Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.79%
  • Veröffentlicht 15.01.2014 16:08:05
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.33 and earlier and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition.

  • EPSS 0.43%
  • Veröffentlicht 07.01.2014 18:55:06
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Puppet before 3.3.3 and 3.4 before 3.4.1 and Puppet Enterprise (PE) before 2.8.4 and 3.1 before 3.1.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified files.

  • EPSS 2.76%
  • Veröffentlicht 23.12.2013 22:55:02
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The GnuTLS backend in libcurl 7.21.4 through 7.33.0, when disabling digital signature verification (CURLOPT_SSL_VERIFYPEER), also disables the CURLOPT_SSL_VERIFYHOST check for CN or SAN host name fields, which makes it easier for remote attackers to ...

Exploit
  • EPSS 2.24%
  • Veröffentlicht 14.12.2013 17:21:46
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The ec2tokens API in OpenStack Identity (Keystone) before Havana 2013.2.1 and Icehouse before icehouse-2 does not return a trust-scoped token when one is received, which allows remote trust users to gain privileges by generating EC2 credentials from ...

Exploit
  • EPSS 9.45%
  • Veröffentlicht 13.12.2013 18:55:04
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service (crash or infinite loop, CPU consumption, and hang) by causing the AgentX subagent to timeout...

Exploit
  • EPSS 10.41%
  • Veröffentlicht 11.12.2013 15:55:13
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Use-after-free vulnerability in the nsNodeUtils::LastRelease function in the table-editing user interface in the editor component in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allows ...

  • EPSS 3.71%
  • Veröffentlicht 11.12.2013 15:55:13
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Multiple integer overflows in the binary-search implementation in SpiderMonkey in Mozilla Firefox before 26.0 and SeaMonkey before 2.23 might allow remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecifie...

Exploit
  • EPSS 11.08%
  • Veröffentlicht 11.12.2013 15:55:13
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The nsGfxScrollFrameInner::IsLTR function in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allows remote attackers to execute arbitrary code via crafted use of JavaScript code for ordere...

  • EPSS 3.34%
  • Veröffentlicht 11.12.2013 15:55:13
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Mozilla Firefox before 26.0 and SeaMonkey before 2.23 on Linux allow user-assisted remote attackers to read clipboard data by leveraging certain middle-click paste operations.

Exploit
  • EPSS 2.89%
  • Veröffentlicht 11.12.2013 15:55:13
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 do not recognize a user's removal of trust from an EV X.509 certificate, which makes it easier for man-in-the-middle attackers to spoof SSL ...