Lucene search
K
UbuntuMost viewed

10891 matches found

Ubuntu
Ubuntu
•added 2024/04/29 11:31 a.m.•103 views

USN-6729-3: Apache HTTP Server vulnerabilities

USN-6729-1 fixed vulnerabilities in Apache HTTP Server. This update provides the corresponding updates for Ubuntu 24.04 LTS. Original advisory details: Orange Tsai discovered that the Apache HTTP Server incorrectly handled validating certain input. A remote attacker could possibly use this issue ...

7.5CVSS7.4AI score0.91327EPSS
Exploits2
Ubuntu
Ubuntu
•added 2023/09/06 5:57 p.m.•103 views

USN-6350-1: Linux kernel vulnerabilities

It was discovered that the NTFS file system implementation in the Linux kernel did not properly validate MFT flags in certain situations. An attacker could use this to construct a malicious NTFS image that, when mounted and operated on, could cause a denial of service system crash. CVE-2022-48425...

9.8CVSS6.7AI score0.02975EPSS
Exploits0
Ubuntu
Ubuntu
•added 2023/05/30 5:37 p.m.•103 views

USN-6123-1: Linux kernel (OEM) vulnerabilities

Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrar...

7.8CVSS6.8AI score0.12966EPSS
Exploits8
Ubuntu
Ubuntu
•added 2023/02/16 9:20 a.m.•103 views

USN-5873-1: Go Text vulnerabilities

It was discovered that Go Text incorrectly handled certain encodings. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. CVE-2020-14040 It was discovered that Go Text incorrectly handled certain BCP 47 language...

7.5CVSS7.1AI score0.02297EPSS
Exploits2
Ubuntu
Ubuntu
•added 2022/09/22 3:16 p.m.•103 views

USN-5628-2: etcd vulnerabilities

USN-5628-1 fixed vulnerabilities in etcd. This update provides the corresponding updates for Ubuntu 18.04 ESM. Original advisory details: It was discovered that etcd incorrectly handled certain specially crafted WAL files. An attacker could possibly use this issue to cause a denial of service...

7.7CVSS7.2AI score0.01291EPSS
Exploits0
Ubuntu
Ubuntu
•added 2022/05/16 4:8 p.m.•103 views

USN-5422-1: libxml2 vulnerabilities

Shinji Sato discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM, and Ubuntu 16.04 ESM. CVE-2022-23308 It was...

7.5CVSS7.7AI score0.0601EPSS
Exploits5
Ubuntu
Ubuntu
•added 2022/04/28 6:23 p.m.•103 views

USN-5397-1: curl vulnerabilities

Patrick Monnerat discovered that curl incorrectly handled certain OAUTH2. An attacker could possibly use this issue to access sensitive information. CVE-2022-22576 Harry Sintonen discovered that curl incorrectly handled certain requests. An attacker could possibly use this issue to expose sensiti...

8.1CVSS6.7AI score0.03425EPSS
Exploits4
Ubuntu
Ubuntu
•added 2022/03/30 8:17 a.m.•103 views

USN-5354-1: Twisted vulnerabilities

It was discovered that Twisted incorrectly filtered HTTP headers when clients are being redirected to another origin. A remote attacker could use this issue to obtain sensitive information. CVE-2022-21712 It was discovered that Twisted incorrectly processed SSH handshake data on connection...

7.5CVSS7.4AI score0.03608EPSS
Exploits1
Ubuntu
Ubuntu
•added 2022/01/24 8:54 p.m.•103 views

USN-4586-2: PHP ImageMagick vulnerability

USN-4586-1 fixed vulnerabilities in PHP ImageMagick. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: It was discovered that PHP ImageMagick extension didn't check the address used by an array. An attacker could use this issue to cause PHP ImageMagick...

9.8CVSS7.2AI score0.01972EPSS
Exploits0
Ubuntu
Ubuntu
•added 2022/01/20 4:12 p.m.•103 views

USN-5243-2: AIDE vulnerability

USN-5243-1 fixed a vulnerability in aide. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: David Bouman discovered that AIDE incorrectly handled base64 operations. A local attacker could use this issue to cause AIDE to crash,...

7.8CVSS7.8AI score0.00493EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/09/14 1:21 p.m.•103 views

USN-5077-2: Apport vulnerabilities

USN-5077-1 fixed several vulnerabilities in Apport. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Maik Münch and Stephen Röttger discovered that Apport incorrectly handled certain information gathering operations. A local...

6.5CVSS6AI score0.00448EPSS
Exploits2
Ubuntu
Ubuntu
•added 2021/09/08 11:28 a.m.•103 views

USN-5066-1: PySAML2 vulnerability

Brian Wolff discovered that PySAML2 incorrectly validated cryptographic signatures. A remote attacker could possibly use this issue to alter SAML documents...

6.5CVSS7AI score0.0118EPSS
Exploits3
Ubuntu
Ubuntu
•added 2020/11/03 3:0 p.m.•103 views

USN-4614-1: GDM vulnerability

Kevin Backhouse discovered that GDM incorrectly launched the initial setup tool when the accountsservice daemon was not reachable. A local attacker able to cause accountsservice to crash or stop responding could trick GDM into launching the initial setup tool and create a privileged user...

7.2CVSS7.2AI score0.01109EPSS
Exploits1
Ubuntu
Ubuntu
•added 2020/11/03 12:17 p.m.•103 views

USN-4613-1: python-cryptography vulnerability

Hubert Kario discovered that python-cryptography incorrectly handled certain decryption. An attacker could possibly use this issue to expose sensitive information...

5.9CVSS7.1AI score0.02454EPSS
Exploits0
Ubuntu
Ubuntu
•added 2020/03/02 5:58 p.m.•103 views

USN-4288-2: ppp vulnerability

USN-4288-1 fixed a vulnerability in ppp. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that ppp incorrectly handled certain rhostname values. A remote attacker could use this issue to cause ppp to crash,...

9.8CVSS8.7AI score0.19431EPSS
Exploits3
Ubuntu
Ubuntu
•added 2020/02/20 1:37 p.m.•103 views

USN-4288-1: ppp vulnerability

It was discovered that ppp incorrectly handled certain rhostname values. A remote attacker could use this issue to cause ppp to crash, resulting in a denial of service, or possibly execute arbitrary code...

9.8CVSS8.6AI score0.19431EPSS
Exploits3
Ubuntu
Ubuntu
•added 2020/02/18 9:24 p.m.•103 views

USN-4287-2: Linux kernel (Azure) vulnerabilities

USN-4287-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux kernel for Microsoft Azure Cloud systems for Ubuntu 14.04 ESM. It was discovered that the Linux kernel did not properly clear data structures on context switches...

7.8CVSS7AI score0.10114EPSS
Exploits8
Ubuntu
Ubuntu
•added 2020/02/18 12:30 p.m.•103 views

USN-4281-1: WebKitGTK+ vulnerabilities

A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service...

9.3CVSS7.2AI score0.02633EPSS
Exploits0
Ubuntu
Ubuntu
•added 2020/01/20 3:24 p.m.•103 views

USN-4243-1: libbsd vulnerabilities

It was discovered that libbsd incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 14.04 ESM. CVE-2016-2090 It was discovered that libbsd incorrectly handled certain strings. An attacker could possibly use this...

9.8CVSS8.4AI score0.03223EPSS
Exploits1
Ubuntu
Ubuntu
•added 2019/10/16 2:21 p.m.•103 views

USN-4156-2: SDL vulnerabilities

USN-4156-1 fixed several vulnerabilities in SDL. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that SDL incorrectly handled certain images. If a user were tricked into opening a crafted image file, a remote...

8.8CVSS6.9AI score0.03299EPSS
Exploits11
Ubuntu
Ubuntu
•added 2019/09/03 1:59 p.m.•103 views

USN-4119-1: Irssi vulnerability

It was discovered that Irssi incorrectly handled certain CAP requests. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code...

9.8CVSS8.4AI score0.02488EPSS
Exploits0
Ubuntu
Ubuntu
•added 2019/08/06 4:8 p.m.•103 views

USN-4086-1: Mercurial vulnerability

It was discovered that Mercurial mishandled symlinks in subrepositories. An attacker could use this vulnerability to write arbitrary files to the target's filesystem...

5.9CVSS6.5AI score0.01413EPSS
Exploits0
Ubuntu
Ubuntu
•added 2019/04/16 10:18 p.m.•103 views

USN-3918-4: Firefox regressions

USN-3918-1 fixed vulnerabilities in Firefox. The update caused web compatibility and performance issues with some websites. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Multiple security issues were discovered in Firefox. If a user were tricked in ...

7.8AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2019/04/08 2:32 p.m.•103 views

USN-3939-2: Samba vulnerability

USN-3939-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: Michael Hanselmann discovered that Samba incorrectly handled registry files. A remote attacker could possibly use this issue to create new registry files outsi...

5.5CVSS5.8AI score0.03392EPSS
Exploits0
Ubuntu
Ubuntu
•added 2019/02/21 2:34 p.m.•103 views

USN-3866-2: Ghostscript regression

USN-3866-1 fixed vulnerabilities in Ghostscript. The new Ghostscript version introduced a regression when printing certain page sizes. This update fixes the problem. Original advisory details: Tavis Ormandy discovered that Ghostscript incorrectly handled certain PostScript files. If a user or...

5.9AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2019/01/30 10:43 p.m.•103 views

USN-3874-1: Firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, gain additional privileges by escaping the sandbox, or execute arbitrary code. CVE-2018-18500,...

10CVSS8AI score0.12658EPSS
Exploits1
Ubuntu
Ubuntu
•added 2018/04/04 7:21 p.m.•103 views

USN-3619-1: Linux kernel vulnerabilities

Jann Horn discovered that the Berkeley Packet Filter BPF implementation in the Linux kernel improperly performed sign extension in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-16995 It was discovered that a...

7.8CVSS7.3AI score0.30052EPSS
Exploits26
Ubuntu
Ubuntu
•added 2018/03/15 12:2 p.m.•103 views

USN-3598-1: curl vulnerabilities

Phan Thanh discovered that curl incorrectly handled certain FTP paths. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2018-1000120 Dario Weisser discovered that curl incorrectly handled certain LDAP URLs. An attacker could possibly use this issue t...

9.8CVSS7AI score0.12058EPSS
Exploits0
Ubuntu
Ubuntu
•added 2017/05/24 11:37 a.m.•103 views

USN-3298-1: MiniUPnP vulnerability

It was discovered that MiniUPnP incorrectly handled memory. A remote attacker could use this issue to cause a denial of service or possibly execute arbitrary code with privileges of the user running an application that uses the MiniUPnP library...

9.8CVSS8.5AI score0.24027EPSS
Exploits6
Ubuntu
Ubuntu
•added 2015/07/28 9:17 a.m.•103 views

USN-2690-1: Linux kernel (Vivid HWE) vulnerabilities

Andy Lutomirski discovered a flaw in the Linux kernel's handling of nested NMIs non-maskable interrupts. An unprivileged local user could exploit this flaw to cause a denial of service system crash or potentially escalate their privileges. CVE-2015-3290 Colin King discovered a flaw in the addkey...

7.2CVSS6.7AI score0.01103EPSS
Exploits4
Ubuntu
Ubuntu
•added 2015/03/24 9:22 a.m.•103 views

USN-2544-1: Linux kernel vulnerabilities

Eric Windisch discovered flaw in how the Linux kernel's XFS file system replaces remote attributes. A local access with access to an XFS file system could exploit this flaw to escalate their privileges. CVE-2015-0274 A flaw was discovered in the automatic loading of modules in the crypto subsyste...

7.2CVSS6.4AI score0.01176EPSS
Exploits3
Ubuntu
Ubuntu
•added 2014/11/25 4:8 a.m.•103 views

USN-2420-1: Linux kernel vulnerabilities

A flaw was discovered in how the Linux kernel's KVM Kernel Virtual Machine subsystem handles the CR4 control register at VM entry on Intel processors. A local host OS user can exploit this to cause a denial of service kill arbitrary processes, or system disruption by leveraging /dev/kvm access...

7.5CVSS6.9AI score0.05421EPSS
Exploits1
Ubuntu
Ubuntu
•added 2013/11/08 10:14 p.m.•103 views

USN-2024-1: Linux kernel (OMAP4) vulnerabilities

An information leak was discovered in the handling of ICMPv6 Router Advertisement RA messages in the Linux kernel's IPv6 network stack. A remote attacker could exploit this flaw to cause a denial of service excessive retries and address-generation outage, and consequently obtain sensitive...

6.2CVSS7.1AI score0.04144EPSS
Exploits3
Ubuntu
Ubuntu
•added 2012/02/08 3:42 p.m.•103 views

USN-1353-1: Xulrunnner vulnerabilities

Jesse Ruderman and Bob Clary discovered memory safety issues affecting the Gecko Browser engine. If the user were tricked into opening a specially crafted page, an attacker could exploit these to cause a denial of service via application crash, or potentially execute code with the privileges of t...

10CVSS8.6AI score0.36511EPSS
Exploits11
Ubuntu
Ubuntu
•added 2011/12/08 11:26 p.m.•103 views

USN-1296-1: acpid vulnerabilities

Oliver-Tobias Ripka discovered that an ACPI script incorrectly handled power button events. A local attacker could use this to execute arbitrary code, and possibly escalate privileges. CVE-2011-2777 Helmut Grohne and Michael Biebl discovered that ACPI scripts were executed with a permissive file...

4.6CVSS5.7AI score0.00612EPSS
Exploits5
Ubuntu
Ubuntu
•added 2011/03/15 2:7 a.m.•103 views

USN-1085-2: tiff regression

USN-1085-1 fixed vulnerabilities in the system TIFF library. The upstream fixes were incomplete and created problems for certain CCITTFAX4 files. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Sauli Pahlman discovered that the TIFF library incorrectl...

7AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2009/07/16 5:39 p.m.•103 views

USN-804-1: PulseAudio vulnerability

Tavis Ormandy, Julien Tinnes, and Yorick Koster discovered that PulseAudio did not safely re-execute itself. A local attacker could exploit this to gain root privileges...

7.2CVSS5.3AI score0.00736EPSS
Exploits6
Ubuntu
Ubuntu
•added 2009/02/12 7:13 p.m.•103 views

USN-720-1: PHP vulnerabilities

It was discovered that PHP did not properly enforce phpadminvalue and phpadminflag restrictions in the Apache configuration file. A local attacker could create a specially crafted PHP script that would bypass intended security restrictions. This issue only applied to Ubuntu 6.06 LTS, 7.10, and 8....

10CVSS7.7AI score0.07371EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/03/27 6:40 p.m.•102 views

USN-7383-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - x86 architecture; - Block layer subsystem; - Drivers core; - Ublk userspace block driver; -...

7.8CVSS7.2AI score0.00875EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/02/25 5:2 p.m.•102 views

USN-7301-1: Linux kernel vulnerabilities

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service system crash or possibly execute arbitrary code...

9.1CVSS8.1AI score0.01367EPSS
Exploits1
Ubuntu
Ubuntu
•added 2024/01/08 6:5 p.m.•102 views

USN-6569-1: libclamunrar vulnerabilities

it was discovered that libclamunrar incorrectly handled directories when extracting RAR archives. A remote attacker could possibly use this issue to overwrite arbitrary files and execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04. CVE-2022-30333 ...

7.8CVSS8.2AI score0.98975EPSS
Exploits13
Ubuntu
Ubuntu
•added 2023/10/30 10:6 a.m.•102 views

USN-6457-1: Node.js vulnerabilities

Tavis Ormandy discovered that Node.js incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. CVE-2022-0778 Elison Niven discovered that Node.js...

10CVSS7AI score0.95764EPSS
Exploits8
Ubuntu
Ubuntu
•added 2023/10/11 8:11 p.m.•102 views

USN-6425-2: Samba regression

USN-6425-1 fixed vulnerabilities in Samba. Due to a build issue on Ubuntu 20.04 LTS, the update introduced regressions in macro handling and possibly other functionality. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Sri Nagasubramanian discovered...

7AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2023/03/06 12:53 p.m.•102 views

USN-5767-3: Python vulnerability

USN-5767-1 fixed vulnerabilities in Python. This update fixes the problem for Ubuntu 18.04 LTS. Original advisory details: Nicky Mouha discovered that Python incorrectly handled certain SHA-3 internals. An attacker could possibly use this issue to cause a crash or execute arbitrary code...

9.8CVSS7.7AI score0.05193EPSS
Exploits1References1
Ubuntu
Ubuntu
•added 2023/02/27 3:35 p.m.•102 views

USN-5895-1: MPlayer vulnerabilities

It was discovered that MPlayer could be made to divide by zero when processing certain malformed media files. If a user were tricked into opening a specially crafted media file, an attacker could possibly use this issue to cause MPlayer to crash, resulting in a denial of service. CVE-2022-38850,...

5.5CVSS6AI score0.00344EPSS
Exploits9
Ubuntu
Ubuntu
•added 2022/08/18 9:49 p.m.•102 views

USN-5573-1: rsync vulnerability

Evgeny Legerov discovered that zlib incorrectly handled memory when performing certain inflate operations. An attacker could use this issue to cause rsync to crash, resulting in a denial of service, or possibly execute arbitrary code...

9.8CVSS7.2AI score0.1593EPSS
Exploits1
Ubuntu
Ubuntu
•added 2022/04/11 4:23 p.m.•102 views

USN-5374-1: libarchive vulnerability

It was discovered that libarchive incorrectly handled certain archive files. An attacker could possibly use this issue to expose sensitive information...

6.5CVSS6.8AI score0.01877EPSS
Exploits1
Ubuntu
Ubuntu
•added 2022/02/07 12:41 p.m.•102 views

USN-5269-2: Django vulnerabilities

USN-5269-1 fixed several vulnerabilities in Django. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Keryn Knight discovered that Django incorrectly handled certain template tags. A remote attacker could possibly use this issue to...

7.5CVSS6.8AI score0.49246EPSS
Exploits1
Ubuntu
Ubuntu
•added 2022/01/20 2:48 p.m.•102 views

USN-5243-1: AIDE vulnerability

David Bouman discovered that AIDE incorrectly handled base64 operations. A local attacker could use this issue to cause AIDE to crash, resulting in a denial of service, or possibly execute arbitrary code...

7.8CVSS7.8AI score0.00493EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/11/30 11:48 p.m.•102 views

USN-5165-1: Linux kernel (OEM) vulnerabilities

It was discovered that the NFC subsystem in the Linux kernel contained a use-after-free vulnerability in its NFC Controller Interface NCI implementation. A local attacker could possibly use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-3760 It was discovered...

9.8CVSS7.6AI score0.57853EPSS
Exploits4
Total number of security vulnerabilities5000