Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 20.81%
  • Veröffentlicht 18.09.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:40:23

Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service...

  • EPSS 7.88%
  • Veröffentlicht 17.09.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:15:02

A denial of service vulnerability was identified that exists in Apache SpamAssassin before 3.4.2. The vulnerability arises with certain unclosed tags in emails that cause markup to be handled incorrectly leading to scan timeouts. In Apache SpamAssass...

  • EPSS 10.82%
  • Veröffentlicht 17.09.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:44:01

A potential Remote Code Execution bug exists with the PDFInfo plugin in Apache SpamAssassin before 3.4.2.

  • EPSS 0.98%
  • Veröffentlicht 17.09.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:44:01

Apache SpamAssassin 3.4.2 fixes a local user code injection in the meta rule syntax.

  • EPSS 2.47%
  • Veröffentlicht 16.09.2018 21:29:01
  • Zuletzt bearbeitet 21.11.2024 03:53:52

An issue was discovered in LibTIFF 4.0.9. There is a int32 overflow in multiply_ms in tools/ppm2tiff.c, which can cause a denial of service (crash) or possibly have unspecified other impact via a crafted image file.

  • EPSS 3.16%
  • Veröffentlicht 16.09.2018 21:29:01
  • Zuletzt bearbeitet 21.11.2024 03:53:52

An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file.

Exploit
  • EPSS 4.65%
  • Veröffentlicht 16.09.2018 21:29:00
  • Zuletzt bearbeitet 13.08.2025 20:48:07

An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert.

Exploit
  • EPSS 3.27%
  • Veröffentlicht 13.09.2018 16:29:01
  • Zuletzt bearbeitet 21.11.2024 03:53:40

A NULL pointer dereference in the function _TIFFmemcmp at tif_unix.c (called from TIFFWriteDirectoryTagTransferfunction) in LibTIFF 4.0.9 allows an attacker to cause a denial-of-service through a crafted tiff file. This vulnerability can be triggered...

  • EPSS 0.47%
  • Veröffentlicht 11.09.2018 14:29:01
  • Zuletzt bearbeitet 21.11.2024 03:42:08

A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process co...

  • EPSS 0.59%
  • Veröffentlicht 10.09.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 02:57:22

A timing attack flaw was found in OpenSSL 1.0.1u and before that could allow a malicious user with local access to recover ECDSA P-256 private keys.