Canonical

Ubuntu Linux

4106 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2016-1372

Exploit
  • EPSS 0.57%
  • Veröffentlicht 03.10.2016 18:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

ClamAV (aka Clam AntiVirus) before 0.99.2 allows remote attackers to cause a denial of service (application crash) via a crafted 7z file.

5.5

CVE-2016-1371

Exploit
  • EPSS 0.69%
  • Veröffentlicht 03.10.2016 18:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

ClamAV (aka Clam AntiVirus) before 0.99.2 allows remote attackers to cause a denial of service (application crash) via a crafted mew packer executable.

9.8

CVE-2016-5180

  • EPSS 15.2%
  • Veröffentlicht 03.10.2016 15:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly execute arbitrary code via a hostname with an escaped trailing dot.

7.5

CVE-2016-7045

Exploit
  • EPSS 1.92%
  • Veröffentlicht 27.09.2016 15:59:11
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The format_send_to_gui function in the format parsing code in Irssi before 0.8.20 allows remote attackers to cause a denial of service (heap corruption and crash) via vectors involving the length of a string.

7.5

CVE-2016-7044

Exploit
  • EPSS 1.93%
  • Veröffentlicht 27.09.2016 15:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The unformat_24bit_color function in the format parsing code in Irssi before 0.8.20, when compiled with true-color enabled, allows remote attackers to cause a denial of service (heap corruption and crash) via an incomplete 24bit color code.

5.9

CVE-2016-6306

  • EPSS 9.14%
  • Veröffentlicht 26.09.2016 19:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.

7.5

CVE-2016-7162

Exploit
  • EPSS 1.15%
  • Veröffentlicht 26.09.2016 15:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The _g_file_remove_directory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on a folder in an archive.

5.5

CVE-2015-8934

Exploit
  • EPSS 1.86%
  • Veröffentlicht 20.09.2016 14:15:20
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted rar file.

5.5

CVE-2015-8933

Exploit
  • EPSS 0.31%
  • Veröffentlicht 20.09.2016 14:15:19
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the archive_read_format_tar_skip function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted tar file.

7.8

CVE-2015-8931

Exploit
  • EPSS 0.27%
  • Veröffentlicht 20.09.2016 14:15:18
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple integer overflows in the (1) get_time_t_max and (2) get_time_t_min functions in archive_read_support_format_mtree.c in libarchive before 3.2.0 allow remote attackers to have unspecified impact via a crafted mtree file, which triggers undefin...