Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.35%
  • Veröffentlicht 23.04.2019 19:32:49
  • Zuletzt bearbeitet 21.11.2024 04:41:09

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with netwo...

  • EPSS 2.66%
  • Veröffentlicht 23.04.2019 19:32:48
  • Zuletzt bearbeitet 21.11.2024 04:41:07

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Audit Plug-in). Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with n...

Exploit
  • EPSS 3.7%
  • Veröffentlicht 23.04.2019 16:29:10
  • Zuletzt bearbeitet 21.11.2024 04:47:57

A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were generated to match 64-bit ioctl(2) commands on a 64-bit platform; ...

Exploit
  • EPSS 61.08%
  • Veröffentlicht 23.04.2019 16:29:10
  • Zuletzt bearbeitet 21.11.2024 04:47:58

Canonical snapd before version 2.37.1 incorrectly performed socket owner validation, allowing an attacker to run arbitrary commands as root. This issue affects: Canonical snapd versions prior to 2.37.1.

  • EPSS 2.16%
  • Veröffentlicht 23.04.2019 14:29:01
  • Zuletzt bearbeitet 21.11.2024 04:21:09

coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (floating-point exception and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009.

  • EPSS 1.44%
  • Veröffentlicht 22.04.2019 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:07

The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented(), leading to uninitialized memory use when processing certain TIF...

  • EPSS 0.77%
  • Veröffentlicht 22.04.2019 16:29:01
  • Zuletzt bearbeitet 21.11.2024 02:25:12

All versions of unity-scope-gdrive logs search terms to syslog.

Exploit
  • EPSS 2.41%
  • Veröffentlicht 22.04.2019 16:29:01
  • Zuletzt bearbeitet 21.11.2024 04:21:06

Persistent cross-site scripting (XSS) in http/cervlet.c in Tildeslash Monit before 5.25.3 allows a remote unauthenticated attacker to introduce arbitrary JavaScript via manipulation of an unsanitized user field of the Authorization header for HTTP Ba...

Exploit
  • EPSS 3.14%
  • Veröffentlicht 22.04.2019 16:29:01
  • Zuletzt bearbeitet 21.11.2024 04:21:06

A buffer over-read in Util_urlDecode in util.c in Tildeslash Monit before 5.25.3 allows a remote authenticated attacker to retrieve the contents of adjacent memory via manipulation of GET or POST parameters. The attacker can also cause a denial of se...

  • EPSS 0.8%
  • Veröffentlicht 22.04.2019 16:29:00
  • Zuletzt bearbeitet 21.11.2024 02:25:10

Content Hub before version 0.0+15.04.20150331-0ubuntu1.0 DBUS API only requires a file path for a content item, it doesn't actually require the confined app have access to the file to create a transfer. This could allow a malicious application using ...