium severity
- Vulnerable module: e2fsprogs
- Introduced through: e2fsprogs@1.46.3-1ubuntu3, e2fsprogs/libcom-err2@1.46.3-1ubuntu3 and others
- Fixed in: 1.46.3-1ubuntu3.1
Detailed paths
-
Introduced through: buildpack-deps@impish › e2fsprogs@1.46.3-1ubuntu3
-
Introduced through: buildpack-deps@impish › e2fsprogs/libcom-err2@1.46.3-1ubuntu3
-
Introduced through: buildpack-deps@impish › e2fsprogs/libext2fs2@1.46.3-1ubuntu3
-
Introduced through: buildpack-deps@impish › e2fsprogs/libss2@1.46.3-1ubuntu3
-
Introduced through: buildpack-deps@impish › e2fsprogs/logsave@1.46.3-1ubuntu3
NVD Description
Note: Versions mentioned in the description apply only to the upstream e2fsprogs
package and not the e2fsprogs
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem.
Remediation
Upgrade Ubuntu:21.10
e2fsprogs
to version 1.46.3-1ubuntu3.1 or higher.
References
medium severity
- Vulnerable module: freetype/libfreetype-dev
- Introduced through: freetype/libfreetype-dev@2.10.4+dfsg-1build1, freetype/libfreetype6@2.10.4+dfsg-1build1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › freetype/libfreetype-dev@2.10.4+dfsg-1build1
-
Introduced through: buildpack-deps@impish › freetype/libfreetype6@2.10.4+dfsg-1build1
-
Introduced through: buildpack-deps@impish › freetype/libfreetype6-dev@2.10.4+dfsg-1build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream freetype
package and not the freetype
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based buffer overflow.
Remediation
There is no fixed version for Ubuntu:21.10
freetype
.
References
medium severity
- Vulnerable module: git
- Introduced through: git@1:2.32.0-1ubuntu1.2 and git/git-man@1:2.32.0-1ubuntu1.2
- Fixed in: 1:2.32.0-1ubuntu1.3
Detailed paths
-
Introduced through: buildpack-deps@impish › git@1:2.32.0-1ubuntu1.2
-
Introduced through: buildpack-deps@impish › git/git-man@1:2.32.0-1ubuntu1.2
NVD Description
Note: Versions mentioned in the description apply only to the upstream git
package and not the git
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5, is vulnerable to privilege escalation in all platforms. An unsuspecting user could still be affected by the issue reported in CVE-2022-24765, for example when navigating as root into a shared tmp directory that is owned by them, but where an attacker could create a git repository. Versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5 contain a patch for this issue. The simplest way to avoid being affected by the exploit described in the example is to avoid running git as root (or an Administrator in Windows), and if needed to reduce its use to a minimum. While a generic workaround is not possible, a system could be hardened from the exploit described in the example by removing any such repository if it exists already and creating one as root to block any future attacks.
Remediation
Upgrade Ubuntu:21.10
git
to version 1:2.32.0-1ubuntu1.3 or higher.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-29187
- https://github.blog/2022-04-12-git-security-vulnerability-announced
- https://lore.kernel.org/git/xmqqv8s2fefi.fsf@gitster.g/T/#u
- https://github.com/git/git/security/advisories/GHSA-j342-m5hw-rr3v
- http://www.openwall.com/lists/oss-security/2022/07/14/1
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TRZG5CDUQ27OWTPC5MQOR4UASNXHWEZS/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDI325LOO2XBDDKLINOAQJEG6MHAURZE/
- https://support.apple.com/kb/HT213496
- http://seclists.org/fulldisclosure/2022/Nov/1
- https://lists.debian.org/debian-lts-announce/2022/12/msg00025.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DIKWISWUDFT2FAITYIA6372BVLH3OOOC/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YROCMBWYFKRSS64PO6FUNM6L7LKBUKVW/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVOLER2PIGMHPQMDGG4RDE2KZB74QLA2/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UDZRZAL7QULOB6V7MKT66MOMWJLBJPX4/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDI325LOO2XBDDKLINOAQJEG6MHAURZE/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DIKWISWUDFT2FAITYIA6372BVLH3OOOC/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVOLER2PIGMHPQMDGG4RDE2KZB74QLA2/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TRZG5CDUQ27OWTPC5MQOR4UASNXHWEZS/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDZRZAL7QULOB6V7MKT66MOMWJLBJPX4/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YROCMBWYFKRSS64PO6FUNM6L7LKBUKVW/
- https://lore.kernel.org/git/xmqqv8s2fefi.fsf%40gitster.g/T/#u
- https://security.gentoo.org/glsa/202312-15
- https://security.gentoo.org/glsa/202401-17
medium severity
- Vulnerable module: perl
- Introduced through: perl@5.32.1-3ubuntu3, perl/libperl5.32@5.32.1-3ubuntu3 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › perl@5.32.1-3ubuntu3
-
Introduced through: buildpack-deps@impish › perl/libperl5.32@5.32.1-3ubuntu3
-
Introduced through: buildpack-deps@impish › perl/perl-base@5.32.1-3ubuntu3
-
Introduced through: buildpack-deps@impish › perl/perl-modules-5.32@5.32.1-3ubuntu3
NVD Description
Note: Versions mentioned in the description apply only to the upstream perl
package and not the perl
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
CPAN 2.28 allows Signature Verification Bypass.
Remediation
There is no fixed version for Ubuntu:21.10
perl
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2020-16156
- https://metacpan.org/pod/distribution/CPAN/scripts/cpan
- https://blog.hackeriet.no/cpan-signature-verification-vulnerabilities/
- http://blogs.perl.org/users/neilb/2021/11/addressing-cpan-vulnerabilities-related-to-checksums.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SZ32AJIV4RHJMLWLU5QULGKMMIHYOMDC/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SD6RYOJII7HRJ6WVORFNVTYNOFY5JDXN/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SD6RYOJII7HRJ6WVORFNVTYNOFY5JDXN/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SZ32AJIV4RHJMLWLU5QULGKMMIHYOMDC/
medium severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a denial of service.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
medium severity
- Vulnerable module: aom/libaom0
- Introduced through: aom/libaom0@1.0.0.errata1-3build1
Detailed paths
-
Introduced through: buildpack-deps@impish › aom/libaom0@1.0.0.errata1-3build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream aom
package and not the aom
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component rate_hist.c.
Remediation
There is no fixed version for Ubuntu:21.10
aom
.
References
medium severity
- Vulnerable module: aom/libaom0
- Introduced through: aom/libaom0@1.0.0.errata1-3build1
Detailed paths
-
Introduced through: buildpack-deps@impish › aom/libaom0@1.0.0.errata1-3build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream aom
package and not the aom
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component av1/av1_dx_iface.c.
Remediation
There is no fixed version for Ubuntu:21.10
aom
.
References
medium severity
- Vulnerable module: curl
- Introduced through: curl@7.74.0-1.3ubuntu2.2, curl/libcurl3-gnutls@7.74.0-1.3ubuntu2.2 and others
- Fixed in: 7.74.0-1.3ubuntu2.3
Detailed paths
-
Introduced through: buildpack-deps@impish › curl@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl3-gnutls@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl4@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl4-openssl-dev@7.74.0-1.3ubuntu2.2
NVD Description
Note: Versions mentioned in the description apply only to the upstream curl
package and not the curl
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
curl < 7.84.0 supports "chained" HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and potentially with different algorithms. The number of acceptable "links" in this "decompression chain" was unbounded, allowing a malicious server to insert a virtually unlimited number of compression steps.The use of such a decompression chain could result in a "malloc bomb", makingcurl end up spending enormous amounts of allocated heap memory, or trying toand returning out of memory errors.
Remediation
Upgrade Ubuntu:21.10
curl
to version 7.74.0-1.3ubuntu2.3 or higher.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-32206
- https://hackerone.com/reports/1570651
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
- https://www.debian.org/security/2022/dsa-5197
- https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
- https://security.netapp.com/advisory/ntap-20220915-0003/
- https://support.apple.com/kb/HT213488
- http://seclists.org/fulldisclosure/2022/Oct/41
- http://seclists.org/fulldisclosure/2022/Oct/28
- https://cert-portal.siemens.com/productcert/pdf/ssa-333517.pdf
- https://security.gentoo.org/glsa/202212-01
- http://www.openwall.com/lists/oss-security/2023/02/15/3
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
medium severity
- Vulnerable module: gnupg2/dirmngr
- Introduced through: gnupg2/dirmngr@2.2.20-1ubuntu4, gnupg2/gnupg@2.2.20-1ubuntu4 and others
- Fixed in: 2.2.20-1ubuntu4.1
Detailed paths
-
Introduced through: buildpack-deps@impish › gnupg2/dirmngr@2.2.20-1ubuntu4
-
Introduced through: buildpack-deps@impish › gnupg2/gnupg@2.2.20-1ubuntu4
-
Introduced through: buildpack-deps@impish › gnupg2/gnupg-l10n@2.2.20-1ubuntu4
-
Introduced through: buildpack-deps@impish › gnupg2/gnupg-utils@2.2.20-1ubuntu4
-
Introduced through: buildpack-deps@impish › gnupg2/gpg@2.2.20-1ubuntu4
-
Introduced through: buildpack-deps@impish › gnupg2/gpg-agent@2.2.20-1ubuntu4
-
Introduced through: buildpack-deps@impish › gnupg2/gpg-wks-client@2.2.20-1ubuntu4
-
Introduced through: buildpack-deps@impish › gnupg2/gpg-wks-server@2.2.20-1ubuntu4
-
Introduced through: buildpack-deps@impish › gnupg2/gpgconf@2.2.20-1ubuntu4
-
Introduced through: buildpack-deps@impish › gnupg2/gpgsm@2.2.20-1ubuntu4
-
Introduced through: buildpack-deps@impish › gnupg2/gpgv@2.2.20-1ubuntu4
NVD Description
Note: Versions mentioned in the description apply only to the upstream gnupg2
package and not the gnupg2
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line.
Remediation
Upgrade Ubuntu:21.10
gnupg2
to version 2.2.20-1ubuntu4.1 or higher.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-34903
- https://dev.gnupg.org/T6027
- https://bugs.debian.org/1014157
- https://www.openwall.com/lists/oss-security/2022/06/30/1
- http://www.openwall.com/lists/oss-security/2022/07/02/1
- https://www.debian.org/security/2022/dsa-5174
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NPTAR76EIZY7NQFENSOZO7U473257OVZ/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VN63GBTMRWO36Y7BKA2WQHROAKCXKCBL/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FRLWJQ76A4UKHI3Q36BKSJKS4LFLQO33/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VU64FUVG2PRZBSHFOQRSP7KDVEIZ23OS/
- https://security.netapp.com/advisory/ntap-20220826-0005/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FRLWJQ76A4UKHI3Q36BKSJKS4LFLQO33/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NPTAR76EIZY7NQFENSOZO7U473257OVZ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VN63GBTMRWO36Y7BKA2WQHROAKCXKCBL/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VU64FUVG2PRZBSHFOQRSP7KDVEIZ23OS/
medium severity
- Vulnerable module: krb5/krb5-multidev
- Introduced through: krb5/krb5-multidev@1.18.3-6, krb5/libgssapi-krb5-2@1.18.3-6 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › krb5/krb5-multidev@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libgssapi-krb5-2@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libgssrpc4@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libk5crypto3@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkadm5clnt-mit12@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkadm5srv-mit12@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkdb5-10@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkrb5-3@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkrb5-dev@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkrb5support0@1.18.3-6
NVD Description
Note: Versions mentioned in the description apply only to the upstream krb5
package and not the krb5
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field.
Remediation
There is no fixed version for Ubuntu:21.10
krb5
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-37750
- https://github.com/krb5/krb5/commit/d775c95af7606a51bf79547a94fa52ddd1cb7f49
- https://security.netapp.com/advisory/ntap-20210923-0002/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MFCLW7D46E4VCREKKH453T5DA4XOLHU2/
- https://github.com/krb5/krb5/releases
- https://web.mit.edu/kerberos/advisories/
- https://lists.debian.org/debian-lts-announce/2021/09/msg00019.html
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://www.starwindsoftware.com/security/sw-20220817-0004/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MFCLW7D46E4VCREKKH453T5DA4XOLHU2/
medium severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply a specially crafted image could affect availability with a low impact to data integrity. This flaw affects ImageMagick versions prior to 6.9.10-68 and 7.0.8-68.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2020-25664
- https://bugzilla.redhat.com/show_bug.cgi?id=1891605
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z3J6D7POCQYQKNVRDYLTTPM5SQC3WVTR/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z3J6D7POCQYQKNVRDYLTTPM5SQC3WVTR/
medium severity
- Vulnerable module: wget
- Introduced through: wget@1.21-1ubuntu3
Detailed paths
-
Introduced through: buildpack-deps@impish › wget@1.21-1ubuntu3
NVD Description
Note: Versions mentioned in the description apply only to the upstream wget
package and not the wget
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007.
Remediation
There is no fixed version for Ubuntu:21.10
wget
.
References
medium severity
- Vulnerable module: curl
- Introduced through: curl@7.74.0-1.3ubuntu2.2, curl/libcurl3-gnutls@7.74.0-1.3ubuntu2.2 and others
- Fixed in: 7.74.0-1.3ubuntu2.3
Detailed paths
-
Introduced through: buildpack-deps@impish › curl@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl3-gnutls@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl4@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl4-openssl-dev@7.74.0-1.3ubuntu2.2
NVD Description
Note: Versions mentioned in the description apply only to the upstream curl
package and not the curl
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
When curl < 7.84.0 does FTP transfers secured by krb5, it handles message verification failures wrongly. This flaw makes it possible for a Man-In-The-Middle attack to go unnoticed and even allows it to inject data to the client.
Remediation
Upgrade Ubuntu:21.10
curl
to version 7.74.0-1.3ubuntu2.3 or higher.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-32208
- https://hackerone.com/reports/1590071
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
- https://www.debian.org/security/2022/dsa-5197
- https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
- https://security.netapp.com/advisory/ntap-20220915-0003/
- https://support.apple.com/kb/HT213488
- http://seclists.org/fulldisclosure/2022/Oct/41
- http://seclists.org/fulldisclosure/2022/Oct/28
- https://security.gentoo.org/glsa/202212-01
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
medium severity
- Vulnerable module: gcc-defaults/cpp
- Introduced through: gcc-defaults/cpp@4:11.2.0-1ubuntu1, gcc-defaults/g++@4:11.2.0-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › gcc-defaults/cpp@4:11.2.0-1ubuntu1
-
Introduced through: buildpack-deps@impish › gcc-defaults/g++@4:11.2.0-1ubuntu1
-
Introduced through: buildpack-deps@impish › gcc-defaults/gcc@4:11.2.0-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream gcc-defaults
package and not the gcc-defaults
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka "straight-line speculation."
Remediation
There is no fixed version for Ubuntu:21.10
gcc-defaults
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2020-13844
- http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html
- https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability
- https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions
- https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html
- https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation
- http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html
- http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html
medium severity
- Vulnerable module: harfbuzz/libharfbuzz0b
- Introduced through: harfbuzz/libharfbuzz0b@2.7.4-1ubuntu1
Detailed paths
-
Introduced through: buildpack-deps@impish › harfbuzz/libharfbuzz0b@2.7.4-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream harfbuzz
package and not the harfbuzz
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service (DoS) via unspecified vectors.
Remediation
There is no fixed version for Ubuntu:21.10
harfbuzz
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-33068
- https://github.com/harfbuzz/harfbuzz/issues/3557
- https://github.com/harfbuzz/harfbuzz/commit/62e803b36173fd096d7ad460dd1d1db9be542593
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FQBJ24W6TXLSAQWCFW7IBGUMX4AJI3S4/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QQMEXOVDL3T2UXKBCON7JSOCE646G7HG/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W56WTC5IY4EIUHVUIHMCXA3BSBZLSZCI/
- https://security.gentoo.org/glsa/202209-11
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FQBJ24W6TXLSAQWCFW7IBGUMX4AJI3S4/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQMEXOVDL3T2UXKBCON7JSOCE646G7HG/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W56WTC5IY4EIUHVUIHMCXA3BSBZLSZCI/
medium severity
- Vulnerable module: mysql-8.0/libmysqlclient-dev
- Introduced through: mysql-8.0/libmysqlclient-dev@8.0.29-0ubuntu0.21.10.2 and mysql-8.0/libmysqlclient21@8.0.29-0ubuntu0.21.10.2
Detailed paths
-
Introduced through: buildpack-deps@impish › mysql-8.0/libmysqlclient-dev@8.0.29-0ubuntu0.21.10.2
-
Introduced through: buildpack-deps@impish › mysql-8.0/libmysqlclient21@8.0.29-0ubuntu0.21.10.2
NVD Description
Note: Versions mentioned in the description apply only to the upstream mysql-8.0
package and not the mysql-8.0
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
Duktape v2.99.99 was discovered to contain a SEGV vulnerability via the component duk_push_tval in duktape/duk_api_stack.c.
Remediation
There is no fixed version for Ubuntu:21.10
mysql-8.0
.
References
medium severity
- Vulnerable module: openexr/libopenexr-dev
- Introduced through: openexr/libopenexr-dev@2.5.4-2 and openexr/libopenexr25@2.5.4-2
Detailed paths
-
Introduced through: buildpack-deps@impish › openexr/libopenexr-dev@2.5.4-2
-
Introduced through: buildpack-deps@impish › openexr/libopenexr25@2.5.4-2
NVD Description
Note: Versions mentioned in the description apply only to the upstream openexr
package and not the openexr
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths.
Remediation
There is no fixed version for Ubuntu:21.10
openexr
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-3933
- https://bugzilla.redhat.com/show_bug.cgi?id=2019783
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I2JSMJ7HLWFPYYV7IAQZD5ZUUUN7RWBN/
- https://security.gentoo.org/glsa/202210-31
- https://www.debian.org/security/2022/dsa-5299
- https://lists.debian.org/debian-lts-announce/2022/12/msg00022.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I2JSMJ7HLWFPYYV7IAQZD5ZUUUN7RWBN/
medium severity
- Vulnerable module: openexr/libopenexr-dev
- Introduced through: openexr/libopenexr-dev@2.5.4-2 and openexr/libopenexr25@2.5.4-2
Detailed paths
-
Introduced through: buildpack-deps@impish › openexr/libopenexr-dev@2.5.4-2
-
Introduced through: buildpack-deps@impish › openexr/libopenexr25@2.5.4-2
NVD Description
Note: Versions mentioned in the description apply only to the upstream openexr
package and not the openexr
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
There's a flaw in OpenEXR's rleUncompress functionality in versions prior to 3.0.5. An attacker who is able to submit a crafted file to an application linked with OpenEXR could cause an out-of-bounds read. The greatest risk from this flaw is to application availability.
Remediation
There is no fixed version for Ubuntu:21.10
openexr
.
References
medium severity
- Vulnerable module: tiff/libtiff-dev
- Introduced through: tiff/libtiff-dev@4.3.0-1ubuntu0.1, tiff/libtiff5@4.3.0-1ubuntu0.1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › tiff/libtiff-dev@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiff5@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiffxx5@4.3.0-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream tiff
package and not the tiff
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
Divide By Zero error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f8d0f9aa.
Remediation
There is no fixed version for Ubuntu:21.10
tiff
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-0909
- https://gitlab.com/libtiff/libtiff/-/merge_requests/310
- https://gitlab.com/libtiff/libtiff/-/issues/393
- https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0909.json
- https://www.debian.org/security/2022/dsa-5108
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
- https://security.netapp.com/advisory/ntap-20220506-0002/
- https://security.gentoo.org/glsa/202210-10
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
medium severity
- Vulnerable module: tiff/libtiff-dev
- Introduced through: tiff/libtiff-dev@4.3.0-1ubuntu0.1, tiff/libtiff5@4.3.0-1ubuntu0.1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › tiff/libtiff-dev@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiff5@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiffxx5@4.3.0-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream tiff
package and not the tiff
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.
Remediation
There is no fixed version for Ubuntu:21.10
tiff
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-0908
- https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0908.json
- https://gitlab.com/libtiff/libtiff/-/commit/a95b799f65064e4ba2e2dfc206808f86faf93e85
- https://gitlab.com/libtiff/libtiff/-/issues/383
- https://www.debian.org/security/2022/dsa-5108
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
- https://security.netapp.com/advisory/ntap-20220506-0002/
- https://security.gentoo.org/glsa/202210-10
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
medium severity
- Vulnerable module: tiff/libtiff-dev
- Introduced through: tiff/libtiff-dev@4.3.0-1ubuntu0.1, tiff/libtiff5@4.3.0-1ubuntu0.1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › tiff/libtiff-dev@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiff5@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiffxx5@4.3.0-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream tiff
package and not the tiff
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 408976c4.
Remediation
There is no fixed version for Ubuntu:21.10
tiff
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-0924
- https://gitlab.com/libtiff/libtiff/-/merge_requests/311
- https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0924.json
- https://gitlab.com/libtiff/libtiff/-/issues/278
- https://www.debian.org/security/2022/dsa-5108
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
- https://security.netapp.com/advisory/ntap-20220506-0002/
- https://security.gentoo.org/glsa/202210-10
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
medium severity
- Vulnerable module: tiff/libtiff-dev
- Introduced through: tiff/libtiff-dev@4.3.0-1ubuntu0.1, tiff/libtiff5@4.3.0-1ubuntu0.1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › tiff/libtiff-dev@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiff5@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiffxx5@4.3.0-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream tiff
package and not the tiff
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a denial of service.
Remediation
There is no fixed version for Ubuntu:21.10
tiff
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-1354
- https://bugzilla.redhat.com/show_bug.cgi?id=2074404
- https://gitlab.com/libtiff/libtiff/-/commit/87f580f39011109b3bb5f6eca13fac543a542798
- https://access.redhat.com/security/cve/CVE-2022-1354
- https://gitlab.com/libtiff/libtiff/-/issues/319
- https://security.netapp.com/advisory/ntap-20221014-0007/
- https://security.gentoo.org/glsa/202210-10
- https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
- https://www.debian.org/security/2023/dsa-5333
- https://access.redhat.com/errata/RHSA-2022:8194
medium severity
- Vulnerable module: tiff/libtiff-dev
- Introduced through: tiff/libtiff-dev@4.3.0-1ubuntu0.1, tiff/libtiff5@4.3.0-1ubuntu0.1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › tiff/libtiff-dev@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiff5@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiffxx5@4.3.0-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream tiff
package and not the tiff
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2.
Remediation
There is no fixed version for Ubuntu:21.10
tiff
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-0907
- https://gitlab.com/libtiff/libtiff/-/merge_requests/314
- https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0907.json
- https://gitlab.com/libtiff/libtiff/-/issues/392
- https://www.debian.org/security/2022/dsa-5108
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
- https://security.netapp.com/advisory/ntap-20220506-0002/
- https://security.gentoo.org/glsa/202210-10
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
medium severity
- Vulnerable module: unzip
- Introduced through: unzip@6.0-26ubuntu1
Detailed paths
-
Introduced through: buildpack-deps@impish › unzip@6.0-26ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream unzip
package and not the unzip
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution.
Remediation
There is no fixed version for Ubuntu:21.10
unzip
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-0529
- https://bugzilla.redhat.com/show_bug.cgi?id=2051402
- https://github.com/ByteHackr/unzip_poc
- https://bugzilla.redhat.com/show_bug.cgi?id=2051395
- https://www.debian.org/security/2022/dsa-5202
- https://lists.debian.org/debian-lts-announce/2022/09/msg00028.html
- https://security.gentoo.org/glsa/202310-17
medium severity
- Vulnerable module: openssl
- Introduced through: openssl@1.1.1l-1ubuntu1.3, openssl/libssl-dev@1.1.1l-1ubuntu1.3 and others
- Fixed in: 1.1.1l-1ubuntu1.6
Detailed paths
-
Introduced through: buildpack-deps@impish › openssl@1.1.1l-1ubuntu1.3
-
Introduced through: buildpack-deps@impish › openssl/libssl-dev@1.1.1l-1ubuntu1.3
-
Introduced through: buildpack-deps@impish › openssl/libssl1.1@1.1.1l-1ubuntu1.3
NVD Description
Note: Versions mentioned in the description apply only to the upstream openssl
package and not the openssl
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption, sixteen bytes of the plaintext would be revealed. Since OpenSSL does not support OCB based cipher suites for TLS and DTLS, they are both unaffected. Fixed in OpenSSL 3.0.5 (Affected 3.0.0-3.0.4). Fixed in OpenSSL 1.1.1q (Affected 1.1.1-1.1.1p).
Remediation
Upgrade Ubuntu:21.10
openssl
to version 1.1.1l-1ubuntu1.6 or higher.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-2097
- https://www.openssl.org/news/secadv/20220705.txt
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a98f339ddd7e8f487d6e0088d4a9a42324885a93
- https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=919925673d6c9cfed3c1085497f5dfbbed5fc431
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6567JERRHHJW2GNGJGKDRNHR7SNPZK7/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R6CK57NBQFTPUMXAPJURCGXUYT76NQAK/
- https://security.netapp.com/advisory/ntap-20220715-0011/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCMNWKERPBKOEBNL7CLTTX3ZZCZLH7XA/
- https://security.gentoo.org/glsa/202210-02
- https://cert-portal.siemens.com/productcert/pdf/ssa-332410.pdf
- https://www.debian.org/security/2023/dsa-5343
- https://lists.debian.org/debian-lts-announce/2023/02/msg00019.html
- https://security.netapp.com/advisory/ntap-20230420-0008/
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=919925673d6c9cfed3c1085497f5dfbbed5fc431
- https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=a98f339ddd7e8f487d6e0088d4a9a42324885a93
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R6CK57NBQFTPUMXAPJURCGXUYT76NQAK/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V6567JERRHHJW2GNGJGKDRNHR7SNPZK7/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMNWKERPBKOEBNL7CLTTX3ZZCZLH7XA/
medium severity
- Vulnerable module: curl
- Introduced through: curl@7.74.0-1.3ubuntu2.2, curl/libcurl3-gnutls@7.74.0-1.3ubuntu2.2 and others
- Fixed in: 7.74.0-1.3ubuntu2.3
Detailed paths
-
Introduced through: buildpack-deps@impish › curl@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl3-gnutls@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl4@7.74.0-1.3ubuntu2.2
-
Introduced through: buildpack-deps@impish › curl/libcurl4-openssl-dev@7.74.0-1.3ubuntu2.2
NVD Description
Note: Versions mentioned in the description apply only to the upstream curl
package and not the curl
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A malicious server can serve excessive amounts of Set-Cookie:
headers in a HTTP response to curl and curl < 7.84.0 stores all of them. A sufficiently large amount of (big) cookies make subsequent HTTP requests to this, or other servers to which the cookies match, create requests that become larger than the threshold that curl uses internally to avoid sending crazy large requests (1048576 bytes) and instead returns an error.This denial state might remain for as long as the same cookies are kept, match and haven't expired. Due to cookie matching rules, a server on foo.example.com
can set cookies that also would match for bar.example.com
, making it it possible for a "sister server" to effectively cause a denial of service for a sibling site on the same second level domain using this method.
Remediation
Upgrade Ubuntu:21.10
curl
to version 7.74.0-1.3ubuntu2.3 or higher.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-32205
- https://hackerone.com/reports/1569946
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
- https://www.debian.org/security/2022/dsa-5197
- https://security.netapp.com/advisory/ntap-20220915-0003/
- https://support.apple.com/kb/HT213488
- http://seclists.org/fulldisclosure/2022/Oct/41
- http://seclists.org/fulldisclosure/2022/Oct/28
- https://cert-portal.siemens.com/productcert/pdf/ssa-333517.pdf
- https://security.gentoo.org/glsa/202212-01
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
low severity
- Vulnerable module: pcre2/libpcre2-16-0
- Introduced through: pcre2/libpcre2-16-0@10.37-0ubuntu2, pcre2/libpcre2-32-0@10.37-0ubuntu2 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › pcre2/libpcre2-16-0@10.37-0ubuntu2
-
Introduced through: buildpack-deps@impish › pcre2/libpcre2-32-0@10.37-0ubuntu2
-
Introduced through: buildpack-deps@impish › pcre2/libpcre2-8-0@10.37-0ubuntu2
-
Introduced through: buildpack-deps@impish › pcre2/libpcre2-dev@10.37-0ubuntu2
-
Introduced through: buildpack-deps@impish › pcre2/libpcre2-posix3@10.37-0ubuntu2
NVD Description
Note: Versions mentioned in the description apply only to the upstream pcre2
package and not the pcre2
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers.
Remediation
There is no fixed version for Ubuntu:21.10
pcre2
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-1587
- https://github.com/PCRE2Project/pcre2/commit/03654e751e7f0700693526b67dfcadda6b42c9d0
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M2GLQQUEY5VFM57CFYXVIFOXN2HUZPDM/
- https://bugzilla.redhat.com/show_bug.cgi?id=2077983,
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KAX7767BCUFC7JMDGP7GOQ5GIZCAUGBB/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DWNG2NS3GINO6LQYUVC4BZLUQPJ3DYHA/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JXINO3KKI5DICQ45E2FKD6MKVMGJLEKJ/
- https://security.netapp.com/advisory/ntap-20221028-0009/
- https://lists.debian.org/debian-lts-announce/2023/03/msg00014.html
- https://bugzilla.redhat.com/show_bug.cgi?id=2077983%2C
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DWNG2NS3GINO6LQYUVC4BZLUQPJ3DYHA/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JXINO3KKI5DICQ45E2FKD6MKVMGJLEKJ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KAX7767BCUFC7JMDGP7GOQ5GIZCAUGBB/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M2GLQQUEY5VFM57CFYXVIFOXN2HUZPDM/
low severity
- Vulnerable module: pcre2/libpcre2-16-0
- Introduced through: pcre2/libpcre2-16-0@10.37-0ubuntu2, pcre2/libpcre2-32-0@10.37-0ubuntu2 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › pcre2/libpcre2-16-0@10.37-0ubuntu2
-
Introduced through: buildpack-deps@impish › pcre2/libpcre2-32-0@10.37-0ubuntu2
-
Introduced through: buildpack-deps@impish › pcre2/libpcre2-8-0@10.37-0ubuntu2
-
Introduced through: buildpack-deps@impish › pcre2/libpcre2-dev@10.37-0ubuntu2
-
Introduced through: buildpack-deps@impish › pcre2/libpcre2-posix3@10.37-0ubuntu2
NVD Description
Note: Versions mentioned in the description apply only to the upstream pcre2
package and not the pcre2
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was not fully read in case-less matching within JIT.
Remediation
There is no fixed version for Ubuntu:21.10
pcre2
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-1586
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M2GLQQUEY5VFM57CFYXVIFOXN2HUZPDM/
- https://github.com/PCRE2Project/pcre2/commit/50a51cb7e67268e6ad417eb07c9de9bfea5cc55a,
- https://bugzilla.redhat.com/show_bug.cgi?id=2077976,
- https://github.com/PCRE2Project/pcre2/commit/d4fa336fbcc388f89095b184ba6d99422cfc676c
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KAX7767BCUFC7JMDGP7GOQ5GIZCAUGBB/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DWNG2NS3GINO6LQYUVC4BZLUQPJ3DYHA/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JXINO3KKI5DICQ45E2FKD6MKVMGJLEKJ/
- https://security.netapp.com/advisory/ntap-20221028-0009/
- https://lists.debian.org/debian-lts-announce/2023/03/msg00014.html
- https://bugzilla.redhat.com/show_bug.cgi?id=2077976%2C
- https://github.com/PCRE2Project/pcre2/commit/50a51cb7e67268e6ad417eb07c9de9bfea5cc55a%2C
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DWNG2NS3GINO6LQYUVC4BZLUQPJ3DYHA/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JXINO3KKI5DICQ45E2FKD6MKVMGJLEKJ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KAX7767BCUFC7JMDGP7GOQ5GIZCAUGBB/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M2GLQQUEY5VFM57CFYXVIFOXN2HUZPDM/
low severity
- Vulnerable module: git
- Introduced through: git@1:2.32.0-1ubuntu1.2 and git/git-man@1:2.32.0-1ubuntu1.2
Detailed paths
-
Introduced through: buildpack-deps@impish › git@1:2.32.0-1ubuntu1.2
-
Introduced through: buildpack-deps@impish › git/git-man@1:2.32.0-1ubuntu1.2
NVD Description
Note: Versions mentioned in the description apply only to the upstream git
package and not the git
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
GIT version 2.15.1 and earlier contains a Input Validation Error vulnerability in Client that can result in problems including messing up terminal configuration to RCE. This attack appear to be exploitable via The user must interact with a malicious git server, (or have their traffic modified in a MITM attack).
Remediation
There is no fixed version for Ubuntu:21.10
git
.
References
low severity
- Vulnerable module: binutils
- Introduced through: binutils@2.37-7ubuntu1, binutils/binutils-common@2.37-7ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › binutils@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/binutils-common@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/binutils-x86-64-linux-gnu@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libbinutils@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libctf-nobfd0@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libctf0@2.37-7ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream binutils
package and not the binutils
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact, as demonstrated by an out-of-bounds write. NOTE: this issue exists because of an incorrect fix for CVE-2018-12699.
Remediation
There is no fixed version for Ubuntu:21.10
binutils
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-45078
- https://sourceware.org/bugzilla/show_bug.cgi?id=28694
- https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=161e87d12167b1e36193385485c1f6ce92f74f02
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQBH244M5PV6S6UMHUTCVCWFZDX7Y4M6/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UUHLDDT3HH7YEY6TX7IJRGPJUTNNVEL3/
- https://security.netapp.com/advisory/ntap-20220107-0002/
- https://security.gentoo.org/glsa/202208-30
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQBH244M5PV6S6UMHUTCVCWFZDX7Y4M6/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UUHLDDT3HH7YEY6TX7IJRGPJUTNNVEL3/
- https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=161e87d12167b1e36193385485c1f6ce92f74f02
low severity
- Vulnerable module: openjpeg2/libopenjp2-7
- Introduced through: openjpeg2/libopenjp2-7@2.3.1-1ubuntu5 and openjpeg2/libopenjp2-7-dev@2.3.1-1ubuntu5
Detailed paths
-
Introduced through: buildpack-deps@impish › openjpeg2/libopenjp2-7@2.3.1-1ubuntu5
-
Introduced through: buildpack-deps@impish › openjpeg2/libopenjp2-7-dev@2.3.1-1ubuntu5
NVD Description
Note: Versions mentioned in the description apply only to the upstream openjpeg2
package and not the openjpeg2
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg.
Remediation
There is no fixed version for Ubuntu:21.10
openjpeg2
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-3575
- https://bugzilla.redhat.com/show_bug.cgi?id=1957616
- https://github.com/uclouvain/openjpeg/issues/1347
- https://ubuntu.com/security/CVE-2021-3575
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QB6AI7CWXWMEDZIQY4LQ6DMIEXMDOHUP/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZ54FGM2IGAP4AWSJ22JKHOPHCR3FGYU/
- https://access.redhat.com/errata/RHSA-2021:4251
- https://access.redhat.com/security/cve/CVE-2021-3575
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZ54FGM2IGAP4AWSJ22JKHOPHCR3FGYU/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QB6AI7CWXWMEDZIQY4LQ6DMIEXMDOHUP/
low severity
- Vulnerable module: xorg/x11-common
- Introduced through: xorg/x11-common@1:7.7+22ubuntu2
Detailed paths
-
Introduced through: buildpack-deps@impish › xorg/x11-common@1:7.7+22ubuntu2
NVD Description
Note: Versions mentioned in the description apply only to the upstream xorg
package and not the xorg
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation.
Remediation
There is no fixed version for Ubuntu:21.10
xorg
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2012-1093
- https://security-tracker.debian.org/tracker/CVE-2012-1093
- http://vladz.devzero.fr/012_x11-common-vuln.html
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- http://www.openwall.com/lists/oss-security/2012/02/29/1
- http://www.openwall.com/lists/oss-security/2012/03/01/1
- https://access.redhat.com/security/cve/cve-2012-1093
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: python3.9
- Introduced through: python3.9@3.9.7-2build1, python3.9/libpython3.9-minimal@3.9.7-2build1 and others
- Fixed in: 3.9.7-2ubuntu0.1
Detailed paths
-
Introduced through: buildpack-deps@impish › python3.9@3.9.7-2build1
-
Introduced through: buildpack-deps@impish › python3.9/libpython3.9-minimal@3.9.7-2build1
-
Introduced through: buildpack-deps@impish › python3.9/libpython3.9-stdlib@3.9.7-2build1
-
Introduced through: buildpack-deps@impish › python3.9/python3.9-minimal@3.9.7-2build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream python3.9
package and not the python3.9
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7, 3.8, 3.9
Remediation
Upgrade Ubuntu:21.10
python3.9
to version 3.9.7-2ubuntu0.1 or higher.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2015-20107
- https://github.com/python/cpython/issues/68966
- https://bugs.python.org/issue24778
- https://security.netapp.com/advisory/ntap-20220616-0001/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XO2H6CKWLRGTTZCGUQVELW6LUH437Q3O/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FIRUTX47BJD2HYJDLMI7JJBVCYFAPKAQ/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ONXSGLASNLGFL57YU6WT6Y5YURSFV43U/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ERYMM2QVDPOJLX4LYXWYIQN5FOIJLDRY/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MYG3EMFR7ZHC46TDNM7SNWO64A3W7EUF/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y4E2WBEJ42CGLGDHD6ZXOLZ2W6G3YOVD/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/46KWPTI72SSEOF53DOYQBQOCN4QQB2GE/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FCIO2W4DUVVMI6L52QCC4TT2B3K5VWHS/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W5664BGZVTA46LQDNTYX5THG6CN4FYJX/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UIOJUZ5JMEMGSKNISTOVI4PDP36FDL5Y/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KAY6VBNVEFUXKJF37WFHYXUSRDEK34N3/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F3LNY2NHM6J22O6Q5ANOE3SZRK3OACKR/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HAI2GBC7WKH7J5NH6J2IW5RT3VF2SF5M/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6QIKVSW3H6W2GQGDE5DTIWLGFNH6KKEW/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GPCLGZZJPVXFWUWVV5WCD5FNUAFLKBDN/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/53TQZFLS6O3FLIMVSXFEEPZSWLDZLBOX/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PTTZGLD2YBMMG6U6F5HOTPOGGPBIURMA/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/57NECACX333A3BBZM2TR2VZ4ZE3UG3SN/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AKGMYDVKI3XNM27B6I6RQ6QV3TVJAUCG/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5DBVY4YC2P6EPZZ2DROOXHDOWZ4BJFLW/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/
- https://python-security.readthedocs.io/vuln/mailcap-shell-injection.html
- https://security.gentoo.org/glsa/202305-02
- https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html
- https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46KWPTI72SSEOF53DOYQBQOCN4QQB2GE/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/53TQZFLS6O3FLIMVSXFEEPZSWLDZLBOX/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/57NECACX333A3BBZM2TR2VZ4ZE3UG3SN/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5DBVY4YC2P6EPZZ2DROOXHDOWZ4BJFLW/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6QIKVSW3H6W2GQGDE5DTIWLGFNH6KKEW/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AKGMYDVKI3XNM27B6I6RQ6QV3TVJAUCG/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ERYMM2QVDPOJLX4LYXWYIQN5FOIJLDRY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F3LNY2NHM6J22O6Q5ANOE3SZRK3OACKR/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FCIO2W4DUVVMI6L52QCC4TT2B3K5VWHS/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FIRUTX47BJD2HYJDLMI7JJBVCYFAPKAQ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GPCLGZZJPVXFWUWVV5WCD5FNUAFLKBDN/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HAI2GBC7WKH7J5NH6J2IW5RT3VF2SF5M/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KAY6VBNVEFUXKJF37WFHYXUSRDEK34N3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MYG3EMFR7ZHC46TDNM7SNWO64A3W7EUF/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ONXSGLASNLGFL57YU6WT6Y5YURSFV43U/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PTTZGLD2YBMMG6U6F5HOTPOGGPBIURMA/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UIOJUZ5JMEMGSKNISTOVI4PDP36FDL5Y/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W5664BGZVTA46LQDNTYX5THG6CN4FYJX/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XO2H6CKWLRGTTZCGUQVELW6LUH437Q3O/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y4E2WBEJ42CGLGDHD6ZXOLZ2W6G3YOVD/
low severity
- Vulnerable module: binutils
- Introduced through: binutils@2.37-7ubuntu1, binutils/binutils-common@2.37-7ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › binutils@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/binutils-common@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/binutils-x86-64-linux-gnu@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libbinutils@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libctf-nobfd0@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libctf0@2.37-7ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream binutils
package and not the binutils
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, has a memory leak via a crafted string, leading to a denial of service (memory consumption), as demonstrated by cxxfilt, a related issue to CVE-2018-12698.
Remediation
There is no fixed version for Ubuntu:21.10
binutils
.
References
low severity
- Vulnerable module: binutils
- Introduced through: binutils@2.37-7ubuntu1, binutils/binutils-common@2.37-7ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › binutils@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/binutils-common@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/binutils-x86-64-linux-gnu@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libbinutils@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libctf-nobfd0@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libctf0@2.37-7ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream binutils
package and not the binutils
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was discovered in GNU libiberty within demangle_path() in rust-demangle.c, as distributed in GNU Binutils version 2.36. A crafted symbol can cause stack memory to be exhausted leading to a crash.
Remediation
There is no fixed version for Ubuntu:21.10
binutils
.
References
low severity
- Vulnerable module: freetype/libfreetype-dev
- Introduced through: freetype/libfreetype-dev@2.10.4+dfsg-1build1, freetype/libfreetype6@2.10.4+dfsg-1build1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › freetype/libfreetype-dev@2.10.4+dfsg-1build1
-
Introduced through: buildpack-deps@impish › freetype/libfreetype6@2.10.4+dfsg-1build1
-
Introduced through: buildpack-deps@impish › freetype/libfreetype6-dev@2.10.4+dfsg-1build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream freetype
package and not the freetype
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation violation via the function FT_Request_Size.
Remediation
There is no fixed version for Ubuntu:21.10
freetype
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-27406
- http://freetype.com
- https://gitlab.freedesktop.org/freetype/freetype/-/issues/1140
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FDU2FOEMCEF6WVR6ZBIH5MT5O7FAK6UP/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYVC2NPKKXKP3TWJWG4ONYWNO6ZPHLA5/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EFPNRKDLCXHZVYYQLQMP44UHLU32GA6Z/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IWQ7IB2A75MEHM63WEUXBYEC7OR5SGDY/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TCEMWCM46PKM4U5ENRASPKQD6JDOLKRU/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EFPNRKDLCXHZVYYQLQMP44UHLU32GA6Z/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FDU2FOEMCEF6WVR6ZBIH5MT5O7FAK6UP/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IWQ7IB2A75MEHM63WEUXBYEC7OR5SGDY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYVC2NPKKXKP3TWJWG4ONYWNO6ZPHLA5/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TCEMWCM46PKM4U5ENRASPKQD6JDOLKRU/
- https://security.gentoo.org/glsa/202402-06
low severity
- Vulnerable module: freetype/libfreetype-dev
- Introduced through: freetype/libfreetype-dev@2.10.4+dfsg-1build1, freetype/libfreetype6@2.10.4+dfsg-1build1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › freetype/libfreetype-dev@2.10.4+dfsg-1build1
-
Introduced through: buildpack-deps@impish › freetype/libfreetype6@2.10.4+dfsg-1build1
-
Introduced through: buildpack-deps@impish › freetype/libfreetype6-dev@2.10.4+dfsg-1build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream freetype
package and not the freetype
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNT_Size_Request.
Remediation
There is no fixed version for Ubuntu:21.10
freetype
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-27405
- http://freetype.com
- https://gitlab.freedesktop.org/freetype/freetype/-/issues/1139
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FDU2FOEMCEF6WVR6ZBIH5MT5O7FAK6UP/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYVC2NPKKXKP3TWJWG4ONYWNO6ZPHLA5/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EFPNRKDLCXHZVYYQLQMP44UHLU32GA6Z/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IWQ7IB2A75MEHM63WEUXBYEC7OR5SGDY/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TCEMWCM46PKM4U5ENRASPKQD6JDOLKRU/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EFPNRKDLCXHZVYYQLQMP44UHLU32GA6Z/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FDU2FOEMCEF6WVR6ZBIH5MT5O7FAK6UP/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IWQ7IB2A75MEHM63WEUXBYEC7OR5SGDY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NYVC2NPKKXKP3TWJWG4ONYWNO6ZPHLA5/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TCEMWCM46PKM4U5ENRASPKQD6JDOLKRU/
- https://security.gentoo.org/glsa/202402-06
low severity
- Vulnerable module: glibc/libc-bin
- Introduced through: glibc/libc-bin@2.34-0ubuntu3.2, glibc/libc-dev-bin@2.34-0ubuntu3.2 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › glibc/libc-bin@2.34-0ubuntu3.2
-
Introduced through: buildpack-deps@impish › glibc/libc-dev-bin@2.34-0ubuntu3.2
-
Introduced through: buildpack-deps@impish › glibc/libc6@2.34-0ubuntu3.2
-
Introduced through: buildpack-deps@impish › glibc/libc6-dev@2.34-0ubuntu3.2
NVD Description
Note: Versions mentioned in the description apply only to the upstream glibc
package and not the glibc
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
sha256crypt and sha512crypt through 0.6 allow attackers to cause a denial of service (CPU consumption) because the algorithm's runtime is proportional to the square of the length of the password.
Remediation
There is no fixed version for Ubuntu:21.10
glibc
.
References
low severity
- Vulnerable module: gmp/libgmp-dev
- Introduced through: gmp/libgmp-dev@2:6.2.1+dfsg-1ubuntu2, gmp/libgmp10@2:6.2.1+dfsg-1ubuntu2 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › gmp/libgmp-dev@2:6.2.1+dfsg-1ubuntu2
-
Introduced through: buildpack-deps@impish › gmp/libgmp10@2:6.2.1+dfsg-1ubuntu2
-
Introduced through: buildpack-deps@impish › gmp/libgmpxx4ldbl@2:6.2.1+dfsg-1ubuntu2
NVD Description
Note: Versions mentioned in the description apply only to the upstream gmp
package and not the gmp
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
GNU Multiple Precision Arithmetic Library (GMP) through 6.2.1 has an mpz/inp_raw.c integer overflow and resultant buffer overflow via crafted input, leading to a segmentation fault on 32-bit platforms.
Remediation
There is no fixed version for Ubuntu:21.10
gmp
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-43618
- https://bugs.debian.org/994405
- https://gmplib.org/list-archives/gmp-bugs/2021-September/005077.html
- https://gmplib.org/repo/gmp-6.2/rev/561a9c25298e
- https://lists.debian.org/debian-lts-announce/2021/12/msg00001.html
- http://www.openwall.com/lists/oss-security/2022/10/13/3
- http://seclists.org/fulldisclosure/2022/Oct/8
- https://security.netapp.com/advisory/ntap-20221111-0001/
- https://security.gentoo.org/glsa/202309-13
low severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in ImageMagick in versions before 7.0.11 and before 6.9.12, where a division by zero in WaveImage() of MagickCore/visual-effects.c may trigger undefined behavior via a crafted image file submitted to an application using ImageMagick. The highest threat from this vulnerability is to system availability.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
low severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
low severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in ImageMagick in versions 7.0.11, where an integer overflow in WriteTHUMBNAILImage of coders/thumbnail.c may trigger undefined behavior via a crafted image file that is submitted by an attacker and processed by an application using ImageMagick. The highest threat from this vulnerability is to system availability.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
low severity
- Vulnerable module: krb5/krb5-multidev
- Introduced through: krb5/krb5-multidev@1.18.3-6, krb5/libgssapi-krb5-2@1.18.3-6 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › krb5/krb5-multidev@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libgssapi-krb5-2@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libgssrpc4@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libk5crypto3@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkadm5clnt-mit12@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkadm5srv-mit12@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkdb5-10@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkrb5-3@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkrb5-dev@1.18.3-6
-
Introduced through: buildpack-deps@impish › krb5/libkrb5support0@1.18.3-6
NVD Description
Note: Versions mentioned in the description apply only to the upstream krb5
package and not the krb5
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. There is a variable "dbentry->n_key_data" in kadmin/dbutil/dump.c that can store 16-bit data but unknowingly the developer has assigned a "u4" variable to it, which is for 32-bit data. An attacker can use this vulnerability to affect other artifacts of the database as we know that a Kerberos database dump file contains trusted data.
Remediation
There is no fixed version for Ubuntu:21.10
krb5
.
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5709
- https://security-tracker.debian.org/tracker/CVE-2018-5709
- https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Integer%20Overflow
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-5709
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: patch
- Introduced through: patch@2.7.6-7
Detailed paths
-
Introduced through: buildpack-deps@impish › patch@2.7.6-7
NVD Description
Note: Versions mentioned in the description apply only to the upstream patch
package and not the patch
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6.
Remediation
There is no fixed version for Ubuntu:21.10
patch
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-6952
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6952
- https://security-tracker.debian.org/tracker/CVE-2018-6952
- https://security.gentoo.org/glsa/201904-17
- https://savannah.gnu.org/bugs/index.php?53133
- https://access.redhat.com/errata/RHSA-2019:2033
- http://www.securityfocus.com/bid/103047
low severity
- Vulnerable module: pcre3/libpcre16-3
- Introduced through: pcre3/libpcre16-3@2:8.39-13ubuntu0.21.10.1, pcre3/libpcre3@2:8.39-13ubuntu0.21.10.1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › pcre3/libpcre16-3@2:8.39-13ubuntu0.21.10.1
-
Introduced through: buildpack-deps@impish › pcre3/libpcre3@2:8.39-13ubuntu0.21.10.1
-
Introduced through: buildpack-deps@impish › pcre3/libpcre3-dev@2:8.39-13ubuntu0.21.10.1
-
Introduced through: buildpack-deps@impish › pcre3/libpcre32-3@2:8.39-13ubuntu0.21.10.1
-
Introduced through: buildpack-deps@impish › pcre3/libpcrecpp0v5@2:8.39-13ubuntu0.21.10.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream pcre3
package and not the pcre3
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
In PCRE 8.41, the OP_KETRMAX feature in the match function in pcre_exec.c allows stack exhaustion (uncontrolled recursion) when processing a crafted regular expression.
Remediation
There is no fixed version for Ubuntu:21.10
pcre3
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2017-11164
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11164
- https://security-tracker.debian.org/tracker/CVE-2017-11164
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- http://openwall.com/lists/oss-security/2017/07/11/3
- http://www.securityfocus.com/bid/99575
- http://www.openwall.com/lists/oss-security/2023/04/11/1
- http://www.openwall.com/lists/oss-security/2023/04/12/1
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: sqlite3/libsqlite3-0
- Introduced through: sqlite3/libsqlite3-0@3.35.5-1ubuntu0.1 and sqlite3/libsqlite3-dev@3.35.5-1ubuntu0.1
Detailed paths
-
Introduced through: buildpack-deps@impish › sqlite3/libsqlite3-0@3.35.5-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › sqlite3/libsqlite3-dev@3.35.5-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream sqlite3
package and not the sqlite3
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0, iCloud for Windows 7.21, tvOS 14.0. A remote attacker may be able to cause a denial of service.
Remediation
There is no fixed version for Ubuntu:21.10
sqlite3
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2020-9991
- https://support.apple.com/kb/HT211846
- http://seclists.org/fulldisclosure/2020/Dec/32
- https://support.apple.com/en-us/HT211843
- https://support.apple.com/en-us/HT211844
- https://support.apple.com/en-us/HT211847
- https://support.apple.com/en-us/HT211850
- https://support.apple.com/en-us/HT211931
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: tar
- Introduced through: tar@1.34+dfsg-1build1
Detailed paths
-
Introduced through: buildpack-deps@impish › tar@1.34+dfsg-1build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream tar
package and not the tar
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended headers.
Remediation
There is no fixed version for Ubuntu:21.10
tar
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-9923
- https://security-tracker.debian.org/tracker/CVE-2019-9923
- http://git.savannah.gnu.org/cgit/tar.git/commit/?id=cb07844454d8cc9fb21f53ace75975f91185a120
- http://savannah.gnu.org/bugs/?55369
- https://bugs.launchpad.net/ubuntu/+source/tar/+bug/1810241
- https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E
- https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E
- http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00077.html
- https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
- https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
low severity
- Vulnerable module: ncurses/libncurses-dev
- Introduced through: ncurses/libncurses-dev@6.2+20201114-2build1, ncurses/libncurses5-dev@6.2+20201114-2build1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › ncurses/libncurses-dev@6.2+20201114-2build1
-
Introduced through: buildpack-deps@impish › ncurses/libncurses5-dev@6.2+20201114-2build1
-
Introduced through: buildpack-deps@impish › ncurses/libncurses6@6.2+20201114-2build1
-
Introduced through: buildpack-deps@impish › ncurses/libncursesw5-dev@6.2+20201114-2build1
-
Introduced through: buildpack-deps@impish › ncurses/libncursesw6@6.2+20201114-2build1
-
Introduced through: buildpack-deps@impish › ncurses/libtinfo6@6.2+20201114-2build1
-
Introduced through: buildpack-deps@impish › ncurses/ncurses-base@6.2+20201114-2build1
-
Introduced through: buildpack-deps@impish › ncurses/ncurses-bin@6.2+20201114-2build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream ncurses
package and not the ncurses
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convert_strings in tinfo/read_entry.c in the terminfo library.
Remediation
There is no fixed version for Ubuntu:21.10
ncurses
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-29458
- https://lists.gnu.org/archive/html/bug-ncurses/2022-04/msg00016.html
- https://lists.gnu.org/archive/html/bug-ncurses/2022-04/msg00014.html
- https://support.apple.com/kb/HT213488
- https://lists.debian.org/debian-lts-announce/2022/10/msg00037.html
- http://seclists.org/fulldisclosure/2022/Oct/41
- http://seclists.org/fulldisclosure/2022/Oct/28
low severity
- Vulnerable module: openssh/openssh-client
- Introduced through: openssh/openssh-client@1:8.4p1-6ubuntu2.1
Detailed paths
-
Introduced through: buildpack-deps@impish › openssh/openssh-client@1:8.4p1-6ubuntu2.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream openssh
package and not the openssh
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.
Remediation
There is no fixed version for Ubuntu:21.10
openssh
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-41617
- https://bugzilla.suse.com/show_bug.cgi?id=1190975
- https://security.netapp.com/advisory/ntap-20211014-0004/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/
- https://www.openssh.com/security.html
- https://www.openssh.com/txt/release-8.8
- https://www.openwall.com/lists/oss-security/2021/09/26/1
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://www.starwindsoftware.com/security/sw-20220805-0001/
- https://www.tenable.com/plugins/nessus/154174
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/
- https://www.debian.org/security/2023/dsa-5586
- https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html
low severity
- Vulnerable module: cairo/libcairo-gobject2
- Introduced through: cairo/libcairo-gobject2@1.16.0-5ubuntu1, cairo/libcairo-script-interpreter2@1.16.0-5ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › cairo/libcairo-gobject2@1.16.0-5ubuntu1
-
Introduced through: buildpack-deps@impish › cairo/libcairo-script-interpreter2@1.16.0-5ubuntu1
-
Introduced through: buildpack-deps@impish › cairo/libcairo2@1.16.0-5ubuntu1
-
Introduced through: buildpack-deps@impish › cairo/libcairo2-dev@1.16.0-5ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream cairo
package and not the cairo
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
cairo through 1.15.14 has an out-of-bounds stack-memory write during processing of a crafted document by WebKitGTK+ because of the interaction between cairo-rectangular-scan-converter.c (the generate and render_rows functions) and cairo-image-compositor.c (the _cairo_image_spans_and_zero function).
Remediation
There is no fixed version for Ubuntu:21.10
cairo
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-18064
- https://security-tracker.debian.org/tracker/CVE-2018-18064
- https://gitlab.freedesktop.org/cairo/cairo/issues/341
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: cairo/libcairo-gobject2
- Introduced through: cairo/libcairo-gobject2@1.16.0-5ubuntu1, cairo/libcairo-script-interpreter2@1.16.0-5ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › cairo/libcairo-gobject2@1.16.0-5ubuntu1
-
Introduced through: buildpack-deps@impish › cairo/libcairo-script-interpreter2@1.16.0-5ubuntu1
-
Introduced through: buildpack-deps@impish › cairo/libcairo2@1.16.0-5ubuntu1
-
Introduced through: buildpack-deps@impish › cairo/libcairo2-dev@1.16.0-5ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream cairo
package and not the cairo
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An issue was discovered in cairo 1.16.0. There is an assertion problem in the function _cairo_arc_in_direction in the file cairo-arc.c.
Remediation
There is no fixed version for Ubuntu:21.10
cairo
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-6461
- https://security-tracker.debian.org/tracker/CVE-2019-6461
- https://github.com/TeamSeri0us/pocs/tree/master/gerbv
- https://gitlab.freedesktop.org/cairo/cairo/issues/352
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: coreutils
- Introduced through: coreutils@8.32-4ubuntu2
Detailed paths
-
Introduced through: buildpack-deps@impish › coreutils@8.32-4ubuntu2
NVD Description
Note: Versions mentioned in the description apply only to the upstream coreutils
package and not the coreutils
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
chroot in GNU coreutils, when used with --userspec, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer.
Remediation
There is no fixed version for Ubuntu:21.10
coreutils
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2016-2781
- https://security-tracker.debian.org/tracker/CVE-2016-2781
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- http://www.openwall.com/lists/oss-security/2016/02/28/2
- http://www.openwall.com/lists/oss-security/2016/02/28/3
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: jbigkit/libjbig-dev
- Introduced through: jbigkit/libjbig-dev@2.1-3.1build1 and jbigkit/libjbig0@2.1-3.1build1
Detailed paths
-
Introduced through: buildpack-deps@impish › jbigkit/libjbig-dev@2.1-3.1build1
-
Introduced through: buildpack-deps@impish › jbigkit/libjbig0@2.1-3.1build1
NVD Description
Note: Versions mentioned in the description apply only to the upstream jbigkit
package and not the jbigkit
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
In LibTIFF 4.0.8, there is a memory malloc failure in tif_jbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack.
Remediation
There is no fixed version for Ubuntu:21.10
jbigkit
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2017-9937
- https://security-tracker.debian.org/tracker/CVE-2017-9937
- http://bugzilla.maptools.org/show_bug.cgi?id=2707
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- http://www.securityfocus.com/bid/99304
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: openexr/libopenexr-dev
- Introduced through: openexr/libopenexr-dev@2.5.4-2 and openexr/libopenexr25@2.5.4-2
Detailed paths
-
Introduced through: buildpack-deps@impish › openexr/libopenexr-dev@2.5.4-2
-
Introduced through: buildpack-deps@impish › openexr/libopenexr25@2.5.4-2
NVD Description
Note: Versions mentioned in the description apply only to the upstream openexr
package and not the openexr
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
In ImfChromaticities.cpp routine RGBtoXYZ(), there are some division operations such as float Z = (1 - chroma.white.x - chroma.white.y) * Y / chroma.white.y;
and chroma.green.y * (X + Z))) / d;
but the divisor is not checked for a 0 value. A specially crafted file could trigger a divide-by-zero condition which could affect the availability of programs linked with OpenEXR.
Remediation
There is no fixed version for Ubuntu:21.10
openexr
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-3941
- https://bugzilla.redhat.com/show_bug.cgi?id=2019789
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I2JSMJ7HLWFPYYV7IAQZD5ZUUUN7RWBN/
- https://security.gentoo.org/glsa/202210-31
- https://www.debian.org/security/2022/dsa-5299
- https://lists.debian.org/debian-lts-announce/2022/12/msg00022.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I2JSMJ7HLWFPYYV7IAQZD5ZUUUN7RWBN/
low severity
- Vulnerable module: openjpeg2/libopenjp2-7
- Introduced through: openjpeg2/libopenjp2-7@2.3.1-1ubuntu5 and openjpeg2/libopenjp2-7-dev@2.3.1-1ubuntu5
Detailed paths
-
Introduced through: buildpack-deps@impish › openjpeg2/libopenjp2-7@2.3.1-1ubuntu5
-
Introduced through: buildpack-deps@impish › openjpeg2/libopenjp2-7-dev@2.3.1-1ubuntu5
NVD Description
Note: Versions mentioned in the description apply only to the upstream openjpeg2
package and not the openjpeg2
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An issue was discovered in OpenJPEG 2.3.0. It allows remote attackers to cause a denial of service (attempted excessive memory allocation) in opj_calloc in openjp2/opj_malloc.c, when called from opj_tcd_init_tile in openjp2/tcd.c, as demonstrated by the 64-bit opj_decompress.
Remediation
There is no fixed version for Ubuntu:21.10
openjpeg2
.
References
low severity
- Vulnerable module: sqlite3/libsqlite3-0
- Introduced through: sqlite3/libsqlite3-0@3.35.5-1ubuntu0.1 and sqlite3/libsqlite3-dev@3.35.5-1ubuntu0.1
Detailed paths
-
Introduced through: buildpack-deps@impish › sqlite3/libsqlite3-0@3.35.5-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › sqlite3/libsqlite3-dev@3.35.5-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream sqlite3
package and not the sqlite3
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An information disclosure issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0, iTunes for Windows 12.10.9, iCloud for Windows 11.5, tvOS 14.0. A remote attacker may be able to leak memory.
Remediation
There is no fixed version for Ubuntu:21.10
sqlite3
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2020-9849
- http://seclists.org/fulldisclosure/2020/Dec/32
- https://support.apple.com/en-us/HT211843
- https://support.apple.com/en-us/HT211844
- https://support.apple.com/en-us/HT211850
- https://support.apple.com/en-us/HT211931
- https://support.apple.com/en-us/HT211935
- https://support.apple.com/en-us/HT211952
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: tiff/libtiff-dev
- Introduced through: tiff/libtiff-dev@4.3.0-1ubuntu0.1, tiff/libtiff5@4.3.0-1ubuntu0.1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › tiff/libtiff-dev@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiff5@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiffxx5@4.3.0-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream tiff
package and not the tiff
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A vulnerability classified as problematic was found in LibTIFF 4.3.0. Affected by this vulnerability is the TIFF File Handler of tiff2ps. Opening a malicious file leads to a denial of service. The attack can be launched remotely but requires user interaction. The exploit has been disclosed to the public and may be used.
Remediation
There is no fixed version for Ubuntu:21.10
tiff
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-1210
- https://gitlab.com/libtiff/libtiff/uploads/c3da94e53cf1e1e8e6d4d3780dc8c42f/example.tiff
- https://gitlab.com/libtiff/libtiff/-/issues/402
- https://vuldb.com/?id.196363
- https://security.netapp.com/advisory/ntap-20220513-0005/
- https://security.gentoo.org/glsa/202210-10
low severity
- Vulnerable module: tiff/libtiff-dev
- Introduced through: tiff/libtiff-dev@4.3.0-1ubuntu0.1, tiff/libtiff5@4.3.0-1ubuntu0.1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › tiff/libtiff-dev@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiff5@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiffxx5@4.3.0-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream tiff
package and not the tiff
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
LibTIFF 4.0.9 has a NULL pointer dereference in the jpeg_fdct_16x16 function in jfdctint.c.
Remediation
There is no fixed version for Ubuntu:21.10
tiff
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-10126
- https://security-tracker.debian.org/tracker/CVE-2018-10126
- http://bugzilla.maptools.org/show_bug.cgi?id=2786
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: openssh/openssh-client
- Introduced through: openssh/openssh-client@1:8.4p1-6ubuntu2.1
Detailed paths
-
Introduced through: buildpack-deps@impish › openssh/openssh-client@1:8.4p1-6ubuntu2.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream openssh
package and not the openssh
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.
Remediation
There is no fixed version for Ubuntu:21.10
openssh
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2020-14145
- https://security.netapp.com/advisory/ntap-20200709-0004/
- https://security.gentoo.org/glsa/202105-35
- https://anongit.mindrot.org/openssh.git/commit/?id=b3855ff053f5078ec3d3c653cdaedefaa5fc362d
- https://docs.ssh-mitm.at/CVE-2020-14145.html
- https://github.com/openssh/openssh-portable/compare/V_8_3_P1...V_8_4_P1
- https://github.com/ssh-mitm/ssh-mitm/blob/master/ssh_proxy_server/plugins/session/cve202014145.py
- https://www.fzi.de/en/news/news/detail-en/artikel/fsa-2020-2-ausnutzung-eines-informationslecks-fuer-gezielte-mitm-angriffe-auf-ssh-clients/
- http://www.openwall.com/lists/oss-security/2020/12/02/1
low severity
- Vulnerable module: binutils
- Introduced through: binutils@2.37-7ubuntu1, binutils/binutils-common@2.37-7ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › binutils@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/binutils-common@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/binutils-x86-64-linux-gnu@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libbinutils@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libctf-nobfd0@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libctf0@2.37-7ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream binutils
package and not the binutils
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (excessive memory allocation and application crash) via a crafted file, as demonstrated by a call from the Binary File Descriptor (BFD) library (aka libbfd).
Remediation
There is no fixed version for Ubuntu:21.10
binutils
.
References
low severity
- Vulnerable module: binutils
- Introduced through: binutils@2.37-7ubuntu1, binutils/binutils-common@2.37-7ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › binutils@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/binutils-common@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/binutils-x86-64-linux-gnu@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libbinutils@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libctf-nobfd0@2.37-7ubuntu1
-
Introduced through: buildpack-deps@impish › binutils/libctf0@2.37-7ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream binutils
package and not the binutils
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcpp_file.h:644. The attack vector is: An ELF file with an invalid e_shoff header field must be opened.
Remediation
There is no fixed version for Ubuntu:21.10
binutils
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-1010204
- https://support.f5.com/csp/article/K05032915?utm_source=f5support&utm_medium=RSS
- https://security-tracker.debian.org/tracker/CVE-2019-1010204
- https://sourceware.org/bugzilla/show_bug.cgi?id=23765
- https://security.netapp.com/advisory/ntap-20190822-0001/
- https://support.f5.com/csp/article/K05032915?utm_source=f5support&%3Butm_medium=RSS
low severity
- Vulnerable module: cairo/libcairo-gobject2
- Introduced through: cairo/libcairo-gobject2@1.16.0-5ubuntu1, cairo/libcairo-script-interpreter2@1.16.0-5ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › cairo/libcairo-gobject2@1.16.0-5ubuntu1
-
Introduced through: buildpack-deps@impish › cairo/libcairo-script-interpreter2@1.16.0-5ubuntu1
-
Introduced through: buildpack-deps@impish › cairo/libcairo2@1.16.0-5ubuntu1
-
Introduced through: buildpack-deps@impish › cairo/libcairo2-dev@1.16.0-5ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream cairo
package and not the cairo
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.
Remediation
There is no fixed version for Ubuntu:21.10
cairo
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2017-7475
- https://security-tracker.debian.org/tracker/CVE-2017-7475
- https://bugs.freedesktop.org/show_bug.cgi?id=100763
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- http://seclists.org/oss-sec/2017/q2/151
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7475
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
low severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
low severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in ImageMagick in MagickCore/resize.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
low severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in ImageMagick in MagickCore/resample.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
low severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in ImageMagick in coders/webp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-20245
- https://bugzilla.redhat.com/show_bug.cgi?id=1928943
- https://github.com/ImageMagick/ImageMagick/issues/3176
- https://lists.debian.org/debian-lts-announce/2021/06/msg00000.html
- https://lists.debian.org/debian-lts-announce/2023/05/msg00020.html
low severity
- Vulnerable module: libjpeg-turbo/libjpeg-turbo8
- Introduced through: libjpeg-turbo/libjpeg-turbo8@2.0.6-0ubuntu2 and libjpeg-turbo/libjpeg-turbo8-dev@2.0.6-0ubuntu2
Detailed paths
-
Introduced through: buildpack-deps@impish › libjpeg-turbo/libjpeg-turbo8@2.0.6-0ubuntu2
-
Introduced through: buildpack-deps@impish › libjpeg-turbo/libjpeg-turbo8-dev@2.0.6-0ubuntu2
NVD Description
Note: Versions mentioned in the description apply only to the upstream libjpeg-turbo
package and not the libjpeg-turbo
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a grayscale buffer and loading a 16-bit binary PGM file into an RGB buffer. This is related to a heap-based buffer overflow in the get_word_rgb_row function in rdppm.c.
Remediation
There is no fixed version for Ubuntu:21.10
libjpeg-turbo
.
References
low severity
- Vulnerable module: openexr/libopenexr-dev
- Introduced through: openexr/libopenexr-dev@2.5.4-2 and openexr/libopenexr25@2.5.4-2
Detailed paths
-
Introduced through: buildpack-deps@impish › openexr/libopenexr-dev@2.5.4-2
-
Introduced through: buildpack-deps@impish › openexr/libopenexr25@2.5.4-2
NVD Description
Note: Versions mentioned in the description apply only to the upstream openexr
package and not the openexr
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.
Remediation
There is no fixed version for Ubuntu:21.10
openexr
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-23215
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BXFLD4ZAXKAIWO6ZPBCQEEDZB5IG676K/
- https://bugzilla.redhat.com/show_bug.cgi?id=1947586
- https://lists.debian.org/debian-lts-announce/2021/07/msg00001.html
- https://www.debian.org/security/2022/dsa-5299
- https://lists.debian.org/debian-lts-announce/2022/12/msg00022.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BXFLD4ZAXKAIWO6ZPBCQEEDZB5IG676K/
low severity
- Vulnerable module: openexr/libopenexr-dev
- Introduced through: openexr/libopenexr-dev@2.5.4-2 and openexr/libopenexr25@2.5.4-2
Detailed paths
-
Introduced through: buildpack-deps@impish › openexr/libopenexr-dev@2.5.4-2
-
Introduced through: buildpack-deps@impish › openexr/libopenexr25@2.5.4-2
NVD Description
Note: Versions mentioned in the description apply only to the upstream openexr
package and not the openexr
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
There's a flaw in OpenEXR's ImfDeepScanLineInputFile functionality in versions prior to 3.0.5. An attacker who is able to submit a crafted file to an application linked with OpenEXR could cause an out-of-bounds read. The greatest risk from this flaw is to application availability.
Remediation
There is no fixed version for Ubuntu:21.10
openexr
.
References
low severity
- Vulnerable module: openexr/libopenexr-dev
- Introduced through: openexr/libopenexr-dev@2.5.4-2 and openexr/libopenexr25@2.5.4-2
Detailed paths
-
Introduced through: buildpack-deps@impish › openexr/libopenexr-dev@2.5.4-2
-
Introduced through: buildpack-deps@impish › openexr/libopenexr25@2.5.4-2
NVD Description
Note: Versions mentioned in the description apply only to the upstream openexr
package and not the openexr
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
OpenEXR 3.1.x before 3.1.4 has a heap-based buffer overflow in Imf_3_1::LineCompositeTask::execute (called from IlmThread_3_1::NullThreadPoolProvider::addTask and IlmThread_3_1::ThreadPool::addGlobalTask). NOTE: db217f2 may be inapplicable.
Remediation
There is no fixed version for Ubuntu:21.10
openexr
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-45942
- https://github.com/AcademySoftwareFoundation/openexr/pull/1209
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=41416
- https://github.com/AcademySoftwareFoundation/openexr/commit/11cad77da87c4fa2aab7d58dd5339e254db7937e
- https://github.com/AcademySoftwareFoundation/openexr/commit/db217f29dfb24f6b4b5100c24ac5e7490e1c57d0
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/openexr/OSV-2021-1627.yaml
- https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v3.1.4
- https://github.com/AcademySoftwareFoundation/openexr/blob/v3.1.4/CHANGES.md#version-314-january-26-2022
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HJ5PW4WNXBKCRFGDZGAQOSVH2BKZKL4X/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XJUK7WIQV5EKWTCZBRXFN6INHG6MLS5O/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6TEZDE2S2DB4BF4LZSSV4W3DNW7DSRHJ/
- https://security.gentoo.org/glsa/202210-31
- https://www.debian.org/security/2022/dsa-5299
- https://lists.debian.org/debian-lts-announce/2022/12/msg00022.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6TEZDE2S2DB4BF4LZSSV4W3DNW7DSRHJ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HJ5PW4WNXBKCRFGDZGAQOSVH2BKZKL4X/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XJUK7WIQV5EKWTCZBRXFN6INHG6MLS5O/
low severity
- Vulnerable module: openjpeg2/libopenjp2-7
- Introduced through: openjpeg2/libopenjp2-7@2.3.1-1ubuntu5 and openjpeg2/libopenjp2-7-dev@2.3.1-1ubuntu5
Detailed paths
-
Introduced through: buildpack-deps@impish › openjpeg2/libopenjp2-7@2.3.1-1ubuntu5
-
Introduced through: buildpack-deps@impish › openjpeg2/libopenjp2-7-dev@2.3.1-1ubuntu5
NVD Description
Note: Versions mentioned in the description apply only to the upstream openjpeg2
package and not the openjpeg2
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service (DoS). This occurs when the attacker uses the command line option "-ImgDir" on a directory that contains 1048576 files.
Remediation
There is no fixed version for Ubuntu:21.10
openjpeg2
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-29338
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZ54FGM2IGAP4AWSJ22JKHOPHCR3FGYU/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QB6AI7CWXWMEDZIQY4LQ6DMIEXMDOHUP/
- https://github.com/uclouvain/openjpeg/issues/1338
- https://lists.debian.org/debian-lts-announce/2022/04/msg00006.html
- https://security.gentoo.org/glsa/202209-04
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZ54FGM2IGAP4AWSJ22JKHOPHCR3FGYU/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QB6AI7CWXWMEDZIQY4LQ6DMIEXMDOHUP/
low severity
- Vulnerable module: patch
- Introduced through: patch@2.7.6-7
Detailed paths
-
Introduced through: buildpack-deps@impish › patch@2.7.6-7
NVD Description
Note: Versions mentioned in the description apply only to the upstream patch
package and not the patch
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
An Invalid Pointer vulnerability exists in GNU patch 2.7 via the another_hunk function, which causes a Denial of Service.
Remediation
There is no fixed version for Ubuntu:21.10
patch
.
References
low severity
- Vulnerable module: tiff/libtiff-dev
- Introduced through: tiff/libtiff-dev@4.3.0-1ubuntu0.1, tiff/libtiff5@4.3.0-1ubuntu0.1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › tiff/libtiff-dev@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiff5@4.3.0-1ubuntu0.1
-
Introduced through: buildpack-deps@impish › tiff/libtiffxx5@4.3.0-1ubuntu0.1
NVD Description
Note: Versions mentioned in the description apply only to the upstream tiff
package and not the tiff
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
LibTIFF 4.3.0 has an out-of-bounds read in _TIFFmemcpy in tif_unix.c in certain situations involving a custom tag and 0x0200 as the second word of the DE field.
Remediation
There is no fixed version for Ubuntu:21.10
tiff
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-22844
- https://gitlab.com/libtiff/libtiff/-/issues/355
- https://gitlab.com/libtiff/libtiff/-/merge_requests/287
- https://lists.debian.org/debian-lts-announce/2022/03/msg00001.html
- https://security.netapp.com/advisory/ntap-20220311-0002/
- https://www.debian.org/security/2022/dsa-5108
- https://security.gentoo.org/glsa/202210-10
low severity
- Vulnerable module: unzip
- Introduced through: unzip@6.0-26ubuntu1
Detailed paths
-
Introduced through: buildpack-deps@impish › unzip@6.0-26ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream unzip
package and not the unzip
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution.
Remediation
There is no fixed version for Ubuntu:21.10
unzip
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-0530
- https://bugzilla.redhat.com/show_bug.cgi?id=2051395
- https://github.com/ByteHackr/unzip_poc
- https://support.apple.com/kb/HT213256
- https://support.apple.com/kb/HT213257
- https://support.apple.com/kb/HT213255
- http://seclists.org/fulldisclosure/2022/May/38
- http://seclists.org/fulldisclosure/2022/May/35
- http://seclists.org/fulldisclosure/2022/May/33
- https://www.debian.org/security/2022/dsa-5202
- https://lists.debian.org/debian-lts-announce/2022/09/msg00028.html
- https://security.gentoo.org/glsa/202310-17
low severity
- Vulnerable module: libxslt/libxslt1-dev
- Introduced through: libxslt/libxslt1-dev@1.1.34-4 and libxslt/libxslt1.1@1.1.34-4
Detailed paths
-
Introduced through: buildpack-deps@impish › libxslt/libxslt1-dev@1.1.34-4
-
Introduced through: buildpack-deps@impish › libxslt/libxslt1.1@1.1.34-4
NVD Description
Note: Versions mentioned in the description apply only to the upstream libxslt
package and not the libxslt
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
In libxslt 1.1.29 and earlier, the EXSLT math.random function was not initialized with a random seed during startup, which could cause usage of this function to produce predictable outputs.
Remediation
There is no fixed version for Ubuntu:21.10
libxslt
.
References
low severity
- Vulnerable module: shadow/login
- Introduced through: shadow/login@1:4.8.1-1ubuntu9 and shadow/passwd@1:4.8.1-1ubuntu9
Detailed paths
-
Introduced through: buildpack-deps@impish › shadow/login@1:4.8.1-1ubuntu9
-
Introduced through: buildpack-deps@impish › shadow/passwd@1:4.8.1-1ubuntu9
NVD Description
Note: Versions mentioned in the description apply only to the upstream shadow
package and not the shadow
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees
Remediation
There is no fixed version for Ubuntu:21.10
shadow
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2013-4235
- https://security-tracker.debian.org/tracker/CVE-2013-4235
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4235
- https://access.redhat.com/security/cve/cve-2013-4235
- https://security.gentoo.org/glsa/202210-26
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
low severity
- Vulnerable module: imagemagick
- Introduced through: imagemagick@8:6.9.11.60+dfsg-1ubuntu1, imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1 and others
Detailed paths
-
Introduced through: buildpack-deps@impish › imagemagick@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6-common@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/imagemagick-6.q16@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-arch-config@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-6-extra@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickcore-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6-headers@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-6@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-6.q16-dev@8:6.9.11.60+dfsg-1ubuntu1
-
Introduced through: buildpack-deps@impish › imagemagick/libmagickwand-dev@8:6.9.11.60+dfsg-1ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream imagemagick
package and not the imagemagick
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribute in both open and proprietary applications. In affected versions and in certain cases, Postscript files could be read and written when specifically excluded by a module
policy in policy.xml
. ex. <policy domain="module" rights="none" pattern="PS" />. The issue has been resolved in ImageMagick 7.1.0-7 and in 6.9.12-22. Fortunately, in the wild, few users utilize the module
policy and instead use the coder
policy that is also our workaround recommendation: <policy domain="coder" rights="none" pattern="{PS,EPI,EPS,EPSF,EPSI}" />.
Remediation
There is no fixed version for Ubuntu:21.10
imagemagick
.
References
- http://people.ubuntu.com/~ubuntu-security/cve/CVE-2021-39212
- https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qvhr-jj4p-j2qr
- https://github.com/ImageMagick/ImageMagick/commit/01faddbe2711a4156180c4a92837e2f23683cc68
- https://github.com/ImageMagick/ImageMagick/commit/35893e7cad78ce461fcaffa56076c11700ba5e4e
- https://lists.debian.org/debian-lts-announce/2023/05/msg00020.html
low severity
- Vulnerable module: unzip
- Introduced through: unzip@6.0-26ubuntu1
Detailed paths
-
Introduced through: buildpack-deps@impish › unzip@6.0-26ubuntu1
NVD Description
Note: Versions mentioned in the description apply only to the upstream unzip
package and not the unzip
package as distributed by Ubuntu
.
See How to fix?
for Ubuntu:21.10
relevant fixed versions and status.
A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution.
Remediation
There is no fixed version for Ubuntu:21.10
unzip
.