Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.35%
  • Veröffentlicht 10.08.2018 15:29:01
  • Zuletzt bearbeitet 21.11.2024 04:10:53

lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. This code path may be used by an unprivileged user to check for the existence of a path which they wouldn't otherwise be able to reach. It may also ...

  • EPSS 2.24%
  • Veröffentlicht 09.08.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:19

It was discovered that PostgreSQL versions before 10.5, 9.6.10, 9.5.14, 9.4.19, and 9.3.24 failed to properly check authorization on certain statements involved with "INSERT ... ON CONFLICT DO UPDATE". An attacker with "CREATE TABLE" privileges could...

  • EPSS 5.15%
  • Veröffentlicht 09.08.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:17

A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq was used with "host" or "hostaddr" connection parameters from untru...

  • EPSS 1.48%
  • Veröffentlicht 08.08.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:15

An issue was discovered in rsn_supp/wpa.c in wpa_supplicant 2.0 through 2.6. Under certain conditions, the integrity of EAPOL-Key messages is not checked, leading to a decryption oracle. An attacker within range of the Access Point and client can abu...

Exploit
  • EPSS 0.73%
  • Veröffentlicht 06.08.2018 20:29:02
  • Zuletzt bearbeitet 21.11.2024 04:11:36

A local arbitrary file modification vulnerability was identified in HPE Moonshot Provisioning Manager prior to v1.24.

  • EPSS 73.54%
  • Veröffentlicht 06.08.2018 20:29:01
  • Zuletzt bearbeitet 21.11.2024 04:08:43

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.

Exploit
  • EPSS 2.75%
  • Veröffentlicht 05.08.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:07

An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handle_prism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function han...

  • EPSS 25.49%
  • Veröffentlicht 03.08.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:20

django.middleware.common.CommonMiddleware in Django 1.11.x before 1.11.15 and 2.0.x before 2.0.8 has an Open Redirect.

Exploit
  • EPSS 8.98%
  • Veröffentlicht 03.08.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:00

An issue was discovered in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. An Integer Overflow leads to a heap-based buffer over-read in exif_thumbnail_extract of exif.c.

  • EPSS 4.31%
  • Veröffentlicht 02.08.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:55

exif_process_IFD_in_MAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG...