Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

1 – 10 of 10 results

CVE-2021-44568

Medium priority
Needs evaluation

Two heap-overflow vulnerabilities exist in openSUSE/libsolv libsolv through 13 Dec 2020 in the decisionmap variable via the resolve_dependencies function at src/solver.c (line 1940 & line 1995), which could cause a remote Denial...

1 affected packages

libsolv

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsolv Not affected Not affected Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2021-33938

Medium priority
Vulnerable

Buffer overflow vulnerability in function prune_to_recommended in src/policy.c in libsolv before 0.7.17 allows attackers to cause a Denial of Service.

1 affected packages

libsolv

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsolv Not affected Not affected Vulnerable Vulnerable Needs evaluation
Show less packages

CVE-2021-33930

Medium priority
Vulnerable

Buffer overflow vulnerability in function pool_installable_whatprovides in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.

1 affected packages

libsolv

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsolv Not affected Not affected Vulnerable Vulnerable Needs evaluation
Show less packages

CVE-2021-33929

Medium priority
Vulnerable

Buffer overflow vulnerability in function pool_disabled_solvable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.

1 affected packages

libsolv

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsolv Not affected Not affected Vulnerable Vulnerable Needs evaluation
Show less packages

CVE-2021-33928

Medium priority
Vulnerable

Buffer overflow vulnerability in function pool_installable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.

1 affected packages

libsolv

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsolv Not affected Not affected Vulnerable Vulnerable Needs evaluation
Show less packages

CVE-2021-3200

Medium priority
Needs evaluation

Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * testcase_read(Pool *pool, FILE *fp, const char *testcase, Queue *job, char **resultp, int *resultflagsp function at src/testcase.c: line 2334, which could cause...

1 affected packages

libsolv

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsolv Not affected Not affected Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2019-20387

Medium priority
Vulnerable

repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema.

1 affected packages

libsolv

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsolv Not affected Not affected Not affected Vulnerable Vulnerable
Show less packages

CVE-2018-20534

Medium priority
Fixed

** DISPUTED ** There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a denial of service. NOTE: third parties dispute this issue stating that the issue affects the test suite...

1 affected packages

libsolv

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsolv Fixed Fixed Fixed Fixed
Show less packages

CVE-2018-20533

Medium priority
Fixed

There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.

1 affected packages

libsolv

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsolv Fixed Fixed Fixed Fixed
Show less packages

CVE-2018-20532

Medium priority
Fixed

There is a NULL pointer dereference at ext/testcase.c (function testcase_read) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.

1 affected packages

libsolv

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsolv Fixed Fixed Fixed Fixed
Show less packages