Canonical

Ubuntu Linux

4106 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2015-2740

  • EPSS 3.49%
  • Veröffentlicht 06.07.2015 02:01:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in the nsXMLHttpRequest::AppendToResponseText function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 might allow remote attackers to cause a denial of service or have un...

10

CVE-2015-2738

  • EPSS 1.25%
  • Veröffentlicht 06.07.2015 02:01:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The YCbCrImageDataDeserializer::ToDataSourceSurface function in the YCbCr implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from uninitialized memory locations, wh...

10

CVE-2015-2739

  • EPSS 1.05%
  • Veröffentlicht 06.07.2015 02:01:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The ArrayBufferBuilder::append function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which has unspecified impact and attack vectors.

10

CVE-2015-2737

  • EPSS 1.25%
  • Veröffentlicht 06.07.2015 02:01:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The rx::d3d11::SetBufferData function in the Direct3D 11 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from uninitialized memory locations, which has unspecifi...

9.3

CVE-2015-2736

  • EPSS 1.19%
  • Veröffentlicht 06.07.2015 02:01:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The nsZipArchive::BuildFileList function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which allows remote attackers to have an unspecified impact ...

9.3

CVE-2015-2735

  • EPSS 1.19%
  • Veröffentlicht 06.07.2015 02:01:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

nsZipArchive.cpp in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which allows remote attackers to have an unspecified impact via a crafted ZIP archiv...

10

CVE-2015-2734

  • EPSS 1.25%
  • Veröffentlicht 06.07.2015 02:01:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The CairoTextureClientD3D9::BorrowDrawTarget function in the Direct3D 9 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from uninitialized memory locations, whic...

10

CVE-2015-2724

  • EPSS 0.91%
  • Veröffentlicht 06.07.2015 02:00:55
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 allow remote attackers to cause a denial of service (memory corruption and appli...

4.3

CVE-2015-2721

Exploit
  • EPSS 0.61%
  • Veröffentlicht 06.07.2015 02:00:49
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Mozilla Network Security Services (NSS) before 3.19, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, Thunderbird before 38.1, and other products, does not properly determine state transitions for the TLS sta...

6.8

CVE-2015-1330

  • EPSS 0.08%
  • Veröffentlicht 01.07.2015 14:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

unattended-upgrades before 0.86.1 does not properly authenticate packages when the (1) force-confold or (2) force-confnew dpkg options are enabled in the DPkg::Options::* apt configuration, which allows remote man-in-the-middle attackers to upload an...