Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.31%
  • Veröffentlicht 14.10.2019 02:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:29

FFmpeg before 4.2 has a heap-based buffer overflow in vqa_decode_chunk because of an out-of-array access in vqa_decode_init in libavcodec/vqavideo.c.

  • EPSS 3.26%
  • Veröffentlicht 14.10.2019 02:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:29

libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character.

Warnung Exploit
  • EPSS 72.11%
  • Veröffentlicht 11.10.2019 19:15:10
  • Zuletzt bearbeitet 24.10.2025 14:11:31

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local appli...

Exploit
  • EPSS 3.11%
  • Veröffentlicht 10.10.2019 18:15:11
  • Zuletzt bearbeitet 21.11.2024 04:32:21

Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a craf...

Exploit
  • EPSS 2.75%
  • Veröffentlicht 10.10.2019 17:15:17
  • Zuletzt bearbeitet 21.11.2024 04:32:20

find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32, allows remote attackers to cause a denial of service (infinite recursion and application crash) via a crafted ELF file.

Exploit
  • EPSS 2.4%
  • Veröffentlicht 10.10.2019 17:15:17
  • Zuletzt bearbeitet 21.11.2024 04:32:20

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an integer overflow leading to a SEGV in _bfd_dwarf2_find_nearest_line in dwarf2.c, as demonstrated by nm.

  • EPSS 1.85%
  • Veröffentlicht 09.10.2019 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:32:16

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset an...

  • EPSS 2.3%
  • Veröffentlicht 08.10.2019 18:15:14
  • Zuletzt bearbeitet 21.11.2024 04:31:45

Amphora Images in OpenStack Octavia >=0.10.0 <2.1.2, >=3.0.0 <3.2.0, >=4.0.0 <4.1.0 allows anyone with access to the management network to bypass client-certificate based authentication and retrieve information or issue configuration commands via sim...

  • EPSS 2.78%
  • Veröffentlicht 06.10.2019 22:15:10
  • Zuletzt bearbeitet 21.11.2024 04:31:59

libsoup from versions 2.65.1 until 2.68.1 have a heap-based buffer over-read because soup_ntlm_parse_challenge() in soup-auth-ntlm.c does not properly check an NTLM message's length before proceeding with a memcpy.

  • EPSS 6.65%
  • Veröffentlicht 04.10.2019 12:15:11
  • Zuletzt bearbeitet 21.11.2024 04:31:45

In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.