Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.43%
  • Veröffentlicht 03.09.2010 20:00:03
  • Zuletzt bearbeitet 16.06.2026 23:20:20

The xfs_swapext function in fs/xfs/xfs_dfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT ioctl, which allows local users to leverage write access and obtain read access by swapping one file i...

  • EPSS 2.9%
  • Veröffentlicht 24.08.2010 20:00:02
  • Zuletzt bearbeitet 16.06.2026 23:22:09

Google Chrome before 5.0.375.127, and webkitgtk before 1.2.5, does not properly handle SVG documents, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors related...

  • EPSS 1.79%
  • Veröffentlicht 24.08.2010 20:00:02
  • Zuletzt bearbeitet 16.06.2026 23:22:09

The text-editing implementation in Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, does not check a node type before performing a cast, which has unspecified impact and attack vectors related to (1) DeleteSelectionCommand.cpp, (2) Inser...

Exploit
  • EPSS 1.81%
  • Veröffentlicht 24.08.2010 20:00:02
  • Zuletzt bearbeitet 16.06.2026 23:22:09

Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, does not properly implement the history feature, which might allow remote attackers to spoof the address bar via unspecified vectors.

  • EPSS 3.69%
  • Veröffentlicht 24.08.2010 20:00:02
  • Zuletzt bearbeitet 16.06.2026 23:22:09

Multiple use-after-free vulnerabilities in WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6, allow remote attackers to execute arbitrary code or cause a denial of servic...

Exploit
  • EPSS 5.84%
  • Veröffentlicht 19.08.2010 18:00:05
  • Zuletzt bearbeitet 16.06.2026 23:21:32

Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via negative size values for certain strings i...

  • EPSS 4.2%
  • Veröffentlicht 19.08.2010 18:00:05
  • Zuletzt bearbeitet 16.06.2026 23:21:32

FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.

  • EPSS 4.52%
  • Veröffentlicht 19.08.2010 18:00:05
  • Zuletzt bearbeitet 16.06.2026 23:21:32

Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Adobe Typ...

Exploit
  • EPSS 5.64%
  • Veröffentlicht 19.08.2010 18:00:04
  • Zuletzt bearbeitet 16.06.2026 23:20:52

The psh_glyph_find_strong_points function in pshinter/pshalgo.c in FreeType before 2.4.0 does not properly implement hinting masks, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly ...

Exploit
  • EPSS 6.19%
  • Veröffentlicht 19.08.2010 18:00:04
  • Zuletzt bearbeitet 16.06.2026 23:20:52

Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted LaserWriter PS font file with a...