Search CVE reports
21 – 30 of 42301 results
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj.dump is vulnerable to a stack-based buffer overflow when a large :indent value is provided by the developer....
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.3, Oj.load in :object mode reads uninitialized stack memory (and, for long keys, reads out of bounds) when parsing a JSON...
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |
[LogFormatter: 'raw' parameter format is no longer raw HTML]
1 affected package
mediawiki
| Package | 20.04 LTS |
|---|---|
| mediawiki | Needs evaluation |
[Fix ApiQueryUsers leaking status ofprivate user conditions for user]
1 affected package
mediawiki
| Package | 20.04 LTS |
|---|---|
| mediawiki | Needs evaluation |
[Exclude rev-deleted usernames from distinct authors query]
1 affected package
mediawiki
| Package | 20.04 LTS |
|---|---|
| mediawiki | Needs evaluation |
[mw.Api.getErrorMessage: Treat formatversion=1 as text]
1 affected package
mediawiki
| Package | 20.04 LTS |
|---|---|
| mediawiki | Needs evaluation |
[Escape linelinks argument before passing it on to Pygments]
1 affected package
mediawiki
| Package | 20.04 LTS |
|---|---|
| mediawiki | Needs evaluation |
[Check for editmyprivateinfo right in more places]
1 affected package
mediawiki
| Package | 20.04 LTS |
|---|---|
| mediawiki | Needs evaluation |
[Disallow user JS in pretty-print api.php responses]
1 affected package
mediawiki
| Package | 20.04 LTS |
|---|---|
| mediawiki | Needs evaluation |
[Hide hit count for private/protected filters in API]
1 affected package
mediawiki
| Package | 20.04 LTS |
|---|---|
| mediawiki | Needs evaluation |