Lucene search
K

180 matches found

OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.17 views

Ubuntu: Security Advisory (USN-2104-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.7AI score0.00498EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/07/21 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-2279-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.05406EPSS
Exploits1References2
canvas
canvas
added 2014/07/19 7:55 p.m.91 views

Immunity Canvas: LINUX_PPPOL2TP

Name| linuxpppol2tp ---|--- CVE| CVE-2014-4943 Exploit Pack| CANVAS Description| pppol2tp local root Notes| Repeatability: Single Notes: Exploit for Linux = 3.4.x amd64 and = 3.7.x x86 Tested on + Ubuntu 13.04 / 13.10 / 14.04 x86/amd64 + Fedora 17 amd64 only + Fedora 18/19/20 x86/amd64 Note:...

6.9CVSS7.1AI score0.02103EPSS
Exploits6
Ubuntu
Ubuntu
added 2014/07/17 1:3 a.m.108 views

USN-2289-1: Linux kernel vulnerabilities

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol PPP when used with the Layer Two Tunneling Protocol L2TP. A local user could exploit this flaw to gain administrative privileges. CVE-2014-4943 Michael S. Tsirkin discovered an information leak in the Linux kernel's...

7.5CVSS7AI score0.08103EPSS
Exploits12
OpenVAS
OpenVAS
added 2014/07/07 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-2265-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.4AI score0.06381EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/07/06 12:0 a.m.48 views

Ubuntu 13.10 : linux vulnerability (USN-2273-1)

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x8664 processors. An attacker could exploit this flaw to cause a denial of service System Crash or potential gain administrative privileges. Note that Tenable Network Security has extracted the preceding description block...

6.9CVSS6.6AI score0.02324EPSS
Exploits6References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.46 views

Linux 3.4+ - Arbitrary write with CONFIG_X86_X32

No description provided by source. / Local root exploit for CVE-2014-0038. https://raw.github.com/saelo/cve-2014-0038/master/timeoutpwn.c Bug: The X86X32 recvmmsg syscall does not properly sanitize the timeout pointer passed from userspace. Exploit primitive: Pass a pointer to a kernel address as...

6.9CVSS6.5AI score0.34649EPSS
Exploits16
OpenVAS
OpenVAS
added 2014/07/01 12:0 a.m.59 views

Ubuntu: Security Advisory (USN-2254-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS9.9AI score0.20805EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2014/06/27 8:54 a.m.74 views

USN-2264-1: Linux kernel vulnerabilities

Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. CVE-2014-1739 A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user...

4.9CVSS6.8AI score0.01121EPSS
Exploits4
Ubuntu
Ubuntu
added 2014/06/25 7:31 p.m.81 views

USN-2254-2: PHP updates

USN-2254-1 fixed vulnerabilities in PHP. The fix for CVE-2014-0185 further restricted the permissions on the PHP FastCGI Process Manager FPM UNIX socket. This update grants socket access to the www-data user and group so installations and documentation relying on the previous socket permissions...

7.7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/06/24 12:0 a.m.44 views

Ubuntu 14.04 LTS : OpenSSL regression (USN-2232-3)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2232-3 advisory. USN-2232-1 fixed vulnerabilities in OpenSSL. The upstream fix for CVE-2014-0224 caused a regression for certain applications that use renegotiation, such as...

7.4CVSS7.5AI score0.95326EPSS
Exploits9References1
UbuntuCve
UbuntuCve
added 2014/06/23 12:0 a.m.27 views

CVE-2014-0247

LibreOffice 4.2.4 executes unspecified VBA macros automatically, which has unspecified impact and attack vectors, possibly related to doc/docmacromode.cxx...

10CVSS7.1AI score0.03922EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/06/23 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-2248-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.01193EPSS
Exploits0References2
OSV
OSV
added 2014/06/19 3:55 p.m.5 views

DEBIAN-CVE-2013-1068

The OpenStack Nova python-nova package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.2 and 1:2014.1-0 before 1:2014.1-0ubuntu1.2 and Openstack Cinder python-cinder package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.1 and 1:2014.1-0 before 1:2014.1-0ubuntu1.1 for Ubuntu 13.10 and 14.04 LTS does not properl...

5CVSS7AI score0.01193EPSS
Exploits0References1
securityvulns
securityvulns
added 2014/06/19 12:0 a.m.68 views

[USN-2248-1] OpenStack Cinder vulnerability

========================================================================== Ubuntu Security Notice USN-2248-1 June 18, 2014 cinder vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

5CVSS0.6AI score0.01193EPSS
Exploits0
Ubuntu
Ubuntu
added 2014/06/18 5:47 p.m.65 views

USN-2248-1: OpenStack Cinder vulnerability

Darragh O'Reilly discovered that the Ubuntu packaging for OpenStack Cinder did not properly set up its sudo configuration. If a different flaw was found in OpenStack Cinder, this vulnerability could be used to escalate privileges. CVE-2013-1068...

5CVSS5.3AI score0.01193EPSS
Exploits0
Ubuntu
Ubuntu
added 2014/06/17 9:50 p.m.82 views

USN-2247-1: OpenStack Nova vulnerabilities

Darragh O'Reilly discovered that the Ubuntu packaging for OpenStack Nova did not properly set up its sudo configuration. If a different flaw was found in OpenStack Nova, this vulnerability could be used to escalate privileges. This issue only affected Ubuntu 13.10 and Ubuntu 14.04 LTS...

7.1CVSS5.5AI score0.02159EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2014/06/17 12:0 a.m.42 views

CVE-2013-1068

The OpenStack Nova python-nova package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.2 and 1:2014.1-0 before 1:2014.1-0ubuntu1.2 and Openstack Cinder python-cinder package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.1 and 1:2014.1-0 before 1:2014.1-0ubuntu1.1 for Ubuntu 13.10 and 14.04 LTS does not properl...

5CVSS5.9AI score0.01193EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2014/06/12 4:30 p.m.75 views

USN-2245-1: json-c vulnerabilities

Florian Weimer discovered that json-c incorrectly handled buffer lengths. An attacker could use this issue with a specially-crafted large JSON document to cause json-c to crash, resulting in a denial of service. CVE-2013-6370 Florian Weimer discovered that json-c incorrectly handled hash arrays. ...

5CVSS5.5AI score0.04474EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/06/12 12:0 a.m.22 views

Ubuntu 12.04 LTS / 13.10 : libav vulnerability (USN-2244-1)

It was discovered that Libav incorrectly handled certain malformed media files. If a user were tricked into opening a crafted media file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program. Not...

10CVSS6AI score0.04006EPSS
Exploits0References2
Rows per page
Query Builder