Lucene search

K
CanonicalUbuntu Linux12.04

1413 matches found

CVE
CVE
added 2013/11/23 6:55 p.m.46 views

CVE-2013-1058

maas-import-pxe-files in MAAS before 13.10 does not verify the integrity of downloaded files, which allows remote attackers to modify these files via a man-in-the-middle (MITM) attack.

5.8CVSS6.4AI score0.00666EPSS
CVE
CVE
added 2014/02/06 5:0 p.m.46 views

CVE-2013-2038

The NMEA0183 driver in gpsd before 3.9 allows remote attackers to cause a denial of service (daemon termination) and possibly execute arbitrary code via a GPS packet with a malformed $GPGGA interpreted sentence that lacks certain fields and a terminator. NOTE: a separate issue in the AIS driver was...

4.3CVSS7.7AI score0.0201EPSS
CVE
CVE
added 2013/08/19 11:55 p.m.46 views

CVE-2013-2145

The cpansign verify functionality in the Module::Signature module before 0.72 for Perl allows attackers to bypass the signature check and execute arbitrary code via a SIGNATURE file with a "special unknown cipher" that references an untrusted module in Digest/.

4.4CVSS7.2AI score0.00198EPSS
CVE
CVE
added 2015/11/24 8:59 p.m.46 views

CVE-2015-7869

Multiple integer overflows in the kernel mode driver for the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows and R304 before 304.131, R340 before 340.96, R352 before 352.63, and R358 before 358.16 on Linux allow local users to obtain sensitive in...

6.6CVSS6.8AI score0.00057EPSS
CVE
CVE
added 2016/06/13 7:59 p.m.46 views

CVE-2016-4354

ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (crash) via crafted BER data, which leads to a buffer overflow.

7.5CVSS7.3AI score0.00791EPSS
CVE
CVE
added 2013/11/18 2:55 a.m.45 views

CVE-2013-1057

Untrusted search path vulnerability in maas-import-pxe-files in MAAS before 13.10 allows local users to execute arbitrary code via a Trojan horse import_pxe_files configuration file in the current working directory.

4.4CVSS7.1AI score0.00097EPSS
CVE
CVE
added 2012/12/26 10:55 p.m.44 views

CVE-2012-0962

Aptdaemon 0.43 in Ubuntu 11.10 and 12.04 LTS uses short IDs when importing PPA GPG keys from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-the-middle (MITM) attack.

4.3CVSS6.6AI score0.00435EPSS
CVE
CVE
added 2013/10/28 9:55 p.m.44 views

CVE-2013-1056

X.org X server 1.13.3 and earlier, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files.

1.9CVSS6.7AI score0.00054EPSS
CVE
CVE
added 2019/11/07 10:15 p.m.42 views

CVE-2013-1429

Lintian before 2.5.12 allows remote attackers to gather information about the "host" system using crafted symlinks.

6.3CVSS6.2AI score0.00786EPSS
CVE
CVE
added 2013/04/02 3:23 a.m.42 views

CVE-2013-1799

Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before 3.7.91, does not properly validate SSL certificates when creating accounts for providers who use the libsoup library, which allows man-in-the-middle attackers to obtain sensitive information such as credentials by sniffing the network....

4.3CVSS5.9AI score0.00556EPSS
CVE
CVE
added 2016/04/20 4:59 p.m.40 views

CVE-2015-7802

gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service (uninitialized memory read) via a crafted GIF file.

5.5CVSS5.9AI score0.0028EPSS
CVE
CVE
added 2013/10/25 11:55 p.m.34 views

CVE-2013-1067

Apport 2.12.5 and earlier uses weak permissions for core dump files created by setuid binaries, which allows local users to obtain sensitive information by reading the file.

4.9CVSS5.7AI score0.00042EPSS
CVE
CVE
added 2016/10/03 6:59 p.m.24 views

CVE-2016-1372

ClamAV (aka Clam AntiVirus) before 0.99.2 allows remote attackers to cause a denial of service (application crash) via a crafted 7z file.

5.5CVSS5.8AI score0.04076EPSS
Total number of security vulnerabilities1413