Lucene search
K
UbuntuMost viewed

10890 matches found

Ubuntu
Ubuntu
•added 2014/02/04 7:47 p.m.•79 views

USN-2098-1: LibYAML vulnerability

Florian Weimer discovered that LibYAML incorrectly handled certain large yaml documents. An attacker could use this issue to cause LibYAML to crash, resulting in a denial of service, or possibly execute arbitrary code...

6.8CVSS6.6AI score0.09312EPSS
Exploits0
Ubuntu
Ubuntu
•added 2013/09/27 12:55 p.m.•79 views

USN-1975-1: Linux kernel (OMAP4) vulnerabilities

Vince Weaver discovered a flaw in the perf subsystem of the Linux kernel on ARM platforms. A local user could exploit this flaw to gain privileges or cause a denial of service system crash. CVE-2013-4254 A failure to validate block numbers was discovered in the Linux kernel's implementation of th...

6.9CVSS6.5AI score0.0044EPSS
Exploits0
Ubuntu
Ubuntu
•added 2013/05/16 1:44 a.m.•79 views

USN-1825-1: Linux kernel vulnerability

An flaw was discovered in the Linux kernel's perfevents interface. A local user could exploit this flaw to escalate privileges on the system...

8.4CVSS7.6AI score0.47709EPSS
Exploits15
Ubuntu
Ubuntu
•added 2013/05/01 5:23 p.m.•79 views

USN-1809-1: Linux kernel vulnerabilities

Mathias Krause discovered an information leak in the Linux kernel's UDF file system implementation. A local user could exploit this flaw to examine some of the kernel's heap memory. CVE-2012-6548 Mathias Krause discovered an information leak in the Linux kernel's ISO 9660 CDROM file system driver...

7.2CVSS7.3AI score0.04707EPSS
Exploits7
Ubuntu
Ubuntu
•added 2013/04/08 11:5 p.m.•79 views

USN-1795-1: Linux kernel (Quantal HWE) vulnerabilities

Andrew Jones discovered a flaw with the xeniret function in Linux kernel's Xen virtualizeation. In the 32-bit Xen paravirt platform an unprivileged guest OS user could exploit this flaw to cause a denial of service crash the system or gain guest OS privilege. CVE-2013-0228 Emese Revfy discovered...

6.2CVSS6.3AI score0.005EPSS
Exploits4
Ubuntu
Ubuntu
•added 2013/01/14 5:58 p.m.•79 views

USN-1686-1: FreeType vulnerabilities

Mateusz Jurczyk discovered that FreeType did not correctly handle certain malformed BDF font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash or possibly execute arbitrary code with user privileges...

4.3CVSS8.8AI score0.03857EPSS
Exploits0
Ubuntu
Ubuntu
•added 2012/12/19 12:35 a.m.•79 views

USN-1671-1: Linux kernel vulnerability

Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. CVE-2012-4508 A flaw was discovered in the Linux kernel's handling of new hot-plugged memory. An unprivileged local user...

4.7CVSS6.6AI score0.00387EPSS
Exploits1
Ubuntu
Ubuntu
•added 2012/12/03 3:53 p.m.•79 views

USN-1638-3: Firefox regressions

USN-1638-1 fixed vulnerabilities in Firefox. The new packages introduced regressions in cookies handling and the User Agent string. This update fixes the problem. Original advisory details: Gary Kwong, Jesse Ruderman, Christian Holler, Bob Clary, Kyle Huey, Ed Morley, Chris Lord, Boris Zbarsky,...

8.8AI score
Exploits0References2
Ubuntu
Ubuntu
•added 2012/11/30 8:34 a.m.•79 views

USN-1645-1: Linux kernel (OMAP4) vulnerabilities

Brad Spengler discovered a flaw in the Linux kernel's uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. CVE-2012-0957 Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit...

6.2CVSS7.2AI score0.00959EPSS
Exploits4
Ubuntu
Ubuntu
•added 2012/09/19 9:2 p.m.•79 views

USN-1574-1: Linux kernel (Natty backport) vulnerabilities

A flaw was found in how the Linux kernel passed the replacement session keyring to a child process. An unprivileged local user could exploit this flaw to cause a denial of service panic. CVE-2012-2745 Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO TCP...

7.8CVSS6.5AI score0.06158EPSS
Exploits5
Ubuntu
Ubuntu
•added 2012/09/19 1:20 a.m.•79 views

USN-1573-1: Linux kernel (EC2) vulnerabilities

Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO TCP segment offload. A local or peer user could exploit this flaw to to cause a denial of service. CVE-2012-3412 Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS...

7.8CVSS6.6AI score0.06158EPSS
Exploits5
Ubuntu
Ubuntu
•added 2012/07/02 9:13 p.m.•79 views

USN-1496-1: OpenOffice.org vulnerabilities

A stack-based buffer overflow was discovered in the Lotus Word Pro import filter in OpenOffice.org. The default compiler options for affected releases should reduce the vulnerability to a denial of service. CVE-2011-2685 Huzaifa Sidhpurwala discovered that OpenOffice.org could be made to crash if...

9.3CVSS6.2AI score0.13734EPSS
Exploits3
Ubuntu
Ubuntu
•added 2012/05/18 1:27 a.m.•79 views

USN-1446-1: Linux kernel (OMAP4) vulnerabilities

A flaw was found in the Linux's kernels ext4 file system when mounted with a journal. A local, unprivileged user could exploit this flaw to cause a denial of service. CVE-2011-4086 A flaw was discovered in the Linux kernel's cifs file system. An unprivileged local user could exploit this flaw to...

7.8CVSS6.3AI score0.00607EPSS
Exploits4
Ubuntu
Ubuntu
•added 2012/05/01 3:41 a.m.•79 views

USN-1431-1: Linux kernel vulnerabilities

A flaw was found in the Linux's kernels ext4 file system when mounted with a journal. A local, unprivileged user could exploit this flaw to cause a denial of service. CVE-2011-4086 Sasha Levin discovered a flaw in the permission checking for device assignments requested via the kvm ioctl in the...

7.8CVSS6.3AI score0.01014EPSS
Exploits5
Ubuntu
Ubuntu
•added 2012/04/24 10:29 a.m.•79 views

USN-1426-1: Linux kernel (EC2) vulnerabilities

Sasha Levin discovered a flaw in the permission checking for device assignments requested via the kvm ioctl in the Linux kernel. A local user could use this flaw to crash the system causing a denial of service. CVE-2011-4347 Stephan Bärwolf discovered a flaw in the KVM kernel-based virtual machin...

7.8CVSS6.5AI score0.01014EPSS
Exploits4
Ubuntu
Ubuntu
•added 2012/03/23 9:57 a.m.•79 views

USN-1401-2: Thunderbird vulnerabilities

USN-1401-1 fixed vulnerabilities in Xulrunner. This update provides the corresponding fixes for Thunderbird. Original advisory details: It was discovered that a flaw in the Mozilla SVG implementation could result in an out-of-bounds memory access if SVG elements were removed during a...

9.3CVSS8.7AI score0.69882EPSS
Exploits11References1
Ubuntu
Ubuntu
•added 2012/03/21 10:47 p.m.•79 views

USN-1400-3: Thunderbird vulnerabilities

USN-1400-1 fixed vulnerabilities in Firefox. This update provides the corresponding fixes for Thunderbird. Original advisory details: Soroush Dalili discovered that Firefox did not adequately protect against dropping JavaScript links onto a frame. A remote attacker could, through cross-site...

9.3CVSS8.8AI score0.0663EPSS
Exploits1References1
Ubuntu
Ubuntu
•added 2011/10/11 12:32 p.m.•79 views

USN-1227-1: Linux kernel vulnerabilities

Ryan Sweat discovered that the kernel incorrectly handled certain VLAN packets. On some systems, a remote attacker could send specially crafted traffic to crash the system, leading to a denial of service. CVE-2011-1576 Timo Warns discovered that the EFI GUID partition table was not correctly...

8.8CVSS7.8AI score0.05573EPSS
Exploits8
Ubuntu
Ubuntu
•added 2011/09/13 8:12 p.m.•79 views

USN-1203-1: Linux kernel (Marvel DOVE) vulnerabilities

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...

7.8CVSS6.8AI score0.08793EPSS
Exploits21
Ubuntu
Ubuntu
•added 2011/07/15 4:29 p.m.•79 views

USN-1168-1: Linux kernel vulnerabilities

Timo Warns discovered that the LDM disk partition handling code did not correctly handle certain values. By inserting a specially crafted disk device, a local attacker could exploit this to gain root privileges. CVE-2011-1017 Neil Horman discovered that NFSv4 did not correctly handle certain orde...

7.8CVSS6.7AI score0.04364EPSS
Exploits8
Ubuntu
Ubuntu
•added 2011/03/25 3:39 p.m.•79 views

USN-1092-1: Linux Kernel vulnerabilities

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4075, CVE-2010-4077 Dan Rosenberg discovered that the socket filters did not...

4.7CVSS5.7AI score0.0104EPSS
Exploits11
Ubuntu
Ubuntu
•added 2010/11/30 2:23 a.m.•79 views

USN-1023-1: Linux kernel vulnerabilities

Nelson Elhage discovered several problems with the Acorn Econet protocol driver. A local user could cause a denial of service via a NULL pointer dereference, escalate privileges by overflowing the kernel stack, and assign Econet addresses to arbitrary interfaces. CVE-2010-3848, CVE-2010-3849,...

6.9CVSS6.8AI score0.00801EPSS
Exploits13
Ubuntu
Ubuntu
•added 2010/07/23 9:48 a.m.•79 views

USN-930-4: Firefox and Xulrunner vulnerabilities

USN-930-1 fixed vulnerabilities in Firefox and Xulrunner. This update provides the corresponding updates for Ubuntu 9.04 and 9.10, along with additional updates affecting Firefox 3.6.6. Several flaws were discovered in the browser engine of Firefox. If a user were tricked into viewing a malicious...

10CVSS8.1AI score0.43382EPSS
Exploits35
Ubuntu
Ubuntu
•added 2010/04/08 3:57 p.m.•79 views

USN-925-1: MoinMoin vulnerabilities

It was discovered that MoinMoin did not properly sanitize its input when processing Despam actions, resulting in cross-site scripting XSS vulnerabilities. If a privileged wiki user were tricked into performing the Despam action on a page with a crafted title, a remote attacker could exploit this ...

5CVSS5.3AI score0.02243EPSS
Exploits1
Ubuntu
Ubuntu
•added 2009/12/18 10:31 p.m.•79 views

USN-874-1: Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities

Jesse Ruderman, Josh Soref, Martijn Wargers, Jose Angel, Olli Pettay, and David James discovered several flaws in the browser and JavaScript engines of Firefox. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary...

9.3CVSS8.5AI score0.04785EPSS
Exploits8
Ubuntu
Ubuntu
•added 2009/09/02 3:18 a.m.•79 views

USN-810-3: NSS regression

USN-810-1 fixed vulnerabilities in NSS. Jozsef Kadlecsik noticed that the new libraries on amd64 did not correctly set stack memory flags, and caused applications using NSS e.g. Firefox to have an executable stack. This reduced the effectiveness of some defensive security protections. This update...

7.7AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2009/09/01 9:40 p.m.•79 views

USN-827-1: Dnsmasq vulnerabilities

IvAin Arce, Pablo HernAin Jorge, Alejandro Pablo Rodriguez, MartA­n Coco, Alberto SoliAto Testa and Pablo Annetta discovered that Dnsmasq did not properly validate its input when processing TFTP requests for files with long names. A remote attacker could cause a denial of service or execute...

6.8CVSS5.6AI score0.12684EPSS
Exploits8
Ubuntu
Ubuntu
•added 2008/12/24 1:28 a.m.•79 views

USN-700-1: Perl vulnerabilities

Jonathan Smith discovered that the Archive::Tar Perl module did not correctly handle symlinks when extracting archives. If a user or automated system were tricked into opening a specially crafted tar file, a remote attacker could over-write arbitrary files. CVE-2007-4829 Tavis Ormandy and Will...

6.9CVSS5.9AI score0.04322EPSS
Exploits5
Ubuntu
Ubuntu
•added 2008/01/09 11:42 p.m.•79 views

USN-566-1: OpenSSH vulnerability

Jan Pechanec discovered that ssh would forward trusted X11 cookies when untrusted cookie generation failed. This could lead to unintended privileges being forwarded to a remote host...

7.5CVSS7.5AI score0.02374EPSS
Exploits0
Ubuntu
Ubuntu
•added 2007/10/23 6:39 p.m.•79 views

USN-536-1: Thunderbird vulnerabilities

Various flaws were discovered in the layout and JavaScript engines. By tricking a user into opening a malicious web page, an attacker could execute arbitrary code with the user's privileges. CVE-2007-5339, CVE-2007-5340 Flaws were discovered in the file upload form control. By tricking a user int...

9.3CVSS8.3AI score0.12736EPSS
Exploits4
Ubuntu
Ubuntu
•added 2007/09/25 12:13 a.m.•79 views

USN-518-1: linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20 vulnerabilities

Evan Teran discovered that the Linux kernel ptrace routines did not correctly handle certain requests robustly. Local attackers could exploit this to crash the system, causing a denial of service. CVE-2007-3731 It was discovered that hugetlb kernels on PowerPC systems did not prevent the stack fr...

7.2CVSS5.2AI score0.0082EPSS
Exploits2
Ubuntu
Ubuntu
•added 2007/08/31 4:16 a.m.•79 views

USN-508-1: Linux kernel vulnerabilities

A buffer overflow was discovered in the Moxa serial driver. Local attackers could execute arbitrary code and gain root privileges. CVE-2005-0504 A flaw was discovered in the IPv6 stack's handling of type 0 route headers. By sending a specially crafted IPv6 packet, a remote attacker could cause a...

7.8CVSS6.3AI score0.05035EPSS
Exploits0
Ubuntu
Ubuntu
•added 2007/06/06 5:25 a.m.•79 views

USN-469-1: Thunderbird vulnerabilities

Gaëtan Leurent showed a weakness in APOP authentication. An attacker posing as a trusted server could recover portions of the user's password via multiple authentication attempts. CVE-2007-1558 Various flaws were discovered in the layout and JavaScript engines. By tricking a user into opening a...

9.3CVSS8.3AI score0.04868EPSS
Exploits1
Ubuntu
Ubuntu
•added 2005/02/11 6:41 p.m.•79 views

USN-80-1: mod_python vulnerability

Graham Dumpleton discovered an information disclosure in the "publisher" handle of modpython. By requesting a carefully crafted URL for a published module page, anybody can obtain extra information about internal variables, objects, and other information which is not intended to be visible...

7.5CVSS5.3AI score0.06465EPSS
Exploits0
Ubuntu
Ubuntu
•added 2004/12/23 5:14 p.m.•79 views

USN-48-1: xpdf, tetex-bin vulnerabilities

A potential buffer overflow has been found in the xpdf viewer. An insufficient input validation could be exploited by an attacker providing a specially crafted PDF file which, when processed by xpdf, could result in abnormal program termination or the execution of attacker supplied program code...

9.3CVSS5.9AI score0.06576EPSS
Exploits0
Ubuntu
Ubuntu
•added 2004/12/17 2:26 a.m.•79 views

USN-40-1: PHP vulnerabilities

Stefan Esser reported several buffer overflows in PHP's variable unserializing handling. These could allow an attacker to execute arbitrary code on the server with the PHP interpreter's privileges by sending specially crafted input strings form data, cookie values, and similar. Additionally, Ilia...

10CVSS8.4AI score0.10042EPSS
Exploits0
Ubuntu
Ubuntu
•added 2024/04/29 11:27 a.m.•78 views

USN-6737-2: GNU C Library vulnerability

USN-6737-1 fixed a vulnerability in the GNU C Library. This update provides the corresponding update for Ubuntu 24.04 LTS. Original advisory details: Charles Fol discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could use this issue to cause...

7.3CVSS7.8AI score0.8833EPSS
Exploits16
Ubuntu
Ubuntu
•added 2024/04/19 1:32 p.m.•78 views

USN-6740-1: Linux kernel vulnerabilities

Wei Chen discovered that a race condition existed in the TIPC protocol implementation in the Linux kernel, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service system crash. CVE-2023-1382 It was discovered that the virtio network...

7.8CVSS7.5AI score0.01377EPSS
Exploits4
Ubuntu
Ubuntu
•added 2024/03/21 12:20 p.m.•78 views

USN-6708-1: Graphviz vulnerability

It was discovered that Graphviz incorrectly handled certain config6a files. An attacker could possibly use this issue to cause a denial of service...

7.8CVSS7.2AI score0.00712EPSS
Exploits1
Ubuntu
Ubuntu
•added 2024/02/08 1:48 p.m.•78 views

USN-6627-1: libde265 vulnerabilities

It was discovered that libde265 could be made to read out of bounds. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. CVE-2021-35452, CVE-2021-36411, CVE-2022-43238, CVE-2022-43241,...

9.8CVSS7.1AI score0.0202EPSS
Exploits18
Ubuntu
Ubuntu
•added 2024/01/29 11:21 a.m.•78 views

USN-6610-1: Firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. CVE-2024-0741, CVE-2024-0742,...

8.8CVSS7.7AI score0.02155EPSS
Exploits0
Ubuntu
Ubuntu
•added 2024/01/26 12:10 a.m.•78 views

USN-6609-1: Linux kernel vulnerabilities

Lin Ma discovered that the netfilter subsystem in the Linux kernel did not properly validate network family support while creating a new netfilter table. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6040 It was discovered that the CIFS...

7.8CVSS7.2AI score0.00836EPSS
Exploits2
Ubuntu
Ubuntu
•added 2024/01/03 9:31 a.m.•78 views

USN-6564-1: Node.js vulnerabilities

Hubert Kario discovered that Node.js incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to obtain sensitive information. CVE-2022-4304 CarpetFuzz, Dawei Wang discovered that...

7.5CVSS7.3AI score0.59501EPSS
Exploits0
Ubuntu
Ubuntu
•added 2023/10/19 11:18 p.m.•78 views

USN-6445-1: Linux kernel (Intel IoTG) vulnerabilities

It was discovered that the IPv6 implementation in the Linux kernel contained a high rate of hash collisions in connection lookup table. A remote attacker could use this to cause a denial of service excessive CPU consumption. CVE-2023-1206 Daniel Trujillo, Johannes Wikner, and Kaveh Razavi...

9.1CVSS8.2AI score0.54577EPSS
Exploits11
Ubuntu
Ubuntu
•added 2023/09/06 12:57 p.m.•78 views

USN-6344-1: Linux kernel (Azure) vulnerabilities

Zi Fan Tan discovered that the binder IPC implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-21255 It was discovered that a race condition existed in th...

9.8CVSS7.1AI score0.0406EPSS
Exploits0
Ubuntu
Ubuntu
•added 2023/08/15 12:44 p.m.•78 views

USN-6288-1: MySQL vulnerabilities

Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 8.0.34 in Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04. In addition to security fixes, the updated packages contain bug fixes, new features...

5.9CVSS6.9AI score0.01594EPSS
Exploits0
Ubuntu
Ubuntu
•added 2023/07/13 12:21 p.m.•78 views

USN-6227-1: SpiderMonkey vulnerabilities

Several security issues were discovered in the SpiderMonkey JavaScript library. If a user were tricked into opening malicious JavaScript applications or processing malformed data, a remote attacker could exploit a variety of issues related to JavaScript security, including denial of service...

8.8CVSS8.5AI score0.00696EPSS
Exploits0
Ubuntu
Ubuntu
•added 2023/06/22 12:54 p.m.•78 views

USN-6186-1: Linux kernel vulnerabilities

Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrar...

7.8CVSS7.1AI score0.16642EPSS
Exploits7
Ubuntu
Ubuntu
•added 2023/06/20 10:12 a.m.•78 views

USN-6168-2: libx11 vulnerability

USN-6168-1 fixed a vulnerability in libx11. This update provides the corresponding update for Ubuntu 14.04 ESM, Ubuntu 16.04 ESM, and Ubuntu 18.04 ESM. Original advisory details: Gregory James Duck discovered that libx11 incorrectly handled certain Request, Event, or Error IDs. If a user were...

7.5CVSS7AI score0.01656EPSS
Exploits0
Ubuntu
Ubuntu
•added 2023/06/01 6:48 p.m.•78 views

USN-6131-1: Linux kernel vulnerabilities

Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrar...

7.8CVSS7.4AI score0.16642EPSS
Exploits7
Total number of security vulnerabilities5000