Canonical

Ubuntu Linux

4106 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2016-0483

  • EPSS 12.6%
  • Veröffentlicht 21.01.2016 03:00:31
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information i...

5

CVE-2016-0466

  • EPSS 4.23%
  • Veröffentlicht 21.01.2016 03:00:15
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRockit R28.3.8 allows remote attackers to affect availability via vectors related to JAXP.

4

CVE-2016-0448

  • EPSS 0.33%
  • Veröffentlicht 21.01.2016 02:59:57
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66, and Java SE Embedded 8u65 allows remote authenticated users to affect confidentiality via vectors related to JMX.

5

CVE-2016-0402

  • EPSS 3.27%
  • Veröffentlicht 21.01.2016 02:59:14
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect integrity via unknown vectors related to Networking.

5.5

CVE-2016-1897

Exploit
  • EPSS 57.76%
  • Veröffentlicht 15.01.2016 03:59:23
  • Zuletzt bearbeitet 12.04.2025 10:46:40

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the first line of...

5.5

CVE-2016-1898

Exploit
  • EPSS 33.19%
  • Veröffentlicht 15.01.2016 03:59:23
  • Zuletzt bearbeitet 12.04.2025 10:46:40

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary lin...

6.5

CVE-2015-8605

  • EPSS 46%
  • Veröffentlicht 14.01.2016 22:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.

7.5

CVE-2015-8607

  • EPSS 5.66%
  • Veröffentlicht 13.01.2016 15:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The canonpath function in the File::Spec module in PathTools before 3.62, as used in Perl, does not properly preserve the taint attribute of data, which might allow context-dependent attackers to bypass the taint protection mechanism via a crafted st...

8.6

CVE-2015-1779

  • EPSS 5.57%
  • Veröffentlicht 12.01.2016 19:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service (memory and CPU consumption) via a large (1) websocket payload or (2) HTTP headers section.

5.9

CVE-2015-7575

  • EPSS 1.69%
  • Veröffentlicht 09.01.2016 02:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it e...