Canonical

Ubuntu Linux

4106 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2012-4388

Exploit
  • EPSS 1.04%
  • Veröffentlicht 07.09.2012 22:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The sapi_header_op function in main/SAPI.c in PHP 5.4.0RC2 through 5.4.0 does not properly determine a pointer during checks for %0D sequences (aka carriage return characters), which allows remote attackers to bypass an HTTP response-splitting protec...

5

CVE-2012-3509

  • EPSS 1.75%
  • Veröffentlicht 05.09.2012 23:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple integer overflows in the (1) _objalloc_alloc function in objalloc.c and (2) objalloc_alloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote attackers to cause a denial of service (crash) via vectors relate...

5

CVE-2012-3972

  • EPSS 4.55%
  • Veröffentlicht 29.08.2012 10:56:41
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The format-number functionality in the XSLT implementation in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to obtain sensit...

4.3

CVE-2012-3976

  • EPSS 0.78%
  • Veröffentlicht 29.08.2012 10:56:41
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, and SeaMonkey before 2.12 do not properly handle onLocationChange events during navigation between different https sites, which allows remote attackers to spoof the X.509 certificate inform...

10

CVE-2012-1974

  • EPSS 3.31%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the gfxTextRun::CanBreakLineBefore function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers...

10

CVE-2012-1975

  • EPSS 3.31%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the PresShell::CompleteMove function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to exe...

10

CVE-2012-1976

  • EPSS 3.17%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the nsHTMLSelectElement::SubmitNamesValues function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote a...

10

CVE-2012-3956

  • EPSS 2.31%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the MediaStreamGraphThreadRunnable::Run function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote atta...

10

CVE-2012-3957

  • EPSS 2.96%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in the nsBlockFrame::MarkLineDirty function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to e...

10

CVE-2012-3959

  • EPSS 3.93%
  • Veröffentlicht 29.08.2012 10:56:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the nsRangeUpdater::SelAdjDeleteNode function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attacke...