CVE-2014-3145
- EPSS 0.65%
- Veröffentlicht 11.05.2014 21:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The BPF_S_ANC_NLATTR_NEST extension implementation in the sk_run_filter function in net/core/filter.c in the Linux kernel through 3.14.3 uses the reverse order in a certain subtraction, which allows local users to cause a denial of service (over-read...
CVE-2014-0190
- EPSS 3.96%
- Veröffentlicht 08.05.2014 14:29:13
- Zuletzt bearbeitet 06.05.2026 22:30:45
The GIF decoder in QtGui in Qt before 5.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via invalid width and height values in a GIF image.
CVE-2014-0056
- EPSS 1.43%
- Veröffentlicht 08.05.2014 14:29:12
- Zuletzt bearbeitet 06.05.2026 22:30:45
The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command.
CVE-2013-4544
- EPSS 0.72%
- Veröffentlicht 08.05.2014 14:29:11
- Zuletzt bearbeitet 06.05.2026 22:30:45
hw/net/vmxnet3.c in QEMU 2.0.0-rc0, 1.7.1, and earlier allows local guest users to cause a denial of service or possibly execute arbitrary code via vectors related to (1) RX or (2) TX queue numbers or (3) interrupt indices. NOTE: some of these detai...
CVE-2014-0196
- EPSS 22.48%
- Veröffentlicht 07.05.2014 10:55:04
- Zuletzt bearbeitet 21.04.2026 20:07:27
The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service (memory corruption and system crash) or ...
CVE-2014-3203
- EPSS 0.51%
- Veröffentlicht 06.05.2014 14:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unity before 7.2.1, as used in Ubuntu 14.04, does not properly restrict access to the Dash when the lock screen is active, which allows physically proximate attackers to bypass the lock screen and execute arbitrary commands, as demonstrated by pressi...
CVE-2014-3204
- EPSS 0.48%
- Veröffentlicht 06.05.2014 14:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unity before 7.2.1, as used in Ubuntu 14.04, does not properly handle keyboard shortcuts, which allows physically proximate attackers to bypass the lock screen and execute arbitrary commands, as demonstrated by right-clicking on the indicator bar and...
CVE-2013-7374
- EPSS 0.38%
- Veröffentlicht 01.05.2014 17:28:36
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Ubuntu Date and Time Indicator (aka indicator-datetime) 13.10.0+13.10.x before 13.10.0+13.10.20131023.2-0ubuntu1.1 does not properly restrict access to Evolution, which allows local users to bypass the greeter screen restrictions by clicking the ...
- EPSS 2.86%
- Veröffentlicht 30.04.2014 14:22:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to "C-style filename quotin...
CVE-2014-1530
- EPSS 1.67%
- Veröffentlicht 30.04.2014 10:49:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
The docshell implementation in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to trigger the loading of a URL with a spoofed baseURI property, and conduct cross-si...