Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 5.22%
  • Veröffentlicht 12.08.2020 16:15:11
  • Zuletzt bearbeitet 21.11.2024 04:59:14

In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply nested MIME parts.

Exploit
  • EPSS 6.19%
  • Veröffentlicht 12.08.2020 16:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:02

In Dovecot before 2.3.11.3, sending a specially formatted NTLM request will crash the auth service because of an out-of-bounds read.

Exploit
  • EPSS 6.19%
  • Veröffentlicht 12.08.2020 16:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:02

In Dovecot before 2.3.11.3, sending a specially formatted RPA request will crash the auth service because a length of zero is mishandled.

Exploit
  • EPSS 0.55%
  • Veröffentlicht 11.08.2020 21:15:10
  • Zuletzt bearbeitet 21.11.2024 05:08:13

An issue was discovered in certain configurations of GNOME gnome-shell through 3.36.4. When logging out of an account, the password box from the login dialog reappears with the password still visible. If the user had decided to have the password show...

  • EPSS 0.38%
  • Veröffentlicht 11.08.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 05:06:45

In QEMU through 5.0.0, an assertion failure can occur in the network packet processing. This issue affects the e1000e and vmxnet3 network devices. A malicious guest user/process could use this flaw to abort the QEMU process on the host, resulting in ...

  • EPSS 1.26%
  • Veröffentlicht 10.08.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 05:05:56

By observing the stack trace for JavaScript errors in web workers, it was possible to leak the result of a cross-origin redirect. This applied only to content that can be parsed as script. This vulnerability affects Firefox < 79, Firefox ESR < 68.11,...

  • EPSS 1.21%
  • Veröffentlicht 10.08.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 05:05:57

An iframe sandbox element with the allow-popups flag could be bypassed when using noopener links. This could have led to security issues for websites relying on sandbox configurations that allowed popups and hosted arbitrary content. This vulnerabili...

  • EPSS 1.24%
  • Veröffentlicht 10.08.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 05:05:57

When in an endless loop, a website specifying a custom cursor using CSS could make it look like the user is interacting with the user interface, when they are not. This could lead to a perceived broken state, especially when interactions with existin...

  • EPSS 1.53%
  • Veröffentlicht 10.08.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 05:05:57

A redirected HTTP request which is observed or modified through a web extension could bypass existing CORS checks, leading to potential disclosure of cross-origin information. This vulnerability affects Firefox ESR < 78.1, Firefox < 79, and Thunderbi...

  • EPSS 1.51%
  • Veröffentlicht 10.08.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 05:05:57

JIT optimizations involving the Javascript arguments object could confuse later optimizations. This risk was already mitigated by various precautions in the code, resulting in this bug rated at only moderate severity. This vulnerability affects Firef...