Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

1 – 4 of 4 results

CVE-2022-38792

Low priority
Not affected

The exotel (aka exotel-py) package in PyPI as of 0.1.6 includes a code execution backdoor inserted by a third party.

1 affected packages

python-exotel

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
python-exotel Not affected Not affected Not affected Not in release
Show less packages

CVE-2022-32278

Medium priority

Some fixes available 5 of 11

XFCE 4.16 allows attackers to execute arbitrary code because xdg-open can execute a .desktop file on an attacker-controlled FTP server.

1 affected packages

exo

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
exo Needs evaluation Fixed Fixed Fixed Fixed
Show less packages

CVE-2021-32611

Medium priority
Needs evaluation

A NULL pointer dereference vulnerability exists in eXcall_api.c in Antisip eXosip2 through 5.2.0 when handling certain 3xx redirect responses.

1 affected packages

libexosip2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libexosip2 Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2014-10375

Medium priority
Needs evaluation

handle_messages in eXtl_tls.c in eXosip before 5.0.0 mishandles a negative value in a content-length header.

1 affected packages

libexosip2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libexosip2 Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages