Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 3.67%
  • Veröffentlicht 07.11.2019 06:15:10
  • Zuletzt bearbeitet 21.11.2024 04:33:36

DjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU::filter_fv at IW44EncodeCodec.cpp.

  • EPSS 0.35%
  • Veröffentlicht 06.11.2019 03:15:10
  • Zuletzt bearbeitet 21.11.2024 04:33:33

In the Linux kernel through 5.3.8, f->fmt.sdr.reserved is uninitialized in rcar_drif_g_fmt_sdr_cap in drivers/media/platform/rcar_drif.c, which could cause a memory disclosure problem.

Exploit
  • EPSS 0.5%
  • Veröffentlicht 05.11.2019 22:15:14
  • Zuletzt bearbeitet 21.11.2024 04:44:17

An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnerability.

  • EPSS 0.46%
  • Veröffentlicht 04.11.2019 21:15:11
  • Zuletzt bearbeitet 21.11.2024 03:27:24

Integer overflow in the check_offset function in b/wrestool/fileread.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable.

  • EPSS 2.11%
  • Veröffentlicht 04.11.2019 21:15:11
  • Zuletzt bearbeitet 21.11.2024 03:27:24

The extract_group_icon_cursor_resource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable.

  • EPSS 2.22%
  • Veröffentlicht 04.11.2019 21:15:11
  • Zuletzt bearbeitet 21.11.2024 03:27:24

Integer overflow in the extract_group_icon_cursor_resource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) or execute arbitrary code via a crafted executable file.

Exploit
  • EPSS 0.99%
  • Veröffentlicht 04.11.2019 16:15:11
  • Zuletzt bearbeitet 21.11.2024 04:33:31

An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalation on some Linux distributions where local users have /dev/video0 access, but only if the driver happens to be loaded. ...

  • EPSS 1.78%
  • Veröffentlicht 31.10.2019 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:25:02

FreeTDS through 1.1.11 has a Buffer Overflow.

  • EPSS 3.35%
  • Veröffentlicht 29.10.2019 19:15:18
  • Zuletzt bearbeitet 21.11.2024 04:29:15

LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can ...

Warnung Exploit
  • EPSS 99.47%
  • Veröffentlicht 28.10.2019 15:15:13
  • Zuletzt bearbeitet 03.11.2025 19:23:46

In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the p...