Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 0.59%
  • Veröffentlicht 18.11.2014 15:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

D-Bus 1.3.0 through 1.6.x before 1.6.26, 1.8.x before 1.8.10, and 1.9.x before 1.9.2 allows local users to cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of file descriptors. NOTE: this vu...

  • EPSS 0.39%
  • Veröffentlicht 15.11.2014 21:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Off-by-one error in the pci_read function in the ACPI PCI hotplug interface (hw/acpi/pcihp.c) in QEMU allows local guest users to obtain sensitive information and have other unspecified impact related to a crafted PCI device that triggers memory corr...

  • EPSS 3.89%
  • Veröffentlicht 15.11.2014 20:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a denial of service (segmentation fault) via vectors that tr...

  • EPSS 5.12%
  • Veröffentlicht 15.11.2014 20:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The curl_easy_duphandle function in libcurl 7.17.1 through 7.38.0, when running with the CURLOPT_COPYPOSTFIELDS option, does not properly copy HTTP POST data for an easy handle, which triggers an out-of-bounds read that allows remote web servers to r...

  • EPSS 3.74%
  • Veröffentlicht 14.11.2014 15:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value.

  • EPSS 0.39%
  • Veröffentlicht 14.11.2014 15:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling.

  • EPSS 3.28%
  • Veröffentlicht 13.11.2014 21:32:13
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The _gnutls_ecc_ansi_x963_export function in gnutls_ecc.c in GnuTLS 3.x before 3.1.28, 3.2.x before 3.2.20, and 3.3.x before 3.3.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1) Elliptic Curve Cryptograp...

Exploit
  • EPSS 0.74%
  • Veröffentlicht 10.11.2014 11:55:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The d_walk function in fs/dcache.c in the Linux kernel through 3.17.2 does not properly maintain the semantics of rename_lock, which allows local users to cause a denial of service (deadlock and system hang) via a crafted application.

  • EPSS 0.52%
  • Veröffentlicht 10.11.2014 11:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allows host OS users to kill arbitrary processes or caus...

Exploit
  • EPSS 0.6%
  • Veröffentlicht 10.11.2014 11:55:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non-canonical address to a model-specific register, which allows guest OS users to cause a denial of service (host OS...