Search CVE reports
1 – 5 of 5 results
CVE-2024-53432
Medium priorityWhile parsing certain malformed PLY files, PCL version 1.14.1 crashes due to an uncaught std::out_of_range exception in PCLPointCloud2::at. This issue could potentially be exploited to cause a denial-of-service (DoS) attack when...
1 affected package
pcl
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| pcl | Fixed | Fixed | Fixed | Fixed | Fixed |
CVE-2015-5262
Medium prioritySome fixes available 18 of 19
http/conn/ssl/SSLConnectionSocketFactory.java in Apache HttpComponents HttpClient before 4.3.6 ignores the http.socket.timeout configuration setting during an SSL handshake, which allows remote attackers to cause a denial of...
2 affected packages
commons-httpclient, httpcomponents-client
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| commons-httpclient | — | Fixed | Fixed | Fixed | Fixed |
| httpcomponents-client | — | Not affected | Not affected | Not affected | Not affected |
CVE-2012-6153
Low prioritySome fixes available 1 of 3
http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the...
2 affected packages
commons-httpclient, httpcomponents-client
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| commons-httpclient | — | — | — | — | Not affected |
| httpcomponents-client | — | — | — | — | Not affected |
CVE-2014-3577
Medium prioritySome fixes available 4 of 6
org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN)...
2 affected packages
commons-httpclient, httpcomponents-client
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| commons-httpclient | — | — | — | Not affected | Not affected |
| httpcomponents-client | — | — | — | Not affected | Not affected |
CVE-2012-5783
Low prioritySome fixes available 1 of 5
Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service (FPS) merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN)...
2 affected packages
commons-httpclient, httpcomponents-client
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| commons-httpclient | — | — | — | — | — |
| httpcomponents-client | — | — | — | — | — |