CVE-2015-1338
- EPSS 0.91%
- Veröffentlicht 01.10.2015 20:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privileges via a (1) symlink or (2) hard link attack on /var/crash/vmcore.log.
CVE-2015-1335
- EPSS 0.46%
- Veröffentlicht 01.10.2015 20:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source.
CVE-2015-1781
- EPSS 5.01%
- Veröffentlicht 28.09.2015 20:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
Buffer overflow in the gethostbyname_r and other unspecified NSS functions in the GNU C Library (aka glibc or libc6) before 2.22 allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS respo...
CVE-2015-1319
- EPSS 0.37%
- Veröffentlicht 17.09.2015 16:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Unity Settings Daemon before 14.04.0+14.04.20150825-0ubuntu2 and 15.04.x before 15.04.1+15.04.20150408-0ubuntu1.2 does not properly detect if the screen is locked, which allows physically proximate attackers to mount removable media while the scr...
- EPSS 3.73%
- Veröffentlicht 14.09.2015 20:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The parse_encoding function in type1/t1load.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (infinite loop) via a "broken number-with-base" in a Postscript stream, as demonstrated by 8#garbage.
CVE-2015-5200
- EPSS 0.36%
- Veröffentlicht 08.09.2015 15:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors.
CVE-2015-5199
- EPSS 0.51%
- Veröffentlicht 08.09.2015 15:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAU_DRIVER environment variable.
CVE-2015-5198
- EPSS 0.37%
- Veröffentlicht 08.09.2015 15:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAU_DRIVER_PATH environment variable.
CVE-2015-6826
- EPSS 2.48%
- Veröffentlicht 06.09.2015 02:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ff_rv34_decode_init_thread_copy function in libavcodec/rv34.c in FFmpeg before 2.7.2 does not initialize certain structure members, which allows remote attackers to cause a denial of service (invalid pointer access) or possibly have unspecified o...
CVE-2015-6824
- EPSS 2.41%
- Veröffentlicht 06.09.2015 02:59:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
The sws_init_context function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service (segmentation violation) or possibly have unspecified other impa...