Search CVE reports


Toggle filters

61 – 70 of 39349 results

Status is adjusted based on your filters.


CVE-2026-20217

Medium priority
Needs evaluation

Fixed a bug in the PESpin unpacker cleanup path that could free pointers into the scanned file buffer and crash the scanner.

1 affected package

clamav

Package 24.04 LTS
clamav Needs evaluation
Show less packages

CVE-2026-20216

Medium priority
Needs evaluation

Fixed an InstallShield archive extraction limit bypass that could write far more temporary data than intended and exhaust temporary storage.

1 affected package

clamav

Package 24.04 LTS
clamav Needs evaluation
Show less packages

CVE-2026-20215

Medium priority
Needs evaluation

Fixed a 7z parser substream count overflow that could under-allocate parser metadata arrays and write past them while reading a malformed archive.

1 affected package

clamav

Package 24.04 LTS
clamav Needs evaluation
Show less packages

CVE-2026-20214

Medium priority
Needs evaluation

Fixed an FSG unpacker loop underflow that could write past the section array while scanning a malformed PE file.

1 affected package

clamav

Package 24.04 LTS
clamav Needs evaluation
Show less packages

CVE-2026-20213

Medium priority
Needs evaluation

Fixed an integer overflow in PE rebuild size calculations that could be reached through a malformed Aspack-packed PE file and lead to a heap buffer overflow write.

1 affected package

clamav

Package 24.04 LTS
clamav Needs evaluation
Show less packages

CVE-2026-14432

Medium priority
Not affected

Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)

1 affected package

chromium-browser

Package 24.04 LTS
chromium-browser Not affected
Show less packages

CVE-2026-14431

Medium priority
Not affected

Type Confusion in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

1 affected package

chromium-browser

Package 24.04 LTS
chromium-browser Not affected
Show less packages

CVE-2026-14430

Medium priority
Not affected

Integer overflow in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

1 affected package

chromium-browser

Package 24.04 LTS
chromium-browser Not affected
Show less packages

CVE-2026-14428

Medium priority
Not affected

Insufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML...

1 affected package

chromium-browser

Package 24.04 LTS
chromium-browser Not affected
Show less packages

CVE-2026-14426

Medium priority
Not affected

Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security...

1 affected package

chromium-browser

Package 24.04 LTS
chromium-browser Not affected
Show less packages