Canonical

Ubuntu Linux

4106 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.8

CVE-2016-3715

Warnung Exploit
  • EPSS 79.8%
  • Veröffentlicht 05.05.2016 18:59:04
  • Zuletzt bearbeitet 22.10.2025 00:15:51

The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to delete arbitrary files via a crafted image.

10

CVE-2016-3714

Warnung
  • EPSS 93.75%
  • Veröffentlicht 05.05.2016 18:59:03
  • Zuletzt bearbeitet 22.10.2025 00:15:51

The (1) EPHEMERAL, (2) HTTPS, (3) MVG, (4) MSL, (5) TEXT, (6) SHOW, (7) WIN, and (8) PLT coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow remote attackers to execute arbitrary code via shell metacharacters in a crafted image, aka "I...

5.9

CVE-2016-2107

  • EPSS 82.72%
  • Veröffentlicht 05.05.2016 01:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against...

7.5

CVE-2016-2105

  • EPSS 48.74%
  • Veröffentlicht 05.05.2016 01:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data.

4.9

CVE-2016-3951

  • EPSS 0.04%
  • Veröffentlicht 02.05.2016 10:59:41
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (system crash) or possibly have unspecified other impact by inserting a USB device with an invali...

4.9

CVE-2016-3689

  • EPSS 0.09%
  • Veröffentlicht 02.05.2016 10:59:40
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (system crash) via a USB device without both a master and a slave interface.

4.9

CVE-2016-3140

  • EPSS 0.16%
  • Veröffentlicht 02.05.2016 10:59:39
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The digi_port_init function in drivers/usb/serial/digi_acceleport.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB...

4.9

CVE-2016-3138

  • EPSS 0.02%
  • Veröffentlicht 02.05.2016 10:59:37
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The acm_probe function in drivers/usb/class/cdc-acm.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a USB device without both a control and a data e...

4.9

CVE-2016-3137

  • EPSS 0.02%
  • Veröffentlicht 02.05.2016 10:59:36
  • Zuletzt bearbeitet 12.04.2025 10:46:40

drivers/usb/serial/cypress_m8.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a USB device without both an interrupt-in and an interrupt-out endpoin...

4.9

CVE-2016-3136

  • EPSS 0.2%
  • Veröffentlicht 02.05.2016 10:59:35
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The mct_u232_msr_to_state function in drivers/usb/serial/mct_u232.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted USB device without two i...