2 matches found
CVE-2015-7946
CVE-2015-7946 describes an Information Exposure vulnerability in Unity8 used on Ubuntu Phone (and possibly elsewhere) that allows an attacker to enable the MTP service by opening the emergency dialer. The issue is confirmed as a vulnerability in Unity8’s handling of the emergency dialer and is mi...
CVE-2016-1573
CVE-2016-1573 affects Unity8 before 8.11+16.04.20160122-0ubuntu1. The vulnerability arises from plugins/Dash/CardCreator.js where a specially crafted fallback art property supplied by a scope can cause code execution. In the CVE context, this allows arbitrary QML code execution within the unity8-...