Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-3480-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00448EPSS
Exploits0References3
NVD
NVD
added 2018/02/02 2:29 p.m.23 views

CVE-2017-14180

Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability tha...

7.8CVSS7.7AI score0.00448EPSS
Exploits0References5
CVE
CVE
added 2018/02/02 2:0 p.m.67 views

CVE-2017-14180

CVE-2017-14180 affects Apport 2.13–2.20.7. The vulnerability arises from handling crashes within a PID namespace, allowing local users to create files as root and potentially cause DoS via resource exhaustion or gain root privileges. The issue is noted as distinct from CVE-2017-14179. Public docu...

7.8CVSS7.5AI score0.00448EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2017/11/21 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-3480-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00448EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2017/11/20 11:38 p.m.50 views

USN-3480-2: Apport regressions

USN-3480-1 fixed vulnerabilities in Apport. The fix for CVE-2017-14177 introduced a regression in the ability to handle crashes for users that configured their systems to use the Upstart init system in Ubuntu 16.04 LTS and Ubuntu 17.04. The fix for CVE-2017-14180 temporarily disabled crash...

7.3AI score
Exploits0References2
Ubuntu
Ubuntu
added 2017/11/15 7:22 p.m.53 views

USN-3480-1: Apport vulnerabilities

Sander Bos discovered that Apport incorrectly handled core dumps for setuid binaries. A local attacker could use this issue to perform a denial of service via resource exhaustion or possibly gain root privileges. CVE-2017-14177 Sander Bos discovered that Apport incorrectly handled core dumps for...

7.8CVSS7.3AI score0.00448EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2017/11/15 7:0 p.m.23 views

CVE-2017-14180

Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability tha...

7.8CVSS7.1AI score0.00448EPSS
Exploits0References4
Rows per page
Query Builder