Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.92%
  • Veröffentlicht 09.05.2007 00:19:00
  • Zuletzt bearbeitet 16.06.2026 22:38:27

Buffer overflow in the bundled libxmlrpc library in PHP before 4.4.7, and 5.x before 5.2.2, has unknown impact and remote attack vectors.

  • EPSS 3.18%
  • Veröffentlicht 24.04.2007 20:19:00
  • Zuletzt bearbeitet 16.06.2026 22:39:00

Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users, when permitted to call a SECURITY DEFINER function, to gain the p...

  • EPSS 0.43%
  • Veröffentlicht 22.04.2007 19:19:00
  • Zuletzt bearbeitet 16.06.2026 22:39:04

A typo in Linux kernel 2.6 before 2.6.21-rc6 and 2.4 before 2.4.35 causes RTA_MAX to be used as an array size instead of RTN_MAX, which leads to an "out of bound access" by the (1) dn_fib_props (dn_fib.c, DECNet) and (2) fib_props (fib_semantics.c, I...

  • EPSS 29.84%
  • Veröffentlicht 06.04.2007 01:19:00
  • Zuletzt bearbeitet 16.06.2026 22:36:38

The telnet daemon (telnetd) in MIT krb5 before 1.6.1 allows remote attackers to bypass authentication and gain system access via a username beginning with a '-' character, a similar issue to CVE-2007-0882.

  • EPSS 10.33%
  • Veröffentlicht 06.04.2007 01:19:00
  • Zuletzt bearbeitet 16.06.2026 22:36:38

Stack-based buffer overflow in the krb5_klog_syslog function in the kadm5 library, as used by the Kerberos administration daemon (kadmind) and Key Distribution Center (KDC), in MIT krb5 before 1.6.1 allows remote authenticated users to execute arbitr...

  • EPSS 9.88%
  • Veröffentlicht 06.04.2007 01:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:09

Double free vulnerability in the GSS-API library (lib/gssapi/krb5/k5unseal.c), as used by the Kerberos administration daemon (kadmind) in MIT krb5 before 1.6.1, when used with the authentication method provided by the RPCSEC_GSS RPC library, allows r...

  • EPSS 4.75%
  • Veröffentlicht 06.04.2007 01:19:00
  • Zuletzt bearbeitet 16.06.2026 22:38:30

Buffer overflow in the sqlite_decode_binary function in the bundled sqlite library in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 allows context-dependent attackers to execute arbitrary code via an empty value of the in parameter, as demonstrated by ca...

  • EPSS 10.11%
  • Veröffentlicht 30.03.2007 00:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:23

PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted U...

  • EPSS 4.61%
  • Veröffentlicht 24.03.2007 21:19:00
  • Zuletzt bearbeitet 16.06.2026 22:38:04

Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive inf...

  • EPSS 13.85%
  • Veröffentlicht 21.03.2007 19:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:50

The FTP protocol implementation in Mozilla Firefox before 1.5.0.11 and 2.x before 2.0.0.3 allows remote attackers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate...