Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 38.78%
  • Veröffentlicht 15.08.2011 21:55:02
  • Zuletzt bearbeitet 16.06.2026 23:31:55

The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP packet.

  • EPSS 38.78%
  • Veröffentlicht 15.08.2011 21:55:02
  • Zuletzt bearbeitet 16.06.2026 23:31:55

The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted BOOTP packet.

Exploit
  • EPSS 10.05%
  • Veröffentlicht 29.07.2011 20:55:02
  • Zuletzt bearbeitet 16.06.2026 23:31:30

Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start...

  • EPSS 6.29%
  • Veröffentlicht 29.07.2011 20:55:02
  • Zuletzt bearbeitet 16.06.2026 23:31:48

Cross-site scripting (XSS) vulnerability in the chg_passwd function in web/swat.c in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allows remote authenticated administrators to inject arbitrary web script or HTML via the usernam...

  • EPSS 1.69%
  • Veröffentlicht 27.07.2011 02:55:01
  • Zuletzt bearbeitet 16.06.2026 23:30:12

APT before 0.8.15.2 does not properly validate inline GPG signatures, which allows man-in-the-middle attackers to install modified packages via vectors involving lack of an initial clearsigned message.

  • EPSS 0.4%
  • Veröffentlicht 18.07.2011 19:55:00
  • Zuletzt bearbeitet 16.06.2026 23:25:15

net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel heap memory by leveraging the CAP_NET_ADMIN capability for an ethtool i...

  • EPSS 0.4%
  • Veröffentlicht 18.07.2011 19:55:00
  • Zuletzt bearbeitet 16.06.2026 23:25:15

The iowarrior_write function in drivers/usb/misc/iowarrior.c in the Linux kernel before 2.6.37 does not properly allocate memory, which might allow local users to trigger a heap-based buffer overflow, and consequently cause a denial of service or gai...

Exploit
  • EPSS 3.48%
  • Veröffentlicht 17.07.2011 20:55:01
  • Zuletzt bearbeitet 16.06.2026 23:31:27

The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (application crash) via a crafted PNG image that triggers...

  • EPSS 3.29%
  • Veröffentlicht 17.07.2011 20:55:01
  • Zuletzt bearbeitet 16.06.2026 23:31:48

Buffer overflow in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4, when used by an application that calls the png_rgb_to_gray function but not the png_set_expand function, allows remote attackers to overwr...

Exploit
  • EPSS 4.23%
  • Veröffentlicht 17.07.2011 20:55:01
  • Zuletzt bearbeitet 16.06.2026 23:31:48

The png_handle_sCAL function in pngrutil.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 does not properly handle invalid sCAL chunks, which allows remote attackers to cause a denial of service (memory...