Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 4.99%
  • Veröffentlicht 24.09.2008 20:37:04
  • Zuletzt bearbeitet 16.06.2026 22:57:05

Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to cause a denial of service (memory corruption and application crash) or po...

  • EPSS 3.96%
  • Veröffentlicht 24.09.2008 20:37:04
  • Zuletzt bearbeitet 16.06.2026 22:57:05

Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the layout engine and (1)...

Exploit
  • EPSS 4.11%
  • Veröffentlicht 24.09.2008 20:37:04
  • Zuletzt bearbeitet 16.06.2026 22:57:05

Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via byte order mark (BOM) charact...

Exploit
  • EPSS 4.44%
  • Veröffentlicht 24.09.2008 20:37:04
  • Zuletzt bearbeitet 16.06.2026 22:57:06

Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 on Linux allows remote attackers to read arbitrary files via a .. (dot dot) and URL-encoded / (slash) ...

  • EPSS 4.17%
  • Veröffentlicht 24.09.2008 20:37:04
  • Zuletzt bearbeitet 16.06.2026 22:57:06

Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to bypass "restrictions imposed on local HTML files," and obtain sensitive inf...

  • EPSS 1.62%
  • Veröffentlicht 18.09.2008 15:04:27
  • Zuletzt bearbeitet 16.06.2026 22:57:10

MySQL before 5.0.67 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and ...

Exploit
  • EPSS 23.37%
  • Veröffentlicht 12.09.2008 16:56:20
  • Zuletzt bearbeitet 16.06.2026 22:55:59

Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via a long XML entity name.

Exploit
  • EPSS 0.52%
  • Veröffentlicht 04.09.2008 17:41:00
  • Zuletzt bearbeitet 16.06.2026 22:48:38

fs/direct-io.c in the dio subsystem in the Linux kernel before 2.6.23 does not properly zero out the dio struct, which allows local users to cause a denial of service (OOPS), as demonstrated by a certain fio test.

  • EPSS 2.51%
  • Veröffentlicht 27.08.2008 20:41:00
  • Zuletzt bearbeitet 16.06.2026 22:55:31

libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document.

Exploit
  • EPSS 0.51%
  • Veröffentlicht 12.08.2008 23:41:00
  • Zuletzt bearbeitet 16.06.2026 22:55:31

The (1) real_lookup and (2) __lookup_hash functions in fs/namei.c in the vfs implementation in the Linux kernel before 2.6.25.15 do not prevent creation of a child dentry for a deleted (aka S_DEAD) directory, which allows local users to cause a denia...