Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 1.4%
  • Veröffentlicht 21.12.2017 03:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_verror in asm/preproc.c that will cause a remote denial of service attack.

Exploit
  • EPSS 2.72%
  • Veröffentlicht 21.12.2017 03:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in paste_tokens in asm/preproc.c.

Exploit
  • EPSS 1.37%
  • Veröffentlicht 21.12.2017 03:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in the function find_cc() in asm/preproc.c that will cause a remote denial of service attack, because pointers associated with skip_white_ calls are not validated.

Exploit
  • EPSS 1.39%
  • Veröffentlicht 21.12.2017 03:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_list_one_macro in asm/preproc.c that will lead to a remote denial of service attack, related to mishandling of operand-type errors.

  • EPSS 0.43%
  • Veröffentlicht 20.12.2017 23:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AF_ALG-based skcipher interface (CONFIG_CRYPTO_USER_API_SKCIPHER) to cause a denial of service ...

  • EPSS 0.56%
  • Veröffentlicht 20.12.2017 23:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The HMAC implementation (crypto/hmac.c) in the Linux kernel before 4.14.8 does not validate that the underlying cryptographic hash algorithm is unkeyed, allowing a local attacker able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HAS...

  • EPSS 1.34%
  • Veröffentlicht 20.12.2017 09:29:01
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c (related to bgr2rgb.part.1) via an unexpected bits-per-pixel value for an RGBA image.

  • EPSS 1.06%
  • Veröffentlicht 20.12.2017 09:29:01
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator_block in plug-ins/common/file-psp.c.

  • EPSS 1.13%
  • Veröffentlicht 20.12.2017 09:29:01
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In GIMP 2.8.22, there is a stack-based buffer over-read in xcf_load_stream in app/xcf/xcf.c when there is no '\0' character after the version string.

Exploit
  • EPSS 1.95%
  • Veröffentlicht 20.12.2017 09:29:01
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In GIMP 2.8.22, there is a heap-based buffer overflow in read_channel_data in plug-ins/common/file-psp.c.