Lucene search
K
UbuntuRecent

10918 matches found

Ubuntu
Ubuntu
•added 2021/03/15 10:3 p.m.•73 views

USN-4823-1: Mosquitto vulnerability

It was discovered that Mosquitto incorrectly handled certain inputs. A remote attacker could possibly use this issue to cause a denial of service...

7.5CVSS7.4AI score0.01885EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 10:0 p.m.•29 views

USN-4822-1: Firebird vulnerability

It was discovered that Firebird exposed certain UDF libraries. An authenticated attacker could use this vulnerability to cause a denial of service crash or possibly execute arbitrary code...

8.8CVSS8.2AI score0.03273EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:58 p.m.•45 views

USN-4821-1: openpyxl vulnerability

It was discovered that openpyxl incorrectly handled certain documents. A remote attacker could possibly use this issue to cause a denial of service or other unspecified impact...

8.2CVSS7.7AI score0.01159EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:57 p.m.•38 views

USN-4820-1: S-nail vulnerability

It was discovered that S-nail incorrectly handled paths. An attacker could possible use this issue to write arbitrary files and escalate privileges...

7CVSS7.1AI score0.01015EPSS
Exploits5
Ubuntu
Ubuntu
•added 2021/03/15 9:56 p.m.•46 views

USN-4819-1: Leptonica vulnerabilities

It was discovered that Leptonica incorrectly handled path names. An attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 16.04 ESM. CVE-2017-18196 It was discovered that Leptonica incorrectly handled certain input arguments. An attacker could...

9.8CVSS7.2AI score0.03466EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/03/15 9:54 p.m.•45 views

USN-4817-1: HDF5 vulnerabilities

It was discovered that HDF5 incorrectly handled certain hdf5 files. An attacker could possibly use this issue to cause a denial of service...

6.5CVSS6.3AI score0.01271EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/03/15 9:52 p.m.•27 views

USN-4816-1: game-music-emu vulnerability

It was discovered that game-music-emu mishandled certain crafted input. A remote attacker could use this vulnerability to cause game-music-emu to crash...

6.5CVSS6.4AI score0.01525EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:50 p.m.•48 views

USN-4815-1: xrdp vulnerabilities

It was discovered that xrdp did not properly validate certain input in the session manager. A local attacker could possibly use this issue to cause a denial of service or other unspecified impact. CVE-2017-16927 It was discovered that xrdp did not properly initialize PAM session modules. A remote...

8.4CVSS6.9AI score0.01177EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:49 p.m.•52 views

USN-4814-1: Asterisk vulnerabilities

Richard Mudgett discovered that Asterisk did not properly check the length of input string when setting the user field for PartyB on a CDR. A remote attacker could use this vulnerability to cause a denial of service crash or potentially execute arbitrary code. CVE-2017-16671 Alex Villacis Lasso...

8.8CVSS8.1AI score0.06243EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:47 p.m.•82 views

USN-4813-1: Jackson Databind vulnerabilities

It was discovered that Jackson Databind incorrectly handled deserialization. An attacker could possibly use this issue to obtain sensitive information. CVE-2018-11307, CVE-2019-12086, CVE-2019-12814 It was discovered that Jackson Databind incorrectly handled deserialization. An attacker could...

10CVSS7.4AI score0.45205EPSS
Exploits10
Ubuntu
Ubuntu
•added 2021/03/15 9:45 p.m.•34 views

USN-4812-1: libbson vulnerabilities

It was discovered that libbson incorrectly validated input length. An attacker could possibly use this issue to cause a denial of service. This issue affected only Ubuntu 16.04 ESM. CVE-2017-14227 It was discovered that libbson incorrectly handled certain specially crafted bson buffers. An attack...

8.1CVSS7.4AI score0.02797EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:44 p.m.•44 views

USN-4811-1: libzip vulnerability

It was discovered that libzip mishandled certain malformed ZIP archives. A remote attacker could use this vulnerability to cause a denial of service...

6.5CVSS5.9AI score0.032EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:42 p.m.•34 views

USN-3421-2: Libidn2 vulnerability

USN-3421-1 fixed a vulnerability in Libidn2. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM...

9.8CVSS7AI score0.03965EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:41 p.m.•31 views

USN-4809-1: VideoLAN x265 vulnerability

It was discovered that VideoLAN x265 mishandled certain memory-allocation inputs. An attacker could use this vulnerability to cause a denial of service crash...

7.8CVSS7.5AI score0.01161EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/03/15 9:40 p.m.•37 views

USN-4808-1: Tinyproxy vulnerability

It was discovered that Tinyproxy created its pid file with insecure permissions. An attacker could use the vulnerability to cause arbitrary processes to be killed, resulting in a denial of service...

5.5CVSS5.6AI score0.00292EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:38 p.m.•39 views

USN-4807-1: WildMIDI vulnerabilities

It was discovered that WildMIDI incorrectly handled certain MID files. A remote attacker could possibly use this issue to cause a denial of service...

7.5CVSS6.7AI score0.10772EPSS
Exploits7
Ubuntu
Ubuntu
•added 2021/03/15 9:33 p.m.•51 views

USN-4805-1: VLC vulnerabilities

It was discovered that VLC mishandled certain crafted media files. An attacker could use this vulnerability to cause a denial of service crash or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM. CVE-2017-10699 It was discovered that VLC mishandled certain crafted MKV...

9.8CVSS8.5AI score0.40612EPSS
Exploits10
Ubuntu
Ubuntu
•added 2021/03/15 9:31 p.m.•103 views

USN-4804-1: Puppet vulnerabilities

It was discovered that Puppet installed modules with world writable permissions. An attacker could use this vulnerability to execute arbitrary code or cause a denial of service. CVE-2017-10689 It was discovered that Puppet could be used to force YAML deserialization in an unsafe manner. A remote...

8.2CVSS7.1AI score0.02375EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:30 p.m.•29 views

USN-4803-1: Gifsicle vulnerabilities

It was discovered that Gifsicle did not properly handle certain input. If a user were tricked into opening a malicious GIF, an attacker could potentially execute arbitrary code...

9.8CVSS8.4AI score0.02665EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:29 p.m.•23 views

USN-4802-1: HTSlib vulnerabilities

It was discovered that HTSlib incorrectly handled certain data. An attacker could possibly use this issue to execute arbitrary code. This issue affected only Ubuntu 16.04 ESM. CVE-2017-1000206 It was discovered that HTSlib incorrectly handled certain files. An attacker could possibly use this iss...

9.8CVSS8.7AI score0.01954EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:26 p.m.•26 views

USN-4801-1: ROOT vulnerability

It was discovered that ROOT incorrectly handled certain input arguments. An attacker could possibly use this issue to execute arbitrary code...

9CVSS8.3AI score0.0388EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:24 p.m.•108 views

USN-4800-1: Lynx vulnerabilities

It was discovered that Lynx incorrectly handled certain URLs. A remote attacker could possibly use this issue to obtain sensitive information or other unspecified impact. This issue only affected Ubuntu 16.04 ESM. CVE-2016-9179 It was discovered that Lynx incorrectly handled certain HTML files. A...

7.5CVSS6.6AI score0.04455EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:23 p.m.•29 views

USN-4799-1: R vulnerability

It was discovered that a buffer overflow in R causes memory corruption. An attacker could possibly use this to cause a denial of service or execute arbitrary code...

8.8CVSS7.6AI score0.02403EPSS
Exploits2
Ubuntu
Ubuntu
•added 2021/03/15 9:21 p.m.•43 views

USN-4798-1: libgit2 vulnerabilities

It was discovered that libgit2 mishandled certain malformed git objects. A remote attacker could use this vulnerability to cause a denial of service...

5.5CVSS6.2AI score0.01903EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:18 p.m.•118 views

USN-4796-1: Node.js vulnerabilities

Alexander Minozhenko and James Bunton discovered that Node.js did not properly handle wildcards in name fields of X.509 TLS certificates. An attacker could use this vulnerability to execute a machine-in-the-middle- attack. This issue only affected Ubuntu 14.04 ESM and 16.04 ESM. CVE-2016-7099 It...

8.8CVSS7.6AI score0.41288EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:16 p.m.•39 views

USN-4795-1: Apache Groovy vulnerability

It was discovered that Apache Groovy incorrectly handled serialization mechanisms. An attacker could possibly use this issue to execute arbitrary code...

9.8CVSS8.7AI score0.17239EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/03/15 9:15 p.m.•45 views

USN-4794-1: libupnp vulnerabilities

Matthew Garrett discovered that libupnp mishandled POST requests by default. An attacker could use this vulnerability to write files to arbitrary locations in the victim's filesystem, possibly as root. CVE-2016-6255 It was discovered that libupnp mishandled certain input. A remote attacker could...

9.8CVSS8.4AI score0.26818EPSS
Exploits4
Ubuntu
Ubuntu
•added 2021/03/15 9:14 p.m.•41 views

USN-4793-1: collectd vulnerabilities

It was discovered that collectd mishandled certain malformed packets. A remote attacker could use this vulnerability to cause collectd to crash or possibly execute arbitrary code. CVE-2016-6254 It was discovered that collectd failed to handle certain input. An attacker could use this vulnerabilit...

10CVSS7.8AI score0.05695EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:13 p.m.•48 views

USN-4792-1: FreeIPA vulnerabilities

It was discovered that FreeIPA incorrectly handled certificates. An attacker could possibly use this issue to cause a denial of service by revoking arbitrary certificates This issue only affected Ubuntu 16.04 ESM. CVE-2016-5404 It was discovered that FreeIPA incorrectly handled authentication...

7.5CVSS6.6AI score0.047EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:11 p.m.•79 views

USN-4791-1: Apache Tomcat 7 vulnerabilities

It was discovered that Apache Tomcat 7 did not protect applications from the presence of untrusted client data in an environment variable. A remote attacker could possible use this vulnerability to redirect the traffic to an arbitrary proxy and obtain sensitive information. CVE-2016-5388 It was...

8.1CVSS7.2AI score0.50896EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:10 p.m.•34 views

USN-4790-1: libtorrent vulnerability

It was discovered that libtorrent incorrectly handled chunked headers. A remote attacker could possibly use this to cause a crash resulting in a denial of service...

7.5CVSS7.3AI score0.01948EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:8 p.m.•70 views

USN-4789-1: Apache ZooKeeper vulnerabilities

It was discovered that Apache ZooKeeper incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service or other unspecified impact. CVE-2016-5017 It was discovered that Apache ZooKeeper incorrectly implemented "wchp/wchc" commands. An attacker could...

8.1CVSS7.5AI score0.73654EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/03/15 9:6 p.m.•32 views

USN-4788-1: iperf3 vulnerability

It was discovered that iperf mishandled certain UTF-8 and UTF-16 strings. A remote attacker could use this vulnerability to cause a denial of service or possibly execute arbitrary code...

9.8CVSS8.6AI score0.06963EPSS
Exploits2
Ubuntu
Ubuntu
•added 2021/03/15 9:5 p.m.•74 views

USN-4787-1: jq vulnerability

It was discovered that jq did not perform sufficient bounds checking, resulting in unbounded resource consumption. An attacker could use this vulnerability to cause a denial of service...

7.8CVSS7.4AI score0.05333EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/03/15 9:4 p.m.•74 views

USN-4786-1: Moment.js vulnerabilities

It was discovered that Moment.js mishandled certain regular expressions. An attacker could use this vulnerability to cause a denial of service...

7.8CVSS6.3AI score0.09905EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/03/15 9:3 p.m.•23 views

USN-4785-1: npm vulnerability

It was discovered that the npm command-line interface mishandled certain sensitive information. An attacker could use this vulnerability to collect authentication information that could be used to impersonate other users...

7.5CVSS7.5AI score0.06748EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 9:0 p.m.•55 views

USN-4784-1: Xerces-C++ vulnerabilities

It was discovered that Xerces-C++ XML Parser mishandles certain kinds of external DTD references, resulting in a user-after-free. An attacker could use this vulnerability to cause a denial of service crash or possibly execute arbitrary code. This issue affected only Ubuntu 16.04 ESM. CVE-2016-209...

10CVSS7.2AI score0.14138EPSS
Exploits3
Ubuntu
Ubuntu
•added 2021/03/15 8:59 p.m.•46 views

USN-4783-1: minimatch vulnerability

It was discovered that minimatch did not perform necessary bounds checking on regular expressions. An attacker could use this vulnerability to cause a denial of service...

7.5CVSS7.4AI score0.01743EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/03/15 8:55 p.m.•42 views

USN-4779-1: Gettext vulnerability

Danilo Segan discovered that Gettext mishandled certain input. An attacker could use this vulnerability to execute arbitrary code...

9.8CVSS7.1AI score0.06711EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/03/15 8:54 p.m.•56 views

USN-4778-1: OCaml vulnerabilities

It was discovered that OCaml mishandled sign extensions. A remote attacker could use this vulnerability to steal sensitive information, cause a denial of service crash, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 ESM. CVE-2015-8869 It was discovered that OCaml...

9.8CVSS8.6AI score0.05267EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 8:52 p.m.•49 views

USN-4777-1: node-tar vulnerability

It was discovered that node-tar mishandled certain tar archives. An attacker could use this vulnerability to write arbitrary files to the filesystem...

7.5CVSS8.1AI score0.04912EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 8:51 p.m.•35 views

USN-4776-1: semver vulnerability

It was discovered that semver incorrectly handled certain inputs. A remote attacker could possibly use this issue to cause a denial of service...

7.8CVSS7.4AI score0.06488EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 8:50 p.m.•105 views

USN-4775-1: Lighttpd vulnerabilities

It was discovered that Lighttpd did not properly sanitized the string used in basic HTTP authentication method. A remote attacker could use this to inject arbitrary log entries and maybe obtain sensitive information. This issue only affected Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. CVE-2015-3200 It...

7.5CVSS6.9AI score0.1408EPSS
Exploits2
Ubuntu
Ubuntu
•added 2021/03/15 8:17 p.m.•109 views

USN-4773-1: Drupal vulnerabilities

It was discovered that Drupal did not properly process certain input. An attacker could use this vulnerability to execute arbitrary code or completely compromise a Drupal site. CVE-2018-7600, CVE-2018-7602 It was discovered that password reset URLs in Drupal could be forged. An attacker could use...

9.8CVSS7.8AI score0.99993EPSS
Exploits58
Ubuntu
Ubuntu
•added 2021/03/15 8:16 p.m.•123 views

USN-4772-1: VNC4 vulnerabilities

USN-2500-1 addressed CVE-2015-0255 for xorg-server. This update provides the corresponding fix for VNC4 on Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. CVE-2015-0255 USN-2726-1 addressed CVE-2015-1283 for Expat. This update provides the corresponding fix for VNC4 on Ubuntu 14.04 ESM and Ubuntu 16.04 ES...

6.8CVSS7.5AI score0.19069EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 8:14 p.m.•30 views

USN-4771-1: HTCondor vulnerabilities

It was discovered that HTCondor incorrectly invoked the mailx utility. An attacker could use this vulnerability to execute arbitrary commands. This issue only affected Ubuntu 14.04 ESM. CVE-2014-8126 It was discovered that HTCondor mishandled certain crafted input. An attacker could use this...

8.8CVSS7.2AI score0.0308EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 8:13 p.m.•54 views

USN-4770-1: GlusterFS vulnerabilities

It was discovered that GlusterFS incorrectly handled network requests. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 ESM. CVE-2014-3619 It was discovered that GlusterFS incorrectly handled user permissions. An authenticated attacker...

8.8CVSS7.1AI score0.05374EPSS
Exploits1
Ubuntu
Ubuntu
•added 2021/03/15 8:11 p.m.•47 views

USN-4769-1: Salt vulnerabilities

It was discovered that Salt allowed remote attackers to write to arbitrary files via a special crafted file. An attacker could use this vulnerability to cause a DoS or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM. CVE-2014-3563 Andreas Stieger discovered that Salt...

9.8CVSS7.9AI score0.05199EPSS
Exploits0
Ubuntu
Ubuntu
•added 2021/03/15 8:10 p.m.•104 views

USN-4768-1: musl vulnerabilities

It was discovered that musl did not properly handle kernel syscalls. An attacker could use this vulnerability to cause a denial of service crash or possibly execute arbitrary code. CVE-2018-1000001 It was discovered that musl did not properly handle the parsing of DNS response codes. A remote...

9.8CVSS8.2AI score0.13614EPSS
Exploits9
Ubuntu
Ubuntu
•added 2021/03/15 8:6 p.m.•71 views

USN-4766-1: Apache Commons BeanUtils vulnerabilities

It was discovered that Apache Commons BeanUtils improperly handled certain input. An attacker could possibly use this vulnerability to cause a crash or execute arbitrary code...

7.5CVSS7AI score0.96121EPSS
Exploits5
Total number of security vulnerabilities10918