Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.51%
  • Veröffentlicht 12.04.2016 16:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel does not properly context-switch IOPL on 64-bit PV Xen guests, which allows local guest OS users to gain privileges, cause a denial of service (guest OS crash), or obtain se...

  • EPSS 0.56%
  • Veröffentlicht 12.04.2016 02:00:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet.

  • EPSS 9.01%
  • Veröffentlicht 08.04.2016 15:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.

Exploit
  • EPSS 70.43%
  • Veröffentlicht 07.04.2016 20:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

BeanShell (bsh) before 2.0b6, when included on the classpath by an application that uses Java serialization or XStream, allows remote attackers to execute arbitrary code via crafted serialized data, related to XThis.Handler.

  • EPSS 0.39%
  • Veröffentlicht 07.04.2016 19:59:03
  • Zuletzt bearbeitet 06.05.2026 22:30:45

QEMU, when built with the Pseudo Random Number Generator (PRNG) back-end support, allows local guest OS users to cause a denial of service (process crash) via an entropy request, which triggers arbitrary stack based allocation and memory corruption.

  • EPSS 14.62%
  • Veröffentlicht 07.04.2016 18:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Heap-based buffer overflow in the Icmp6::Recv function in icmp/Icmp6.cc in the pinger utility in Squid before 3.5.16 and 4.x before 4.0.8 allows remote servers to cause a denial of service (performance degradation or transition failures) or write sen...

  • EPSS 1.22%
  • Veröffentlicht 29.03.2016 10:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple unspecified vulnerabilities in Google V8 before 4.9.385.33, as used in Google Chrome before 49.0.2623.108, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

  • EPSS 2.88%
  • Veröffentlicht 29.03.2016 10:59:03
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The Program::getUniformInternal function in Program.cpp in libANGLE, as used in Google Chrome before 49.0.2623.108, does not properly handle a certain data-type mismatch, which allows remote attackers to cause a denial of service (buffer overflow) or...

  • EPSS 2.05%
  • Veröffentlicht 29.03.2016 10:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Use-after-free vulnerability in the RenderWidgetHostImpl::Destroy function in content/browser/renderer_host/render_widget_host_impl.cc in the Navigation implementation in Google Chrome before 49.0.2623.108 allows remote attackers to cause a denial of...

Warnung Exploit
  • EPSS 48.11%
  • Veröffentlicht 29.03.2016 10:59:00
  • Zuletzt bearbeitet 21.04.2026 17:50:52

The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service (out-of-bounds read) or po...