Search CVE reports


Toggle filters

1 – 3 of 3 results


CVE-2026-14330

Medium priority

Some fixes available 3 of 4

Multiple unbounded alloca() calls in the PulseAudio protocol server.

2 affected packages

pipewire, pulseaudio

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
pipewire Fixed Fixed Fixed Not affected
pulseaudio Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2026-14324

Medium priority

Some fixes available 2 of 3

RAOP module accepts unbounded Content-Length values and does not check the pw_array_add() return.

1 affected package

pipewire

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
pipewire Fixed Fixed Not affected Not affected
Show less packages

CVE-2022-4964

Medium priority
Ignored

Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio-record is not set.

2 affected packages

pipewire, wireplumber

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
pipewire Not affected Ignored Not affected Ignored
wireplumber Not affected Ignored Not in release Ignored
Show less packages