Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.5%
  • Veröffentlicht 28.01.2009 18:30:00
  • Zuletzt bearbeitet 16.06.2026 23:04:45

drivers/firmware/dell_rbu.c in the Linux kernel before 2.6.27.13, and 2.6.28.x before 2.6.28.2, allows local users to cause a denial of service (system crash) via a read system call that specifies zero bytes from the (1) image_type or (2) packet_size...

  • EPSS 0.51%
  • Veröffentlicht 28.01.2009 02:30:00
  • Zuletzt bearbeitet 16.06.2026 23:01:21

Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local us...

  • EPSS 0.5%
  • Veröffentlicht 26.01.2009 15:30:04
  • Zuletzt bearbeitet 16.06.2026 23:04:37

fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel before 2.6.28.1 allows local users to cause a denial of service (fault or memory corruption), or possibly have unspecified other impact, via a readlink call that results in an error, l...

  • EPSS 0.54%
  • Veröffentlicht 29.12.2008 15:24:23
  • Zuletzt bearbeitet 16.06.2026 22:58:01

Heap-based buffer overflow in the Cirrus VGA implementation in (1) KVM before kvm-82 and (2) QEMU on Debian GNU/Linux and Ubuntu might allow local users to gain privileges by using the VNC console for a connection, aka the LGD-54XX "bitblt" heap over...

  • EPSS 3.2%
  • Veröffentlicht 17.12.2008 23:30:00
  • Zuletzt bearbeitet 16.06.2026 23:00:08

The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service (crash) and possibly trigger memory corruption via ve...

  • EPSS 3.14%
  • Veröffentlicht 17.12.2008 23:30:00
  • Zuletzt bearbeitet 16.06.2026 23:00:10

The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service via vectors that trigger an assertion failure.

  • EPSS 2.27%
  • Veröffentlicht 17.12.2008 23:30:00
  • Zuletzt bearbeitet 16.06.2026 23:00:12

The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service (crash) via vectors that trigger memory corruption, related to the GetXMLEnti...

  • EPSS 2.09%
  • Veröffentlicht 17.12.2008 23:30:00
  • Zuletzt bearbeitet 16.06.2026 23:00:25

Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to bypass the same origin policy by causing the browser to issue an XMLHttpRequest to an attacker-contr...

  • EPSS 1.66%
  • Veröffentlicht 17.12.2008 23:30:00
  • Zuletzt bearbeitet 16.06.2026 23:00:25

Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allow remote attackers to bypass the same origin policy and access portions of data from another domain via a JavaScript URL th...

  • EPSS 2.22%
  • Veröffentlicht 17.12.2008 23:30:00
  • Zuletzt bearbeitet 16.06.2026 23:00:26

Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 does not properly parse URLs with leading whitespace or control characters, which might allow remote attackers to misrepresent ...