Canonical

Ubuntu Linux

4106 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2008-2934

Exploit
  • EPSS 5.58%
  • Published 18.07.2008 16:41:00
  • Last modified 09.04.2025 00:30:58

Mozilla Firefox 3 before 3.0.1 on Mac OS X allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted GIF file that triggers a free of an uninitialized pointer.

7.8

CVE-2008-2931

  • EPSS 0.02%
  • Published 09.07.2008 18:41:00
  • Last modified 09.04.2025 00:30:58

The do_change_type function in fs/namespace.c in the Linux kernel before 2.6.22 does not verify that the caller has the CAP_SYS_ADMIN capability, which allows local users to gain privileges or cause a denial of service by modifying the properties of ...

7.8

CVE-2008-2812

  • EPSS 0.05%
  • Published 09.07.2008 00:41:00
  • Last modified 09.04.2025 00:30:58

The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving NULL pointer dereference of function pointers in (1) ha...

7.5

CVE-2008-2371

Exploit
  • EPSS 4.13%
  • Published 07.07.2008 23:41:00
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in pcre_compile.c in the Perl-Compatible Regular Expression (PCRE) library 7.7 allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a regular expression that begins ...

4.9

CVE-2008-2826

  • EPSS 0.08%
  • Published 02.07.2008 16:41:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in the sctp_getsockopt_local_addrs_old function in net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) functionality in the Linux kernel before 2.6.25.9 allows local users to cause a denial of service (resource consu...

10

CVE-2008-2662

  • EPSS 1.81%
  • Published 24.06.2008 19:41:00
  • Last modified 09.04.2025 00:30:58

Multiple integer overflows in the rb_str_buf_append function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2 allow context-dependent attackers to execute arbitrary code or ...

10

CVE-2008-2663

  • EPSS 2.52%
  • Published 24.06.2008 19:41:00
  • Last modified 09.04.2025 00:30:58

Multiple integer overflows in the rb_ary_store function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, and 1.8.7 before 1.8.7-p22 allow context-dependent attackers to execute arbitrary code or cause a denial of service v...

7.8

CVE-2008-2664

  • EPSS 4.02%
  • Published 24.06.2008 19:41:00
  • Last modified 09.04.2025 00:30:58

The rb_str_format function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2 allows context-dependent attackers to trigger memory corruption via unspecified vectors related t...

7.8

CVE-2008-2725

  • EPSS 2.56%
  • Published 24.06.2008 19:41:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in the (1) rb_ary_splice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, and 1.8.7 before 1.8.7-p22; and (2) the rb_ary_replace function in 1.6.x allows context-dependent attackers to trigger mem...

7.8

CVE-2008-2726

  • EPSS 2.31%
  • Published 24.06.2008 19:41:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in the (1) rb_ary_splice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2; and (2) the rb_ary_replace function in 1.6.x allows context-dependent at...