Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 9.08%
  • Veröffentlicht 23.05.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:13

procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of the overflowed buffer, ensuring that the impact of this flaw is limited to a crash (temporar...

Exploit
  • EPSS 2.2%
  • Veröffentlicht 23.05.2018 14:29:00
  • Zuletzt bearbeitet 17.12.2025 22:15:54

procps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. This vulnerability is mitigated by FORTIFY, as it involves strncat() to a stack-allocated string. When pgrep is compiled with FORTIFY (as on Red Hat Enterprise Linux a...

Exploit
  • EPSS 1.83%
  • Veröffentlicht 23.05.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:13

procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escalation for a local attacker who can create entries in procfs by starting processes, which co...

Exploit
  • EPSS 1.99%
  • Veröffentlicht 23.05.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:14

procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.* leading to truncation/integer overflow issues. This flaw is related to CVE-2018-1124.

Exploit
  • EPSS 60.63%
  • Veröffentlicht 22.05.2018 12:29:00
  • Zuletzt bearbeitet 29.05.2026 21:16:34

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access vi...

  • EPSS 1.83%
  • Veröffentlicht 21.05.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:11

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated.

  • EPSS 2.24%
  • Veröffentlicht 18.05.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:44

In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted MIFF image file.

Exploit
  • EPSS 2.35%
  • Veröffentlicht 18.05.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:44

In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted image file that is mishandled in ...

  • EPSS 0.86%
  • Veröffentlicht 18.05.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:58

An AVX-512-optimized implementation of the mempcpy function in the GNU C Library (aka glibc or libc6) 2.27 and earlier may write data beyond the target buffer, leading to a buffer overflow in __mempcpy_avx512_no_vzeroupper.

Exploit
  • EPSS 5.07%
  • Veröffentlicht 16.05.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:54

An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.