Search CVE reports
1 – 3 of 3 results
AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata (such as XFS extended attributes or tmpfs ACLs), because of a heap-based buffer overflow.
1 affected package
aide
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
aide | — | Not affected | Fixed | Fixed |
inftrees.h in zlib 1.2.2 allows remote attackers to cause a denial of service (application crash) via an invalid file that causes a large dynamic tree to be produced.
6 affected packages
aide, dpkg, ia32-libs, rpm, sash, zlib
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
aide | — | — | — | — |
dpkg | — | — | — | — |
ia32-libs | — | — | — | — |
rpm | — | — | — | — |
sash | — | — | — | — |
zlib | — | — | — | — |
Some fixes available 19 of 21
zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as...
9 affected packages
aide, bacula, dpkg, dump, ia32-libs...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
---|---|---|---|---|
aide | — | — | — | — |
bacula | — | — | — | — |
dpkg | — | — | — | — |
dump | — | — | — | — |
ia32-libs | — | — | — | — |
rpm | — | — | — | — |
sash | — | — | — | — |
zlib | — | — | — | — |
zsync | — | — | — | — |