Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.45%
  • Veröffentlicht 15.01.2019 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:32

It was found Ceph versions before 13.2.4 that authenticated ceph users with read only permissions could steal dm-crypt encryption keys used in ceph disk encryption.

  • EPSS 2.14%
  • Veröffentlicht 15.01.2019 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:53:26

It was found in Ceph versions before 13.2.4 that authenticated ceph RGW users can cause a denial of service against OMAPs holding bucket indices.

  • EPSS 0.3%
  • Veröffentlicht 14.01.2019 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:53:32

It was discovered systemd does not correctly check the content of PIDFile files before using it to kill processes. When a service is run from an unprivileged user (e.g. User field set in the service file), a local attacker who is able to write to the...

Exploit
  • EPSS 4.09%
  • Veröffentlicht 14.01.2019 08:29:00
  • Zuletzt bearbeitet 21.11.2024 04:46:18

WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 ...

Exploit
  • EPSS 2.96%
  • Veröffentlicht 11.01.2019 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:53:28

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker, or a remote one if systemd-journal-remo...

Exploit
  • EPSS 0.72%
  • Veröffentlicht 11.01.2019 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:53:28

An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash s...

Exploit
  • EPSS 1.05%
  • Veröffentlicht 11.01.2019 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:53:28

An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable.

  • EPSS 1.95%
  • Veröffentlicht 11.01.2019 18:29:02
  • Zuletzt bearbeitet 21.11.2024 04:06:58

In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, an array indexing issue existed in the handling of a function in javascript core. This issue was addressed with improved checks.

  • EPSS 2.05%
  • Veröffentlicht 11.01.2019 18:29:02
  • Zuletzt bearbeitet 21.11.2024 04:06:58

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.

  • EPSS 2%
  • Veröffentlicht 11.01.2019 18:29:02
  • Zuletzt bearbeitet 21.11.2024 04:06:59

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.