Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 5.2%
  • Veröffentlicht 10.10.2012 17:55:01
  • Zuletzt bearbeitet 16.06.2026 23:44:13

Use-after-free vulnerability in the IME State Manager implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allows remote attackers to exe...

  • EPSS 3.08%
  • Veröffentlicht 10.10.2012 17:55:01
  • Zuletzt bearbeitet 16.06.2026 23:44:13

Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict JSAPI access to the GetProperty function, which allows remote attackers to by...

  • EPSS 3.06%
  • Veröffentlicht 03.10.2012 21:55:00
  • Zuletzt bearbeitet 16.06.2026 23:43:19

The xml_parse function in the libxml2 support in the core server component in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 allows remote authenticated users to determine the existence of arbitrary files or U...

Exploit
  • EPSS 8.74%
  • Veröffentlicht 03.10.2012 11:02:56
  • Zuletzt bearbeitet 16.06.2026 23:43:08

Heap-based buffer overflow in the udf_load_logicalvol function in fs/udf/super.c in the Linux kernel before 3.4.5 allows remote attackers to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted UDF filesyst...

Exploit
  • EPSS 6.16%
  • Veröffentlicht 03.10.2012 11:02:56
  • Zuletzt bearbeitet 16.06.2026 23:43:10

The sfc (aka Solarflare Solarstorm) driver in the Linux kernel before 3.2.30 allows remote attackers to cause a denial of service (DMA descriptor consumption and network-controller outage) via crafted TCP packets that trigger a small MSS value.

  • EPSS 21.65%
  • Veröffentlicht 14.09.2012 10:33:21
  • Zuletzt bearbeitet 16.06.2026 23:44:07

ISC DHCP 4.1.x before 4.1-ESV-R7 and 4.2.x before 4.2.4-P2 allows remote attackers to cause a denial of service (daemon crash) in opportunistic circumstances by establishing an IPv6 lease in an environment where the lease expiration time is later red...

Exploit
  • EPSS 4.23%
  • Veröffentlicht 07.09.2012 22:55:02
  • Zuletzt bearbeitet 16.06.2026 23:44:55

The sapi_header_op function in main/SAPI.c in PHP 5.4.0RC2 through 5.4.0 does not properly determine a pointer during checks for %0D sequences (aka carriage return characters), which allows remote attackers to bypass an HTTP response-splitting protec...

  • EPSS 3.6%
  • Veröffentlicht 05.09.2012 23:55:01
  • Zuletzt bearbeitet 16.06.2026 23:43:22

Multiple integer overflows in the (1) _objalloc_alloc function in objalloc.c and (2) objalloc_alloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote attackers to cause a denial of service (crash) via vectors relate...

  • EPSS 3.96%
  • Veröffentlicht 29.08.2012 10:56:41
  • Zuletzt bearbeitet 16.06.2026 23:44:10

The format-number functionality in the XSLT implementation in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to obtain sensit...

  • EPSS 1.78%
  • Veröffentlicht 29.08.2012 10:56:41
  • Zuletzt bearbeitet 16.06.2026 23:44:11

Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, and SeaMonkey before 2.12 do not properly handle onLocationChange events during navigation between different https sites, which allows remote attackers to spoof the X.509 certificate inform...