Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.91%
  • Veröffentlicht 07.09.2016 20:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.

  • EPSS 6.72%
  • Veröffentlicht 07.09.2016 20:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read.

Exploit
  • EPSS 18.86%
  • Veröffentlicht 07.09.2016 18:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Eye of GNOME (aka eog) 3.16.5, 3.17.x, 3.18.x before 3.18.3, 3.19.x, and 3.20.x before 3.20.4, when used with glib before 2.44.1, allow remote attackers to cause a denial of service (out-of-bounds write and crash) via vectors involving passing invali...

  • EPSS 0.47%
  • Veröffentlicht 07.09.2016 18:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The esp_do_dma function in hw/scsi/esp.c in QEMU (aka Quick Emulator), when built with ESP/NCR53C9x controller emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) or execut...

  • EPSS 0.42%
  • Veröffentlicht 02.09.2016 14:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The megasas_lookup_frame function in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds read and crash) via unspecified vectors.

  • EPSS 0.39%
  • Veröffentlicht 02.09.2016 14:59:03
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The megasas_dcmd_set_properties function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest administrators to cause a denial of service (out-of-bounds write access) via vectors in...

  • EPSS 0.41%
  • Veröffentlicht 02.09.2016 14:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The megasas_dcmd_cfg_read function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involvin...

  • EPSS 0.37%
  • Veröffentlicht 02.09.2016 14:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

QEMU (aka Quick Emulator), when built with VMWARE PVSCSI paravirtual SCSI bus emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds array access) via vectors related to the (1) PVSCSI_CMD_SETUP_RINGS or (...

  • EPSS 0.4%
  • Veröffentlicht 13.08.2016 01:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

fontconfig before 2.12.1 does not validate offsets, which allows local users to trigger arbitrary free calls and consequently conduct double free attacks and execute arbitrary code via a crafted cache file.

  • EPSS 8.04%
  • Veröffentlicht 10.08.2016 14:59:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Use-after-free vulnerability in libcurl before 7.50.1 allows attackers to control which connection is used or possibly have unspecified other impact via unknown vectors.