Lucene search
K
UbuntuMost viewed

10923 matches found

Ubuntu
Ubuntu
added 2016/05/05 2:1 a.m.94 views

USN-2964-1: OpenJDK 7 vulnerabilities

Multiple vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity, and availability. An attacker could exploit these to cause a denial of service, expose sensitive data over the network, or possibly execute arbitrary code. CVE-2016-0686, CVE-2016-0687,...

10CVSS7.5AI score0.92334EPSS
Exploits1
Ubuntu
Ubuntu
added 2016/05/05 1:37 a.m.94 views

USN-2963-1: OpenJDK 8 vulnerabilities

Multiple vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity, and availability. An attacker could exploit these to cause a denial of service, expose sensitive data over the network, or possibly execute arbitrary code. CVE-2016-0686, CVE-2016-0687,...

10CVSS7.5AI score0.92334EPSS
Exploits1
Ubuntu
Ubuntu
added 2015/12/17 8:16 a.m.94 views

USN-2843-1: Linux kernel vulnerabilities

Jan Beulich discovered that the KVM svm hypervisor implementation in the Linux kernel did not properly catch Debug exceptions on AMD processors. An attacker in a guest virtual machine could use this to cause a denial of service system crash in the host OS. CVE-2015-8104 郭永刚 discovered that the pp...

10CVSS6.3AI score0.02501EPSS
Exploits1
Ubuntu
Ubuntu
added 2014/06/05 9:54 p.m.94 views

USN-2240-1: Linux kernel vulnerabilities

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service system crash or gain administrative privileges. CVE-2014-3153 An information leak was discovered in the netfilter subsystem of the Linux kernel. An...

7.8CVSS7.2AI score0.37233EPSS
Exploits17
Ubuntu
Ubuntu
added 2014/02/26 4:55 p.m.94 views

USN-2123-1: file vulnerabilities

It was discovered that file incorrectly handled Composite Document files. An attacker could use this issue to cause file to crash, resulting in a denial of service. This issue only affected Ubuntu 10.04 LTS and Ubuntu 12.04 LTS. CVE-2012-1571 Bernd Melchers discovered that file incorrectly handle...

6.5CVSS8AI score0.0507EPSS
Exploits1
Ubuntu
Ubuntu
added 2013/05/07 5:53 p.m.94 views

USN-1819-1: OpenJDK 6 vulnerabilities

Ben Murphy discovered a vulnerability in the OpenJDK JRE related to information disclosure and data integrity. An attacker could exploit this to execute arbitrary code. CVE-2013-0401 James Forshaw discovered a vulnerability in the OpenJDK JRE related to information disclosure, data integrity and...

10CVSS7.5AI score0.87227EPSS
Exploits15
Ubuntu
Ubuntu
added 2012/04/20 7:16 a.m.94 views

USN-1400-5: GSettings desktop schemas regression

USN-1400-1 fixed vulnerabilities in Firefox. Firefox 11 started using GSettings to access the system proxy settings. If there is a GSettings proxy settings schema, Firefox will consume it. The GSettings proxy settings schema that was shipped by default was unused by other applications and broke...

8.8AI score
Exploits0References1
Ubuntu
Ubuntu
added 2012/02/03 10:15 p.m.94 views

USN-1355-1: Firefox vulnerabilities

It was discovered that if a user chose to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users. CVE-2012-0450 Nicolas Gregoire and Aki Helin discovered that when processing a malformed...

10CVSS8.5AI score0.36511EPSS
Exploits11References1
Ubuntu
Ubuntu
added 2011/06/24 3:27 a.m.94 views

USN-1158-1: curl vulnerabilities

Richard Silverman discovered that when doing GSSAPI authentication, libcurl unconditionally performs credential delegation, handing the server a copy of the client's security credential. CVE-2011-2192 Wesley Miaw discovered that when zlib is enabled, libcurl does not properly restrict the amount ...

7.5CVSS6.8AI score0.04408EPSS
Exploits0
Ubuntu
Ubuntu
added 2010/07/23 6:35 a.m.94 views

USN-927-6: NSS vulnerability

USN-927-1 fixed vulnerabilities in NSS on Ubuntu 9.10. This update provides the corresponding updates for Ubuntu 9.04. Original advisory details: Marsh Ray and Steve Dispensa discovered a flaw in the TLS and SSLv3 protocols. If an attacker could perform a machine-in-the-middle attack at the start...

9.8CVSS7.9AI score0.87264EPSS
Exploits14
Ubuntu
Ubuntu
added 2010/05/19 7:1 p.m.94 views

USN-940-1: Kerberos vulnerabilities

It was discovered that Kerberos did not correctly free memory in the GSSAPI and kdb libraries. If a remote attacker were able to manipulate an application using these libraries carefully, the service could crash, leading to a denial of service. Only Ubuntu 6.06 LTS was affected. CVE-2007-5902,...

10CVSS6.4AI score0.11857EPSS
Exploits4
Ubuntu
Ubuntu
added 2009/08/19 4:55 a.m.94 views

USN-819-1: Linux kernel vulnerability

Tavis Ormandy and Julien Tinnes discovered that Linux did not correctly initialize certain socket operation function pointers. A local attacker could exploit this to gain root privileges. By default, Ubuntu 8.04 and later with a non-zero /proc/sys/vm/mmapminaddr setting were not vulnerable...

7.8CVSS6.4AI score0.14749EPSS
Exploits17
Ubuntu
Ubuntu
added 2007/08/25 12:37 a.m.94 views

USN-503-1: Thunderbird vulnerabilities

Various flaws were discovered in the layout and JavaScript engines. By tricking a user into opening a malicious email, an attacker could execute arbitrary code with the user's privileges. Please note that JavaScript is disabled by default for emails, and it is not recommended to enable it...

9.3CVSS8.5AI score0.29355EPSS
Exploits6
Ubuntu
Ubuntu
added 2007/01/12 6:58 a.m.94 views

USN-406-1: OpenOffice.org vulnerability

An integer overflow was discovered in OpenOffice.org's handling of WMF files. If a user were tricked into opening a specially crafted WMF file, an attacker could execute arbitrary code with user privileges...

9.3CVSS5.9AI score0.0824EPSS
Exploits0
Ubuntu
Ubuntu
added 2025/04/01 9:20 p.m.93 views

USN-7402-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - GPU drivers; - HID subsystem; - Media drivers; - JFS file system; - Network namespace; -...

7.8CVSS7.4AI score0.00809EPSS
Exploits1
Ubuntu
Ubuntu
added 2025/03/31 1:8 p.m.93 views

USN-7397-1: AOM vulnerability

Xiantong Hou discovered that AOM did not properly handle certain malformed media files. If an application using AOM opened a specially crafted file, a remote attacker could cause a denial of service, or possibly execute arbitrary code...

10CVSS7.5AI score0.01254EPSS
Exploits1
Ubuntu
Ubuntu
added 2025/03/17 11:40 a.m.93 views

USN-7352-1: FreeType vulnerability

It was discovered that FreeType incorrectly handled certain memory operations when parsing font subglyph structures. A remote attacker could use this issue to cause FreeType to crash, resulting in a denial of service, or possibly execute arbitrary code...

8.1CVSS7.6AI score0.26049EPSS
Exploits1
Ubuntu
Ubuntu
added 2024/05/23 4:27 p.m.93 views

USN-6785-1: GNOME Remote Desktop vulnerability

Matthias Gerstner discovered that GNOME Remote Desktop incorrectly performed certain user validation checks. A local attacker could possibly use this issue to obtain sensitive information, or take control of remote desktop connections...

7.5CVSS7.3AI score0.00569EPSS
Exploits0
Ubuntu
Ubuntu
added 2024/04/18 11:58 a.m.93 views

USN-6737-1: GNU C Library vulnerability

Charles Fol discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could use this issue to cause the GNU C Library to crash, resulting in a denial of service, or possibly execute arbitrary code...

7.3CVSS7.6AI score0.8833EPSS
Exploits16
Ubuntu
Ubuntu
added 2023/10/10 3:1 p.m.93 views

USN-6425-1: Samba vulnerabilities

Sri Nagasubramanian discovered that the Samba aclxattr VFS module incorrectly handled read-only files. When Samba is configured to ignore system ACLs, a remote attacker could possibly use this issue to truncate read-only files. CVE-2023-4091 Andrew Bartlett discovered that Samba incorrectly handl...

7.5CVSS6.9AI score0.01723EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/05/08 11:47 a.m.93 views

USN-6060-1: MySQL vulnerabilities

Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 8.0.33 in Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 22.10, and Ubuntu 23.04. Ubuntu 18.04 LTS has been updated to MySQL 5.7.42. In addition to...

7.5CVSS6.7AI score0.01501EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/04/12 8:36 a.m.93 views

USN-6011-1: Json-smart vulnerabilities

It was discovered that Json-smart incorrectly handled memory when processing input containing unclosed quotes. A remote attacker could possibly use this issue to cause applications using Json-smart to crash, leading to a denial of service. CVE-2021-31684 It was discovered that Json-smart...

7.5CVSS6.5AI score0.023EPSS
Exploits2
Ubuntu
Ubuntu
added 2023/03/27 2:59 p.m.93 views

USN-5973-1: url-parse vulnerabilities

It was discovered that url-parse incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service, or to perform a server-side request forgery attack or open...

10CVSS6.7AI score0.03805EPSS
Exploits7
Ubuntu
Ubuntu
added 2023/02/15 10:31 p.m.93 views

USN-5876-1: Linux kernel vulnerabilities

It was discovered that a memory leak existed in the Unix domain socket implementation of the Linux kernel. A local attacker could use this to cause a denial of service memory exhaustion. CVE-2022-3543 It was discovered that the Bluetooth HCI implementation in the Linux kernel did not properly...

8.8CVSS7AI score0.01393EPSS
Exploits3
Ubuntu
Ubuntu
added 2023/02/09 6:28 p.m.93 views

USN-5854-1: Linux kernel vulnerabilities

It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2 V4L2 implementation in the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-20369 Pawan Kumar Gupta, Alyssa Milburn, Ami...

7CVSS7.3AI score0.04947EPSS
Exploits1
Ubuntu
Ubuntu
added 2023/01/24 2:31 p.m.93 views

USN-5821-2: wheel vulnerability

USN-5821-1 fixed a vulnerability in wheel. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: Sebastian Chnelik discovered that wheel incorrectly handled certain file names when validated against a regex expression. An attacker could possibly use this...

7.5CVSS7AI score0.02659EPSS
Exploits1
Ubuntu
Ubuntu
added 2023/01/17 6:0 p.m.93 views

USN-5808-1: Linux kernel (IBM) vulnerabilities

It was discovered that the NFSD implementation in the Linux kernel did not properly handle some RPC messages, leading to a buffer overflow. A remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-43945 Tamás Koczka discovered that th...

8.8CVSS7.7AI score0.21314EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/01/05 6:34 p.m.93 views

USN-5789-1: Linux kernel (OEM) vulnerabilities

It was discovered that the NFSD implementation in the Linux kernel did not properly handle some RPC messages, leading to a buffer overflow. A remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-43945 Jann Horn discovered that the...

7.8CVSS7.3AI score0.21314EPSS
Exploits3
Ubuntu
Ubuntu
added 2022/08/30 2:13 p.m.93 views

USN-5588-1: Linux kernel vulnerability

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS7.3AI score0.06214EPSS
Exploits7
Ubuntu
Ubuntu
added 2022/07/04 2:10 p.m.93 views

USN-5479-2: PHP vulnerabilities

USN-5479-1 fixed vulnerabilities in PHP. This update provides the corresponding updates for Ubuntu 16.04 ESM. Original advisory details: Charles Fol discovered that PHP incorrectly handled initializing certain arrays when handling the pgqueryparams function. A remote attacker could use this issue...

8.8CVSS8.7AI score0.5838EPSS
Exploits3
Ubuntu
Ubuntu
added 2022/06/16 4:22 p.m.93 views

USN-5482-1: SPIP vulnerabilities

It was discovered that SPIP incorrectly validated inputs. An authenticated attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 18.04 LTS. CVE-2020-28984 Charles Fol and Théo Gordyjan discovered that SPIP is vulnerable to Cross Site Scripting XSS. If a...

9.8CVSS7.5AI score0.02949EPSS
Exploits0
Ubuntu
Ubuntu
added 2022/01/13 1:41 p.m.93 views

USN-5224-2: Ghostscript vulnerabilities

USN-5224-1 fixed several vulnerabilities in Ghostscript. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: It was discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a...

5.5CVSS6.8AI score0.01401EPSS
Exploits2
Ubuntu
Ubuntu
added 2021/11/01 1:43 p.m.93 views

USN-5127-1: WebKitGTK vulnerabilities

A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service...

8.8CVSS6.9AI score0.02319EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/10/04 3:9 p.m.93 views

USN-5099-1: Imlib2 vulnerability

It was discovered that Imlib2 incorrectly handled certain ICO images. An attacker could use this issue to cause a denial of service and possibly execute arbitrary code...

9.1CVSS8.5AI score0.01589EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/09/23 1:1 p.m.93 views

USN-5089-2: ca-certificates update

USN-5089-1 updated ca-certificates. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: The ca-certificates package contained a CA certificate that will expire on 2021-09-30 and will cause connectivity issues. This update removes the...

5.3AI score
Exploits0References1
Ubuntu
Ubuntu
added 2021/08/31 5:40 p.m.93 views

USN-5060-2: NTFS-3G vulnerabilities

USN-5060-1 fixed a vulnerability in NTFS-3G. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that NTFS-3G incorrectly handled certain image file. An attacker could possibly use this issue to execute arbitrary co...

5.9AI score
Exploits0References1
Ubuntu
Ubuntu
added 2021/05/17 10:50 p.m.93 views

USN-4958-1: Caribou vulnerability

It was discovered that the Caribou onscreen keyboard could be made to crash when given certain input values. An attacker could use this to bypass screen-locking applications that support using Caribou as an input mechanism...

5.4AI score
Exploits0References1
Ubuntu
Ubuntu
added 2021/05/11 6:30 p.m.93 views

USN-4944-1: MariaDB vulnerabilities

This update fixed multiple vulnerabilities in MariaDB. Ubuntu 18.04 LTS has been updated to MariaDB 10.1.48. Ubuntu 20.04 LTS has been updated to MariaDB 10.3.29. Ubuntu 20.10 has been updated to MariaDB 10.3.29. Ubuntu 21.04 has been updated to MariaDB 10.5.10...

5.3AI score
Exploits0References1
Ubuntu
Ubuntu
added 2020/09/15 5:25 p.m.93 views

USN-4496-1: Apache XML-RPC vulnerability

It was discovered that Apache XML-RPC aka ws-xmlrpc does not properly deserialize untrusted data. An attacker could possibly use this issue to execute arbitrary code. CVE-2019-17570...

9.8CVSS8.2AI score0.49285EPSS
Exploits2
Ubuntu
Ubuntu
added 2020/09/08 4:18 p.m.93 views

USN-4487-2: libx11 vulnerabilities

USN-4487-1 fixed several vulnerabilities in libx11. This update provides the corresponding update for Ubuntu 12.04 ESM and 14.04 ESM. Original advisory details: Todd Carson discovered that libx11 incorrectly handled certain memory operations. A local attacker could possibly use this issue to...

7.8CVSS7.3AI score0.00575EPSS
Exploits1
Ubuntu
Ubuntu
added 2020/08/17 4:46 p.m.93 views

USN-4460-1: Oniguruma vulnerabilities

It was discovered that Oniguruma incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause a denial of service, obtain sensitive information or other unspecified impact. CVE-2019-16163, CVE-2019-19012, CVE-2019-19204, CVE-2019-19246...

9.8CVSS7.1AI score0.10539EPSS
Exploits5
Ubuntu
Ubuntu
added 2020/08/04 1:31 p.m.93 views

USN-4447-1: libssh vulnerability

It was discovered that libssh incorrectly handled certain requests. An attacker could possibly use this issue to cause a denial of service...

5.9CVSS6.6AI score0.04105EPSS
Exploits1
Ubuntu
Ubuntu
added 2020/07/15 2:49 p.m.93 views

USN-4424-1: snapd vulnerabilities

It was discovered that cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices ran on every boot without restrictions. A physical attacker could exploit this to craft cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass intende...

7.3CVSS6.6AI score0.00365EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/06/09 12:7 p.m.93 views

LSN-0068-1: Kernel Live Patch Security Notice

It was discovered that the virtual terminal implementation in the Linux kernel did not properly handle resize events. A local attacker could use this to expose sensitive information. CVE-2020-8647 It was discovered that the virtual terminal implementation in the Linux kernel contained a race...

7.1CVSS6.7AI score0.00722EPSS
Exploits2
Ubuntu
Ubuntu
added 2020/04/02 10:14 p.m.93 views

USN-4316-2: GD Graphics Library vulnerabilities

USN-4316-1 fixed a vulnerability in GD Graphics Library. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: It was discovered that GD Graphics Library incorrectly handled cloning an image. An attacker could possibly use this issue to cause GD Graphics...

7.5CVSS5.8AI score0.04332EPSS
Exploits1
Ubuntu
Ubuntu
added 2019/10/29 3:28 p.m.93 views

USN-4167-2: Samba vulnerabilities

USN-4167-1 fixed several vulnerabilities in Samba. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: Michael Hanselmann discovered that the Samba client code incorrectly handled path separators. If a user were tricked into connecti...

6.5CVSS6.3AI score0.03515EPSS
Exploits1
Ubuntu
Ubuntu
added 2019/09/18 2:4 p.m.93 views

USN-4136-2: wpa_supplicant and hostapd vulnerability

USN-4136-1 fixed a vulnerability in wpasupplicant. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that wpasupplicant incorrectly handled certain management frames. An attacker could possibly use this issue to...

6.5CVSS6.5AI score0.01214EPSS
Exploits0
Ubuntu
Ubuntu
added 2019/06/20 1:31 p.m.93 views

USN-4023-1: Mosquitto vulnerabilities

It was discovered that Mosquitto broker incorrectly handled certain specially crafted input and network packets. A remote attacker could use this to cause a denial of service...

7.5CVSS6.5AI score0.02173EPSS
Exploits0
Ubuntu
Ubuntu
added 2018/07/21 12:17 a.m.93 views

USN-3718-1: Linux kernel regression

USN-3695-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. Unfortunately, the fix for CVE-2018-1108 introduced a regression where insufficient early entropy prevented services from starting, leading in some situations to a failure to boot, This update addresses the issue. We...

6.4AI score
Exploits0References2
Ubuntu
Ubuntu
added 2018/06/21 6:18 p.m.93 views

USN-3691-1: OpenJDK 7 vulnerabilities

It was discovered that the Security component of OpenJDK did not correctly perform merging of multiple sections for the same file listed in JAR archive file manifests. An attacker could possibly use this to modify attributes in a manifest without invalidating the signature. CVE-2018-2790 Francesc...

8.3CVSS5.9AI score0.15141EPSS
Exploits0
Total number of security vulnerabilities5000