Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 3.1%
  • Veröffentlicht 24.07.2017 01:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

There is a Floating point exception in the Exiv2::ValueType function in Exiv2 0.26 that will lead to a remote denial of service attack via crafted input.

  • EPSS 0.4%
  • Veröffentlicht 21.07.2017 14:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The simulate dbus method in aptdaemon before 1.1.1+bzr982-0ubuntu3.1 as packaged in Ubuntu 15.04, before 1.1.1+bzr980-0ubuntu1.1 as packaged in Ubuntu 14.10, before 1.1.1-1ubuntu5.2 as packaged in Ubuntu 14.04 LTS, before 0.43+bzr805-0ubuntu10 as pac...

  • EPSS 5.54%
  • Veröffentlicht 21.07.2017 14:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The log_config_command function in ntp_parser.y in ntpd in NTP before 4.2.7p42 allows remote attackers to cause a denial of service (ntpd crash) via crafted logconfig commands.

  • EPSS 7.48%
  • Veröffentlicht 21.07.2017 14:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

ntp_openssl.m4 in ntpd in NTP before 4.2.7p112 allows remote attackers to cause a denial of service (segmentation fault) via a crafted statistics or filegen configuration command that is not enabled during compilation.

  • EPSS 5.84%
  • Veröffentlicht 21.07.2017 14:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infinite loop) via a crafted NTP packet.

  • EPSS 9.13%
  • Veröffentlicht 21.07.2017 14:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to an arbitrary time when started with the -g option,...

  • EPSS 0.41%
  • Veröffentlicht 20.07.2017 04:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel through 3.2 allows local users to gain privileges via a crafted ACPI table.

  • EPSS 1.84%
  • Veröffentlicht 17.07.2017 13:18:21
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144.

  • EPSS 3.25%
  • Veröffentlicht 17.07.2017 13:18:17
  • Zuletzt bearbeitet 13.05.2026 00:24:29

JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service.

  • EPSS 1.7%
  • Veröffentlicht 08.07.2017 17:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In Netwide Assembler (NASM) 2.14rc0, preproc.c allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.