Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.77%
  • Veröffentlicht 18.10.2018 13:29:01
  • Zuletzt bearbeitet 21.11.2024 03:45:03

An integer overflow can occur during graphics operations done by the Supplemental Streaming SIMD Extensions 3 (SSSE3) scaler, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 60, Thunderbird < 52.9, Firefox ESR <...

  • EPSS 3.1%
  • Veröffentlicht 18.10.2018 13:29:01
  • Zuletzt bearbeitet 21.11.2024 03:45:03

A use-after-free vulnerability can occur when script uses mutation events to move DOM nodes between documents, resulting in the old document that held the node being freed but the node still having a pointer referencing it. This results in a potentia...

  • EPSS 1.27%
  • Veröffentlicht 18.10.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:45:02

Service workers can use redirection to avoid the tainting of cross-origin resources in some instances, allowing a malicious site to read responses which are supposed to be opaque. This vulnerability affects Firefox < 61.

  • EPSS 4.65%
  • Veröffentlicht 18.10.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:45:02

A buffer overflow can occur when rendering canvas content while adjusting the height and width of the canvas element dynamically, causing data to be written outside of the currently computed boundaries. This results in a potentially exploitable crash...

  • EPSS 3.11%
  • Veröffentlicht 18.10.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:45:02

A use-after-free vulnerability can occur when deleting an input element during a mutation event handler triggered by focusing that element. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 60, Thunderbird < 52...

  • EPSS 0.41%
  • Veröffentlicht 17.10.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:55:50

drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ.

  • EPSS 0.53%
  • Veröffentlicht 17.10.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:55:57

In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because adjust_scalar_min_max_vals in kernel/bpf/verifier.c mishandles 32-bi...

Exploit
  • EPSS 91.79%
  • Veröffentlicht 17.10.2018 12:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:20

A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without first performing authentication, resulting in unauthorized access.

Exploit
  • EPSS 1.3%
  • Veröffentlicht 17.10.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:55:53

A stack-based buffer over-read exists in setbit() at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an address_histogram call or a get_histogram call.

  • EPSS 3.97%
  • Veröffentlicht 17.10.2018 01:31:29
  • Zuletzt bearbeitet 21.11.2024 04:05:36

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability ...