Search CVE reports

Toggle filters

1 – 10 of 12 results

CVE-2026-44928

Medium priority
Needs evaluation

In uriparser before 1.0.2, the function family EqualsUri can misclassify two unequal URIs as equal.

1 affected package

uriparser

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
uriparser Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-44927

Medium priority
Needs evaluation

In uriparser before 1.0.2, there is pointer difference truncation to int in various places.

1 affected package

uriparser

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
uriparser Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-42371

Medium priority
Vulnerable

uriparser before 1.0.1 has numeric truncation in text range comparison, if an application accepts URIs with a length in gigabytes.

1 affected package

uriparser

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
uriparser Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2025-67899

Medium priority
Vulnerable

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

1 affected package

uriparser

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
uriparser Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2024-34403

Medium priority

Some fixes available 6 of 7

An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an integer overflow via a long string.

1 affected package

uriparser

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
uriparser Not affected Fixed Fixed Fixed Fixed
Show less packages

CVE-2024-34402

Medium priority

Some fixes available 6 of 7

An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an integer overflow via long keys or values, with a resultant buffer overflow.

1 affected package

uriparser

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
uriparser Not affected Fixed Fixed Fixed Fixed
Show less packages

CVE-2021-46142

Medium priority

Some fixes available 4 of 6

An issue was discovered in uriparser before 0.9.6. It performs invalid free operations in uriNormalizeSyntax.

1 affected package

uriparser

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
uriparser Not affected Not affected Fixed Fixed
Show less packages

CVE-2021-46141

Medium priority

Some fixes available 4 of 6

An issue was discovered in uriparser before 0.9.6. It performs invalid free operations in uriFreeUriMembers and uriMakeOwner.

1 affected package

uriparser

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
uriparser Not affected Not affected Fixed Fixed
Show less packages

CVE-2018-20721

Medium priority
Fixed

URI_FUNC() in UriParse.c in uriparser before 0.9.1 has an out-of-bounds read (in uriParse*Ex* functions) for an incomplete URI with an IPv6 address containing an embedded IPv4 address, such as a "//[::44.1" address.

1 affected package

uriparser

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
uriparser Not affected Not affected Fixed
Show less packages

CVE-2018-19200

Medium priority

Some fixes available 4 of 5

An issue was discovered in uriparser before 0.9.0. UriCommon.c allows attempted operations on NULL input via a uriResetUri* function.

1 affected package

uriparser

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
uriparser Not affected Not affected Fixed
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. Next page
Export to JSON