Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 37.63%
  • Veröffentlicht 24.04.2015 14:59:10
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The sanitize_cookie_path function in cURL and libcurl 7.31.0 through 7.41.0 does not properly calculate an index, which allows remote attackers to cause a denial of service (out-of-bounds write and crash) or possibly have other unspecified impact via...

  • EPSS 11.03%
  • Veröffentlicht 24.04.2015 14:59:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The fix_hostname function in cURL and libcurl 7.37.0 through 7.41.0 does not properly calculate an index, which allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) or possibly have other unspecified impact via...

  • EPSS 16.22%
  • Veröffentlicht 24.04.2015 14:59:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remote attackers to connect as other users via an unauthenticated request, a similar issue to CVE-2014-0015.

  • EPSS 0.94%
  • Veröffentlicht 19.04.2015 10:59:13
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple unspecified vulnerabilities in Google V8 before 4.2.77.14, as used in Google Chrome before 42.0.2311.90, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

  • EPSS 1.37%
  • Veröffentlicht 19.04.2015 10:59:12
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple unspecified vulnerabilities in Google Chrome before 42.0.2311.90 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.

  • EPSS 1.45%
  • Veröffentlicht 19.04.2015 10:59:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The URLRequest::GetHSTSRedirect function in url_request/url_request.cc in Google Chrome before 42.0.2311.90 does not replace the ws scheme with the wss scheme whenever an HSTS Policy is active, which makes it easier for remote attackers to obtain sen...

  • EPSS 2.7%
  • Veröffentlicht 19.04.2015 10:59:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The ReduceTransitionElementsKind function in hydrogen-check-elimination.cc in Google V8 before 4.2.77.8, as used in Google Chrome before 42.0.2311.90, allows remote attackers to cause a denial of service or possibly have unspecified other impact via ...

Exploit
  • EPSS 2.22%
  • Veröffentlicht 19.04.2015 10:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Google Chrome before 42.0.2311.90 does not properly consider the interaction of page navigation with the handling of touch events and gesture events, which allows remote attackers to trigger unintended UI actions via a crafted web site that conducts ...

  • EPSS 1.24%
  • Veröffentlicht 19.04.2015 10:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

gpu/blink/webgraphicscontext3d_impl.cc in the WebGL implementation in Google Chrome before 42.0.2311.90 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WebGL program that triggers a state inconsistency.

  • EPSS 1.58%
  • Veröffentlicht 19.04.2015 10:59:03
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Skia, as used in Google Chrome before 42.0.2311.90, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via unknown vectors.