Ubuntu

Ubuntu Linux

65 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.1

CVE-2004-1016

Exploit
  • EPSS 0.32%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

The scm_send function in the scm layer for Linux kernel 2.4.x up to 2.4.28, and 2.6.x up to 2.6.9, allows local users to cause a denial of service (system hang) via crafted auxiliary messages that are passed to the sendmsg function, which causes a de...

10

CVE-2004-1019

  • EPSS 6.77%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

The deserialization code in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to cause a denial of service and execute arbitrary code via untrusted data to the unserialize function that may trigger "information disclosure, double-free...

6.4

CVE-2004-1056

  • EPSS 3.36%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Direct Rendering Manager (DRM) driver in Linux kernel 2.6 does not properly check the DMA lock, which could allow remote attackers or local users to cause a denial of service (X Server crash) and possibly modify the video output.

10

CVE-2004-1065

  • EPSS 7.16%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the exif_read_data function in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to execute arbitrary code via a long section name in an image file.

10

CVE-2004-1067

  • EPSS 5.48%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to execute arbitrary code via the username.

6.2

CVE-2004-1068

  • EPSS 0.06%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

A "missing serialization" error in the unix_dgram_recvmsg function in Linux 2.4.27 and earlier, and 2.6.x up to 2.6.9, allows local users to gain privileges via a race condition.

1.2

CVE-2004-1069

  • EPSS 0.06%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Race condition in SELinux 2.6.x through 2.6.9 allows local users to cause a denial of service (kernel crash) via SOCK_SEQPACKET unix domain sockets, which are not properly handled in the sock_dgram_sendmsg function.

10

CVE-2004-1137

  • EPSS 15.82%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Multiple vulnerabilities in the IGMP functionality for Linux kernel 2.4.22 to 2.4.28, and 2.6.x to 2.6.9, allow local and remote attackers to cause a denial of service or execute arbitrary code via (1) the ip_mc_source function, which decrements a co...

7.2

CVE-2004-1151

  • EPSS 0.12%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Multiple buffer overflows in the (1) sys32_ni_syscall and (2) sys32_vm86_warning functions in sys_ia32.c for Linux 2.6.x may allow local attackers to modify kernel memory and gain privileges.

7.5

CVE-2004-0817

  • EPSS 3.6%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file.