Lucene search
K
UbuntuMost viewed

10891 matches found

Ubuntu
Ubuntu
added 2023/10/30 3:32 a.m.79 views

USN-6456-1: Firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. CVE-2023-5722, CVE-2023-5724,...

9.8CVSS7.7AI score0.01585EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/10/19 11:18 p.m.79 views

USN-6445-1: Linux kernel (Intel IoTG) vulnerabilities

It was discovered that the IPv6 implementation in the Linux kernel contained a high rate of hash collisions in connection lookup table. A remote attacker could use this to cause a denial of service excessive CPU consumption. CVE-2023-1206 Daniel Trujillo, Johannes Wikner, and Kaveh Razavi...

9.1CVSS8.2AI score0.54577EPSS
Exploits11
Ubuntu
Ubuntu
added 2023/10/19 5:31 p.m.79 views

USN-6439-1: Linux kernel vulnerabilities

It was discovered that the IPv6 implementation in the Linux kernel contained a high rate of hash collisions in connection lookup table. A remote attacker could use this to cause a denial of service excessive CPU consumption. CVE-2023-1206 Yu Hao and Weiteng Chen discovered that the Bluetooth HCI...

7.8CVSS7.5AI score0.00553EPSS
Exploits4
Ubuntu
Ubuntu
added 2023/09/05 11:19 p.m.79 views

USN-6339-1: Linux kernel vulnerabilities

It was discovered that the NTFS file system implementation in the Linux kernel did not properly validate MFT flags in certain situations. An attacker could use this to construct a malicious NTFS image that, when mounted and operated on, could cause a denial of service system crash. CVE-2022-48425...

9.8CVSS6.7AI score0.02975EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/09/04 12:5 p.m.79 views

USN-6336-1: Docker Registry vulnerabilities

It was discovered that Docker Registry incorrectly handled certain crafted input, which allowed remote attackers to cause a denial of service. This issue only affected Ubuntu 16.04 LTS. CVE-2017-11468 It was discovered that Docker Registry incorrectly handled certain crafted input. An attacker...

7.5CVSS6.5AI score0.03192EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/08/31 10:19 p.m.79 views

USN-6330-1: Linux kernel (GCP) vulnerabilities

Daniel Moghimi discovered that some IntelR Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. CVE-2022-40982 Tavis Ormandy discovered that some AMD processors...

7.8CVSS7.9AI score0.05794EPSS
Exploits5
Ubuntu
Ubuntu
added 2023/08/24 5:34 p.m.79 views

USN-6306-1: Fast DDS vulnerabilities

It was discovered that Fast DDS incorrectly handled certain inputs. A remote attacker could possibly use this issue to cause a denial of service and information exposure. This issue only affected Ubuntu 22.04 LTS. CVE-2021-38425 It was discovered that Fast DDS incorrectly handled certain inputs. ...

9.1CVSS7.4AI score0.05237EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/06/01 6:48 p.m.79 views

USN-6131-1: Linux kernel vulnerabilities

Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrar...

7.8CVSS7.4AI score0.16642EPSS
Exploits7
Ubuntu
Ubuntu
added 2023/06/01 5:28 p.m.79 views

USN-6130-1: Linux kernel vulnerabilities

Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrar...

7.8CVSS7.4AI score0.16642EPSS
Exploits7
Ubuntu
Ubuntu
added 2023/05/30 1:55 p.m.79 views

USN-6118-1: Linux kernel (Oracle) vulnerabilities

Zheng Wang discovered that the Intel i915 graphics driver in the Linux kernel did not properly handle certain error conditions, leading to a double-free. A local attacker could possibly use this to cause a denial of service system crash. CVE-2022-3707 Jordy Zomer and Alexandra Sandulescu discover...

7.8CVSS7.1AI score0.00635EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/05/08 11:55 a.m.79 views

USN-6061-1: WebKitGTK vulnerabilities

Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and...

8.8CVSS7.5AI score0.27076EPSS
Exploits1
Ubuntu
Ubuntu
added 2023/05/05 10:14 a.m.79 views

USN-6057-1: Linux kernel (Intel IoTG) vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-1281 It was discovered that the OverlayFS...

7.8CVSS7.6AI score0.0788EPSS
Exploits15
Ubuntu
Ubuntu
added 2023/04/26 4:32 p.m.79 views

USN-6045-1: Linux kernel vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker could possibly use this to gain elevated privileges. Please note that with the fix for this CVE, kernel support for the...

7.8CVSS7.2AI score0.05095EPSS
Exploits1
Ubuntu
Ubuntu
added 2023/04/19 4:43 p.m.79 views

USN-6031-1: Linux kernel (OEM) vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-1281 It was discovered that the Integrity...

7.8CVSS6.9AI score0.00608EPSS
Exploits2
Ubuntu
Ubuntu
added 2023/03/27 3:5 a.m.79 views

USN-5954-2: Firefox regressions

USN-5954-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted...

7.9AI score
Exploits0References1
Ubuntu
Ubuntu
added 2023/03/15 12:47 p.m.79 views

USN-5955-1: Emacs vulnerability

It was discovered that Emacs did not properly manage certain files when using htmlfontify functionality. A local attacker could possibly use this issue to cause a denial of service, or possibly execute arbitrary commands...

7.8CVSS7.8AI score0.01132EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/03/13 4:0 a.m.79 views

USN-5943-1: Thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass security restrictions, cross-site tracing,...

8.8CVSS7.8AI score0.00817EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/03/10 10:18 a.m.79 views

USN-5944-1: SnakeYAML vulnerabilities

It was discovered that SnakeYAML did not limit the maximal nested depth for collections when parsing YAML data. If a user or automated system were tricked into opening a specially crafted YAML file, an attacker could possibly use this issue to cause applications using SnakeYAML to crash, resultin...

7.5CVSS6.7AI score0.02191EPSS
Exploits3
Ubuntu
Ubuntu
added 2023/03/08 8:14 p.m.79 views

USN-5939-1: Linux kernel (GCP) vulnerabilities

It was discovered that the Upper Level Protocol ULP subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain protocols, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execut...

8.1CVSS7.7AI score0.03702EPSS
Exploits6
Ubuntu
Ubuntu
added 2023/02/28 3:19 p.m.79 views

USN-5638-4: Expat vulnerabilities

USN-5638-1 fixed several vulnerabilities in Expat. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Rhodri James discovered that Expat incorrectly handled memory when processing certain malformed XML files. An attacker could possibly use this issue to...

8.1CVSS7.9AI score0.02241EPSS
Exploits1
Ubuntu
Ubuntu
added 2023/02/07 6:56 p.m.79 views

USN-5847-1: Grunt vulnerabilities

It was discovered that Grunt was not properly loading YAML files before parsing them. An attacker could possibly use this issue to execute arbitrary code. CVE-2020-7729 It was discovered that Grunt was not properly handling symbolic links when performing file copy operations. An attacker could...

7.8CVSS7.1AI score0.02285EPSS
Exploits3
Ubuntu
Ubuntu
added 2023/01/30 1:51 p.m.79 views

USN-5811-3: Sudo vulnerability

USN-5811-1 fixed a vulnerability in Sudo. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Matthieu Barjole and Victor Cutillas discovered that Sudo incorrectly handled user-specified editors when using the sudoedit command. A local attacker that has...

7.8CVSS8.1AI score0.55367EPSS
Exploits20
Ubuntu
Ubuntu
added 2023/01/19 1:52 p.m.79 views

USN-5812-1: urllib3 vulnerability

It was discovered that urllib3 incorrectly handled certain characters in URLs. A remote attacker could possibly use this issue to cause urllib3 to consume resources, leading to a denial of service...

7.5CVSS7.3AI score0.03273EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/01/09 11:24 a.m.79 views

USN-5787-2: Libksba vulnerability

USN-5787-1 fixed vulnerabilities in Libksba. This update provides the corresponding updates for Ubuntu 16.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that Libksba incorrectly handled parsing CRL signatures. A remote attacker could use this issue to cause Libksba to...

9.8CVSS8AI score0.0155EPSS
Exploits2
Ubuntu
Ubuntu
added 2022/10/07 9:44 p.m.79 views

USN-5664-1: OpenJPEG vulnerabilities

It was discovered that OpenJPEG did not properly handle PNM headers, resulting in a null pointer dereference. A remote attacker could possibly use this issue to cause a denial of service DoS. CVE-2016-7445 It was discovered that OpenJPEG incorrectly handled certain image files resulting in divisi...

9.8CVSS7AI score0.04191EPSS
Exploits3
Ubuntu
Ubuntu
added 2022/09/21 11:39 a.m.80 views

USN-5626-1: Bind vulnerabilities

Yehuda Afek, Anat Bremler-Barr, and Shani Stajnrod discovered that Bind incorrectly handled large delegations. A remote attacker could possibly use this issue to reduce performance, leading to a denial of service. CVE-2022-2795 It was discovered that Bind incorrectly handled statistics requests. ...

8.2CVSS6.8AI score0.02299EPSS
Exploits0
Ubuntu
Ubuntu
added 2022/08/30 9:14 p.m.79 views

USN-5590-1: Linux kernel (OEM) vulnerability

Domingo Dirutigliano and Nicola Guerrera discovered that the netfilter subsystem in the Linux kernel did not properly handle rules that truncated packets below the packet header size. When such rules are in place, a remote attacker could possibly use this to cause a denial of service system crash...

7.5CVSS6.6AI score0.05542EPSS
Exploits1
Ubuntu
Ubuntu
added 2022/07/26 3:20 p.m.79 views

USN-5534-1: ImageMagick vulnerabilities

It was discovered that ImageMagick incorrectly handled certain values. If a user were tricked into processing a specially crafted image file, an attacker could possibly exploit this issue to cause a denial of service or other unspecified impact. CVE-2022-32545, CVE-2022-32546 It was discovered th...

7.8CVSS6.8AI score0.01339EPSS
Exploits0
Ubuntu
Ubuntu
added 2022/06/08 3:2 a.m.79 views

USN-5466-1: Linux kernel vulnerabilities

It was discovered that the Linux kernel did not properly restrict access to the kernel debugger when booted in secure boot environments. A privileged attacker could use this to bypass UEFI Secure Boot restrictions. CVE-2022-21499 Aaron Adams discovered that the netfilter subsystem in the Linux...

7.8CVSS7.1AI score0.0124EPSS
Exploits18
Ubuntu
Ubuntu
added 2022/05/31 5:43 p.m.79 views

USN-5451-1: InfluxDB vulnerability

Ilya Averyanov discovered that an InfluxDB vulnerability allowed attackers to bypass authentication and gain access to any known database user...

9.8CVSS8AI score0.30921EPSS
Exploits3
Ubuntu
Ubuntu
added 2021/06/10 8:52 p.m.79 views

USN-4986-4: rpcbind regression

USN-4986-1 fixed a vulnerability in rpcbind. The update caused a regression resulting in rpcbind crashing in certain environments. This update fixes the problem for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that rpcbind incorrectly handled certain large...

5.5AI score
Exploits0References1
Ubuntu
Ubuntu
added 2021/03/15 9:11 p.m.79 views

USN-4791-1: Apache Tomcat 7 vulnerabilities

It was discovered that Apache Tomcat 7 did not protect applications from the presence of untrusted client data in an environment variable. A remote attacker could possible use this vulnerability to redirect the traffic to an arbitrary proxy and obtain sensitive information. CVE-2016-5388 It was...

8.1CVSS7.2AI score0.50896EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/12/09 4:30 p.m.79 views

USN-4667-1: APT vulnerability

Kevin Backhouse discovered that APT incorrectly handled certain packages. A local attacker could possibly use this issue to cause APT to crash or stop responding, resulting in a denial of service...

5.7CVSS6.5AI score0.00377EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/11/24 12:22 a.m.79 views

USN-4642-1: PDFResurrect vulnerability

It was discovered that PDFResurrect incorrectly handled certain memory operations during PDF summary generation. An attacker could use this to cause out-of-bounds writes, resulting in a denial of service system crash or arbitrary code execution...

7.8CVSS7.6AI score0.01337EPSS
Exploits1
Ubuntu
Ubuntu
added 2020/11/10 3:23 p.m.79 views

USN-4625-1: Firefox vulnerability

A use-after-free was discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could exploit this to execute arbitrary code...

9.3CVSS8.7AI score0.42327EPSS
Exploits4
Ubuntu
Ubuntu
added 2020/11/05 4:9 p.m.79 views

USN-4619-1: dom4j vulnerability

Mário Areias discovered that dom4j did not properly validate XML document elements. An attacker could exploit this with a crafted XML file to cause dom4j to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2018-1000632...

7.5CVSS6.8AI score0.0657EPSS
Exploits1
Ubuntu
Ubuntu
added 2020/10/15 8:30 p.m.79 views

USN-4584-1: HtmlUnit vulnerability

It was discovered that HtmlUnit incorrectly initialized Rhino engine. An Attacker could possibly use this issue to execute arbitrary Java code...

8.1CVSS7.3AI score0.04719EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/09/28 3:11 p.m.79 views

USN-4549-1: ImageMagick vulnerabilities

It was discovered that ImageMagick incorrectly handled certain specially crafted image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or other unspecified impact. CVE-2019-1994...

9.8CVSS8.2AI score0.03678EPSS
Exploits1
Ubuntu
Ubuntu
added 2020/08/10 5:28 p.m.79 views

USN-4455-1: NSS vulnerabilities

It was discovered that NSS incorrectly handled certain signatures. An attacker could possibly use this issue to expose sensitive information. CVE-2020-12400, CVE-2020-12401, CVE-2020-6829...

5.3CVSS7.3AI score0.01449EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/08/10 1:42 p.m.79 views

USN-4454-1: Samba vulnerability

Martin von Wittich and Wilko Meyer discovered that Samba incorrectly handled certain empty UDP packets when being used as a AD DC NBT server. A remote attacker could possibly use this issue to cause Samba to crash, resulting in a denial of service...

7.5CVSS7.9AI score0.03539EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/07/15 2:54 p.m.79 views

USN-4199-2: libvpx vulnerabilities

USN-4199-1 fixed several vulnerabilities in libvpx. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: It was discovered that libvpx did not properly handle certain malformed WebM media files. If an application using libvpx opened a specially crafted We...

7.8CVSS7.2AI score0.05092EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/06/29 1:10 p.m.79 views

USN-4406-1: Mailman vulnerability

It was discovered that Mailman incorrectly handled certain inputs. An attacker could possibly use this issue to inject arbitrary content in the login page...

4.3CVSS6.5AI score0.01888EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/06/03 11:32 a.m.79 views

USN-4381-1: Django vulnerabilities

Dan Palmer discovered that Django incorrectly validated memcached cache keys. A remote attacker could possibly use this issue to cause a denial of service and obtain sensitive information. CVE-2020-13254 Jon Dufresne discovered that Django incorrectly encoded query parameters for the admin...

6.1CVSS6.7AI score0.0609EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/04/30 10:54 p.m.79 views

USN-4349-1: EDK II vulnerabilities

A buffer overflow was discovered in the network stack. An unprivileged user could potentially enable escalation of privilege and/or denial of service. This issue was already fixed in a previous release for 18.04 LTS and 19.10. CVE-2018-12178 A buffer overflow was discovered in BlockIo service. An...

9.1CVSS7.3AI score0.02271EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/01/21 12:59 p.m.79 views

USN-4244-1: Samba vulnerabilities

It was discovered that Samba did not automatically replicate ACLs set to inherit down a subtree on AD Directory, contrary to expectations. This issue was only addressed in Ubuntu 18.04 LTS, Ubuntu 19.04 and Ubuntu 19.10. CVE-2019-14902 Robert Święcki discovered that Samba incorrectly handled...

6.5CVSS6.8AI score0.03151EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/01/09 6:44 p.m.79 views

USN-4229-1: NTP vulnerability

It was discovered that ntpq and ntpdc incorrectly handled some arguments. An attacker could possibly use this issue to cause ntpq or ntpdc to crash, execute arbitrary code, or escalate to higher privileges...

9.8CVSS7.2AI score0.29037EPSS
Exploits5
Ubuntu
Ubuntu
added 2019/11/26 2:48 p.m.79 views

USN-4201-1: Ruby vulnerabilities

It was discovered that Ruby incorrectly handled certain files. An attacker could possibly use this issue to pass path matching what can lead to an unauthorized access. CVE-2019-15845 It was discovered that Ruby incorrectly handled certain regular expressions. An attacker could use this issue to...

8.1CVSS7.2AI score0.05128EPSS
Exploits1
Ubuntu
Ubuntu
added 2018/09/05 4:29 p.m.79 views

USN-3759-2: libtirpc vulnerabilities

USN-3759-1 fixed a vulnerability in libtirpc. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: Aldy Hernandez discovered that libtirpc incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service...

7.8CVSS6.8AI score0.81921EPSS
Exploits4
Ubuntu
Ubuntu
added 2018/08/14 7:58 p.m.79 views

USN-3739-2: libxml2 vulnerabilities

USN-3739-1 fixed a vulnerability in libxml2. This update provides the corresponding update for Ubuntu 12.04. Original advisory details: Matias Brutti discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this issue to expose sensitive information...

7.5CVSS7AI score0.03681EPSS
Exploits1
Ubuntu
Ubuntu
added 2018/07/24 5:58 p.m.80 views

USN-3721-1: Apache Ant vulnerability

Danny Grander discovered that Apache Ant incorrectly handled certain compressed files. If a user or automated system were tricked into processing a specially crafted file, a remote attacker could use this issue to overwrite arbitrary files...

5.8AI score
Exploits0
Total number of security vulnerabilities5000