Lucene search
K
UbuntuMost viewed

10888 matches found

Ubuntu
Ubuntu
•added 2022/01/24 7:7 p.m.•103 views

USN-5250-2: strongSwan vulnerability

USN-5250-1 fixed a vulnerability in strongSwan. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Zhuowei Zhang discovered that stringSwan incorrectly handled EAP authentication. A remote attacker could use this issue to cause...

9.1CVSS7.3AI score0.02761EPSS
Exploits0
Ubuntu
Ubuntu
•added 2022/01/20 4:12 p.m.•103 views

USN-5243-2: AIDE vulnerability

USN-5243-1 fixed a vulnerability in aide. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: David Bouman discovered that AIDE incorrectly handled base64 operations. A local attacker could use this issue to cause AIDE to crash,...

7.8CVSS7.8AI score0.00493EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/09/14 1:21 p.m.•103 views

USN-5077-2: Apport vulnerabilities

USN-5077-1 fixed several vulnerabilities in Apport. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Maik Münch and Stephen Röttger discovered that Apport incorrectly handled certain information gathering operations. A local...

6.5CVSS6AI score0.00448EPSS
Exploits2
Ubuntu
Ubuntu
•added 2021/09/08 11:28 a.m.•103 views

USN-5066-1: PySAML2 vulnerability

Brian Wolff discovered that PySAML2 incorrectly validated cryptographic signatures. A remote attacker could possibly use this issue to alter SAML documents...

6.5CVSS7AI score0.0118EPSS
Exploits3
Ubuntu
Ubuntu
•added 2021/02/10 11:7 p.m.•103 views

USN-4730-1: PostSRSd vulnerability

It was discovered that PostSRSd mishandled certain input. A remote attacker could use this vulnerability to cause a denial of service via a long timestamp tag in an SRS address...

7.5CVSS7.2AI score0.02657EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/01/05 1:20 p.m.•103 views

USN-4675-1: OpenStack Horizon vulnerability

Pritam Singh discovered that OpenStack Horizon incorrectly validated certain parameters. An attacker could possibly use this issue to cause OpenStack Horizon to redirect to a malicious URL...

6.1CVSS6.2AI score0.014EPSS
Exploits1
Ubuntu
Ubuntu
•added 2020/11/03 3:0 p.m.•103 views

USN-4614-1: GDM vulnerability

Kevin Backhouse discovered that GDM incorrectly launched the initial setup tool when the accountsservice daemon was not reachable. A local attacker able to cause accountsservice to crash or stop responding could trick GDM into launching the initial setup tool and create a privileged user...

7.2CVSS7.2AI score0.01109EPSS
Exploits1
Ubuntu
Ubuntu
•added 2020/11/03 12:17 p.m.•103 views

USN-4613-1: python-cryptography vulnerability

Hubert Kario discovered that python-cryptography incorrectly handled certain decryption. An attacker could possibly use this issue to expose sensitive information...

5.9CVSS7.1AI score0.02454EPSS
Exploits0
Ubuntu
Ubuntu
•added 2020/03/02 5:58 p.m.•103 views

USN-4288-2: ppp vulnerability

USN-4288-1 fixed a vulnerability in ppp. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that ppp incorrectly handled certain rhostname values. A remote attacker could use this issue to cause ppp to crash,...

9.8CVSS8.7AI score0.19431EPSS
Exploits3
Ubuntu
Ubuntu
•added 2020/02/20 1:37 p.m.•103 views

USN-4288-1: ppp vulnerability

It was discovered that ppp incorrectly handled certain rhostname values. A remote attacker could use this issue to cause ppp to crash, resulting in a denial of service, or possibly execute arbitrary code...

9.8CVSS8.6AI score0.19431EPSS
Exploits3
Ubuntu
Ubuntu
•added 2020/02/18 9:24 p.m.•103 views

USN-4287-2: Linux kernel (Azure) vulnerabilities

USN-4287-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux kernel for Microsoft Azure Cloud systems for Ubuntu 14.04 ESM. It was discovered that the Linux kernel did not properly clear data structures on context switches...

7.8CVSS7AI score0.10114EPSS
Exploits8
Ubuntu
Ubuntu
•added 2020/02/18 12:30 p.m.•103 views

USN-4281-1: WebKitGTK+ vulnerabilities

A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service...

9.3CVSS7.2AI score0.02655EPSS
Exploits0
Ubuntu
Ubuntu
•added 2020/01/20 3:24 p.m.•103 views

USN-4243-1: libbsd vulnerabilities

It was discovered that libbsd incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 14.04 ESM. CVE-2016-2090 It was discovered that libbsd incorrectly handled certain strings. An attacker could possibly use this...

9.8CVSS8.4AI score0.03223EPSS
Exploits1
Ubuntu
Ubuntu
•added 2019/09/03 1:59 p.m.•103 views

USN-4119-1: Irssi vulnerability

It was discovered that Irssi incorrectly handled certain CAP requests. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code...

9.8CVSS8.4AI score0.02488EPSS
Exploits0
Ubuntu
Ubuntu
•added 2019/08/06 4:8 p.m.•103 views

USN-4086-1: Mercurial vulnerability

It was discovered that Mercurial mishandled symlinks in subrepositories. An attacker could use this vulnerability to write arbitrary files to the target's filesystem...

5.9CVSS6.5AI score0.01413EPSS
Exploits0
Ubuntu
Ubuntu
•added 2019/04/16 10:18 p.m.•103 views

USN-3918-4: Firefox regressions

USN-3918-1 fixed vulnerabilities in Firefox. The update caused web compatibility and performance issues with some websites. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Multiple security issues were discovered in Firefox. If a user were tricked in ...

7.8AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2019/04/08 2:32 p.m.•103 views

USN-3939-2: Samba vulnerability

USN-3939-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: Michael Hanselmann discovered that Samba incorrectly handled registry files. A remote attacker could possibly use this issue to create new registry files outsi...

5.5CVSS5.8AI score0.03392EPSS
Exploits0
Ubuntu
Ubuntu
•added 2019/02/21 2:34 p.m.•103 views

USN-3866-2: Ghostscript regression

USN-3866-1 fixed vulnerabilities in Ghostscript. The new Ghostscript version introduced a regression when printing certain page sizes. This update fixes the problem. Original advisory details: Tavis Ormandy discovered that Ghostscript incorrectly handled certain PostScript files. If a user or...

5.9AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2018/11/27 7:18 p.m.•103 views

USN-3816-3: systemd regression

USN-3816-1 fixed vulnerabilities in systemd. The fix for CVE-2018-6954 caused a regression in systemd-tmpfiles when running Ubuntu inside a container on some older kernels. This issue only affected Ubuntu 16.04 LTS. In order to continue to support this configuration, the fixes for CVE-2018-6954...

6.8AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2018/04/04 7:21 p.m.•103 views

USN-3619-1: Linux kernel vulnerabilities

Jann Horn discovered that the Berkeley Packet Filter BPF implementation in the Linux kernel improperly performed sign extension in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-16995 It was discovered that a...

7.8CVSS7.3AI score0.30052EPSS
Exploits26
Ubuntu
Ubuntu
•added 2018/03/15 12:2 p.m.•103 views

USN-3598-1: curl vulnerabilities

Phan Thanh discovered that curl incorrectly handled certain FTP paths. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2018-1000120 Dario Weisser discovered that curl incorrectly handled certain LDAP URLs. An attacker could possibly use this issue t...

9.8CVSS7AI score0.12058EPSS
Exploits0
Ubuntu
Ubuntu
•added 2017/05/24 11:37 a.m.•103 views

USN-3298-1: MiniUPnP vulnerability

It was discovered that MiniUPnP incorrectly handled memory. A remote attacker could use this issue to cause a denial of service or possibly execute arbitrary code with privileges of the user running an application that uses the MiniUPnP library...

9.8CVSS8.5AI score0.24027EPSS
Exploits6
Ubuntu
Ubuntu
•added 2015/07/28 9:17 a.m.•103 views

USN-2690-1: Linux kernel (Vivid HWE) vulnerabilities

Andy Lutomirski discovered a flaw in the Linux kernel's handling of nested NMIs non-maskable interrupts. An unprivileged local user could exploit this flaw to cause a denial of service system crash or potentially escalate their privileges. CVE-2015-3290 Colin King discovered a flaw in the addkey...

7.2CVSS6.7AI score0.01103EPSS
Exploits4
Ubuntu
Ubuntu
•added 2015/03/24 9:22 a.m.•103 views

USN-2544-1: Linux kernel vulnerabilities

Eric Windisch discovered flaw in how the Linux kernel's XFS file system replaces remote attributes. A local access with access to an XFS file system could exploit this flaw to escalate their privileges. CVE-2015-0274 A flaw was discovered in the automatic loading of modules in the crypto subsyste...

7.2CVSS6.4AI score0.01176EPSS
Exploits3
Ubuntu
Ubuntu
•added 2014/11/25 4:8 a.m.•103 views

USN-2420-1: Linux kernel vulnerabilities

A flaw was discovered in how the Linux kernel's KVM Kernel Virtual Machine subsystem handles the CR4 control register at VM entry on Intel processors. A local host OS user can exploit this to cause a denial of service kill arbitrary processes, or system disruption by leveraging /dev/kvm access...

7.5CVSS6.9AI score0.05421EPSS
Exploits1
Ubuntu
Ubuntu
•added 2013/11/08 10:14 p.m.•103 views

USN-2024-1: Linux kernel (OMAP4) vulnerabilities

An information leak was discovered in the handling of ICMPv6 Router Advertisement RA messages in the Linux kernel's IPv6 network stack. A remote attacker could exploit this flaw to cause a denial of service excessive retries and address-generation outage, and consequently obtain sensitive...

6.2CVSS7.1AI score0.04144EPSS
Exploits3
Ubuntu
Ubuntu
•added 2012/02/13 7:21 p.m.•103 views

USN-1363-1: Linux kernel vulnerabilities

A bug was discovered in the Linux kernel's calculation of OOM Out of memory scores, that would result in the wrong process being killed. A user could use this to kill the process with the highest OOM score, even if that process belongs to another user or the system. CVE-2011-4097 A flaw was found...

7.8CVSS7AI score0.20492EPSS
Exploits11
Ubuntu
Ubuntu
•added 2011/12/08 11:26 p.m.•103 views

USN-1296-1: acpid vulnerabilities

Oliver-Tobias Ripka discovered that an ACPI script incorrectly handled power button events. A local attacker could use this to execute arbitrary code, and possibly escalate privileges. CVE-2011-2777 Helmut Grohne and Michael Biebl discovered that ACPI scripts were executed with a permissive file...

4.6CVSS5.7AI score0.00612EPSS
Exploits5
Ubuntu
Ubuntu
•added 2011/03/15 2:7 a.m.•103 views

USN-1085-2: tiff regression

USN-1085-1 fixed vulnerabilities in the system TIFF library. The upstream fixes were incomplete and created problems for certain CCITTFAX4 files. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Sauli Pahlman discovered that the TIFF library incorrectl...

7AI score0.08768EPSS
Exploits4References1
Ubuntu
Ubuntu
•added 2009/07/16 5:39 p.m.•103 views

USN-804-1: PulseAudio vulnerability

Tavis Ormandy, Julien Tinnes, and Yorick Koster discovered that PulseAudio did not safely re-execute itself. A local attacker could exploit this to gain root privileges...

7.2CVSS5.3AI score0.00736EPSS
Exploits6
Ubuntu
Ubuntu
•added 2009/02/12 7:13 p.m.•103 views

USN-720-1: PHP vulnerabilities

It was discovered that PHP did not properly enforce phpadminvalue and phpadminflag restrictions in the Apache configuration file. A local attacker could create a specially crafted PHP script that would bypass intended security restrictions. This issue only applied to Ubuntu 6.06 LTS, 7.10, and 8....

10CVSS7.7AI score0.07371EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/02/25 5:2 p.m.•102 views

USN-7301-1: Linux kernel vulnerabilities

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service system crash or possibly execute arbitrary code...

9.1CVSS8.1AI score0.01367EPSS
Exploits1
Ubuntu
Ubuntu
•added 2024/04/29 11:31 a.m.•102 views

USN-6729-3: Apache HTTP Server vulnerabilities

USN-6729-1 fixed vulnerabilities in Apache HTTP Server. This update provides the corresponding updates for Ubuntu 24.04 LTS. Original advisory details: Orange Tsai discovered that the Apache HTTP Server incorrectly handled validating certain input. A remote attacker could possibly use this issue ...

7.5CVSS7.4AI score0.91327EPSS
Exploits2
Ubuntu
Ubuntu
•added 2023/10/30 10:6 a.m.•102 views

USN-6457-1: Node.js vulnerabilities

Tavis Ormandy discovered that Node.js incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. CVE-2022-0778 Elison Niven discovered that Node.js...

10CVSS7AI score0.95764EPSS
Exploits8
Ubuntu
Ubuntu
•added 2023/10/11 8:11 p.m.•102 views

USN-6425-2: Samba regression

USN-6425-1 fixed vulnerabilities in Samba. Due to a build issue on Ubuntu 20.04 LTS, the update introduced regressions in macro handling and possibly other functionality. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Sri Nagasubramanian discovered...

7AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2023/09/06 5:57 p.m.•102 views

USN-6350-1: Linux kernel vulnerabilities

It was discovered that the NTFS file system implementation in the Linux kernel did not properly validate MFT flags in certain situations. An attacker could use this to construct a malicious NTFS image that, when mounted and operated on, could cause a denial of service system crash. CVE-2022-48425...

9.8CVSS6.7AI score0.02975EPSS
Exploits0
Ubuntu
Ubuntu
•added 2022/09/22 3:16 p.m.•102 views

USN-5628-2: etcd vulnerabilities

USN-5628-1 fixed vulnerabilities in etcd. This update provides the corresponding updates for Ubuntu 18.04 ESM. Original advisory details: It was discovered that etcd incorrectly handled certain specially crafted WAL files. An attacker could possibly use this issue to cause a denial of service...

7.7CVSS7.2AI score0.01291EPSS
Exploits0
Ubuntu
Ubuntu
•added 2022/08/18 9:49 p.m.•102 views

USN-5573-1: rsync vulnerability

Evgeny Legerov discovered that zlib incorrectly handled memory when performing certain inflate operations. An attacker could use this issue to cause rsync to crash, resulting in a denial of service, or possibly execute arbitrary code...

9.8CVSS7.2AI score0.1593EPSS
Exploits1
Ubuntu
Ubuntu
•added 2022/04/11 4:23 p.m.•102 views

USN-5374-1: libarchive vulnerability

It was discovered that libarchive incorrectly handled certain archive files. An attacker could possibly use this issue to expose sensitive information...

6.5CVSS6.8AI score0.01877EPSS
Exploits1
Ubuntu
Ubuntu
•added 2022/02/07 12:41 p.m.•102 views

USN-5269-2: Django vulnerabilities

USN-5269-1 fixed several vulnerabilities in Django. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Keryn Knight discovered that Django incorrectly handled certain template tags. A remote attacker could possibly use this issue to...

7.5CVSS6.8AI score0.49246EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/11/30 11:48 p.m.•102 views

USN-5165-1: Linux kernel (OEM) vulnerabilities

It was discovered that the NFC subsystem in the Linux kernel contained a use-after-free vulnerability in its NFC Controller Interface NCI implementation. A local attacker could possibly use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-3760 It was discovered...

9.8CVSS7.6AI score0.57853EPSS
Exploits4
Ubuntu
Ubuntu
•added 2021/11/03 8:9 p.m.•102 views

USN-5131-1: Firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, bypass security restrictions, spoof the browser UI, confuse the user, conduct phishing attacks, or execut...

10CVSS7.7AI score0.0383EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/09/22 2:9 p.m.•102 views

USN-5086-1: Linux kernel vulnerability

Johan Almbladh discovered that the eBPF JIT implementation for IBM s390x systems in the Linux kernel miscompiled operations in some situations, allowing circumvention of the BPF verifier. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code...

5.8AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2021/09/08 11:46 a.m.•102 views

USN-5069-1: mod-auth-mellon vulnerability

It was discovered that mod-auth-mellon incorrectly filtered certain URLs. A remote attacker could possibly use this issue to perform an open redirect attack...

6.1CVSS6.2AI score0.00752EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/08/31 4:32 p.m.•102 views

USN-5060-1: NTFS-3G vulnerabilities

It was discovered that NTFS-3G incorrectly handled certain image file. An attacker could possibly use this issue to execute arbitrary code...

5.8AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2021/03/15 9:31 p.m.•102 views

USN-4804-1: Puppet vulnerabilities

It was discovered that Puppet installed modules with world writable permissions. An attacker could use this vulnerability to execute arbitrary code or cause a denial of service. CVE-2017-10689 It was discovered that Puppet could be used to force YAML deserialization in an unsafe manner. A remote...

8.2CVSS7.1AI score0.02375EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 8:10 p.m.•102 views

USN-4768-1: musl vulnerabilities

It was discovered that musl did not properly handle kernel syscalls. An attacker could use this vulnerability to cause a denial of service crash or possibly execute arbitrary code. CVE-2018-1000001 It was discovered that musl did not properly handle the parsing of DNS response codes. A remote...

9.8CVSS8.2AI score0.13614EPSS
Exploits9
Ubuntu
Ubuntu
•added 2020/03/30 2:35 p.m.•102 views

USN-4312-1: Timeshift vulnerability

Matthias Gerstner discovered that Timeshift did not securely create temporary files. An attacker could exploit a race condition in Timeshift and potentially execute arbitrary commands as root...

7CVSS7.2AI score0.0028EPSS
Exploits0
Ubuntu
Ubuntu
•added 2019/10/16 2:21 p.m.•102 views

USN-4156-2: SDL vulnerabilities

USN-4156-1 fixed several vulnerabilities in SDL. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that SDL incorrectly handled certain images. If a user were tricked into opening a crafted image file, a remote...

8.8CVSS6.9AI score0.03299EPSS
Exploits11
Ubuntu
Ubuntu
•added 2019/08/13 7:25 p.m.•102 views

USN-4097-2: PHP vulnerabilities

USN-4097-1 fixed several vulnerabilities in php5. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that PHP incorrectly handled certain images. An attacker could possibly use this issue to cause a denial of servi...

7.1CVSS7.1AI score0.0442EPSS
Exploits2
Total number of security vulnerabilities5000