Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 29.32%
  • Veröffentlicht 06.03.2018 20:29:01
  • Zuletzt bearbeitet 21.11.2024 04:11:44

The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.

  • EPSS 8.69%
  • Veröffentlicht 06.03.2018 20:29:01
  • Zuletzt bearbeitet 14.01.2025 19:29:55

ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset ...

  • EPSS 9.06%
  • Veröffentlicht 06.03.2018 20:29:01
  • Zuletzt bearbeitet 14.01.2025 19:29:55

The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association ...

Exploit
  • EPSS 1.35%
  • Veröffentlicht 06.03.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:37

An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFF_Handler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update() function in third-party/zuid/interfaces/MD5.cpp.

Exploit
  • EPSS 1.25%
  • Veröffentlicht 06.03.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:37

An issue was discovered in Exempi through 2.4.4. There is a stack-based buffer over-read in the PostScript_MetaHandler::ParsePSFile() function in XMPFiles/source/FileHandlers/PostScript_Handler.cpp.

Exploit
  • EPSS 1.43%
  • Veröffentlicht 06.03.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:37

An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp, leading to a heap-based buffer over-read in the PSD_MetaHandler::CacheFileData() function.

Exploit
  • EPSS 1.3%
  • Veröffentlicht 06.03.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:37

An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FormatSupport/WEBP_Support.cpp does not check whether a bitstream has a NULL value, leading to a NULL pointer dereference in the WEBP::VP8XChunk class.

  • EPSS 1.11%
  • Veröffentlicht 06.03.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:39:38

GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulnerability in src/isomedia/avc_ext.c lines 2417 to 2420 that can result in Heap chunks being modified, this could lead to RCE. This attack appear to be exploitable via an attacker su...

Exploit
  • EPSS 1.72%
  • Veröffentlicht 06.03.2018 17:29:00
  • Zuletzt bearbeitet 10.07.2025 15:44:54

An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzip_disk_fread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service.

Exploit
  • EPSS 1.72%
  • Veröffentlicht 06.03.2018 17:29:00
  • Zuletzt bearbeitet 10.07.2025 15:44:54

An issue was discovered in ZZIPlib 0.13.68. There is a bus error caused by the __zzip_parse_root_directory function of zip.c. Attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.