Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.18%
  • Veröffentlicht 27.02.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 02:44:34

In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATH_MAX characters.

  • EPSS 3.17%
  • Veröffentlicht 27.02.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:33

In utils.c in zsh before 5.4, symlink expansion had a buffer overflow.

  • EPSS 2.59%
  • Veröffentlicht 27.02.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:20

In subst.c in zsh through 5.4.2, there is a NULL pointer dereference when using ${(PA)...} on an empty array result.

  • EPSS 2.64%
  • Veröffentlicht 27.02.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:20

In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, as demonstrated by typeset -p.

Exploit
  • EPSS 0.65%
  • Veröffentlicht 26.02.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:14

A NULL pointer dereference was found in the net/rds/rdma.c __rds_rdma_map() function in the Linux kernel before 4.14.7 allowing local attackers to cause a system panic and a denial-of-service, related to RDS_GET_MR and RDS_GET_MR_FOR_DEST.

  • EPSS 0.36%
  • Veröffentlicht 25.02.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:12

The blkcg_init_queue function in block/blk-cgroup.c in the Linux kernel before 4.11 allows local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure.

Exploit
  • EPSS 3.02%
  • Veröffentlicht 24.02.2018 06:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:10

A NULL Pointer Dereference occurs in the function TIFFPrintDirectory in tif_print.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4....

  • EPSS 14.74%
  • Veröffentlicht 23.02.2018 23:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:35

Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way ap...

Exploit
  • EPSS 3.29%
  • Veröffentlicht 23.02.2018 22:29:01
  • Zuletzt bearbeitet 21.11.2024 04:12:08

The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-23 Q16 does not properly validate the amount of image data in a file, which allows remote attackers to cause a denial of service (memory allocation failure in the AcquireMagickMemory fu...

  • EPSS 0.33%
  • Veröffentlicht 23.02.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 04:11:08

util/virlog.c in libvirt does not properly determine the hostname on LXC container startup, which allows local guest OS users to bypass an intended container protection mechanism and execute arbitrary commands via a crafted NSS module.