Search CVE reports
171 – 180 of 38750 results
List::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise function. pairwise() collects the values returned by the block into a heap buffer sized to the longer input array, then grows the buffer...
1 affected package
liblist-someutils-xs-perl
| Package | 24.04 LTS |
|---|---|
| liblist-someutils-xs-perl | Needs evaluation |
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::XPathContext did not keep its source document alive for garbage collection. If an XPathContext outlived its...
1 affected package
ruby-nokogiri
| Package | 24.04 LTS |
|---|---|
| ruby-nokogiri | Needs evaluation |
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::Document#root= validated only that the new root was a Nokogiri::XML::Node, allowing a DTD node to be set as the...
1 affected package
ruby-nokogiri
| Package | 24.04 LTS |
|---|---|
| ruby-nokogiri | Needs evaluation |
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri’s CRuby native extension could leave a Ruby wrapper pointing to freed memory when replacing the value of an...
1 affected package
ruby-nokogiri
| Package | 24.04 LTS |
|---|---|
| ruby-nokogiri | Needs evaluation |
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri contains a bug when calling certain methods on allocated-but-uninitialized native wrapper classes that inherit from...
1 affected package
ruby-nokogiri
| Package | 24.04 LTS |
|---|---|
| ruby-nokogiri | Needs evaluation |
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, calling Document#encoding= with an invalid encoding (e.g., a non-string, or a string containing a null byte) raises an exception,...
1 affected package
ruby-nokogiri
| Package | 24.04 LTS |
|---|---|
| ruby-nokogiri | Needs evaluation |
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::NodeSet#[] (and its alias #slice) checked the requested index against the node set's bounds using...
1 affected package
ruby-nokogiri
| Package | 24.04 LTS |
|---|---|
| ruby-nokogiri | Needs evaluation |
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, the NONET parse option, which Nokogiri turns on by default for Nokogiri::XML::Schema (see CVE-2020-26247), was not correctly...
1 affected package
ruby-nokogiri
| Package | 24.04 LTS |
|---|---|
| ruby-nokogiri | Needs evaluation |
Spoofing replies to Recursor might mark an IP of an authoritative server as not supporting EDNS, causing valdiation of DNSSEC records served by that server to fail.
1 affected package
pdns-recursor
| Package | 24.04 LTS |
|---|---|
| pdns-recursor | Needs evaluation |
An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation.
1 affected package
pdns-recursor
| Package | 24.04 LTS |
|---|---|
| pdns-recursor | Needs evaluation |