Vulnerabilities (CVE)

Vendor filter

Ubuntu Subscribe

Product filter

Ubuntu Subscribe


8 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-7584 4 Php, Ubuntu, Canonical and 1 more 4 Php, Ubuntu, Ubuntu Linux and 1 more 2019-08-19 7.5
In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the php_stream_url_wrap_http_ex function in ext/standard/http_fopen_wrapper.c....
CVE-2015-5479 4 Libav, Novell, Ubuntu and 1 more 4 Ubuntu, Leap, Libav and 1 more 2018-10-30 4.3
The ff_h263_decode_mba function in libavcodec/ituh263dec.c in Libav before 11.5 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a file with crafted dimensions.
CVE-2015-2150 3 Xen, Linux, Ubuntu 3 Ubuntu, Linux Kernel, Xen 2018-10-30 4.9
Xen 3.3.x through 4.5.x and the Linux kernel through 3.19.1 do not properly restrict access to PCI command registers, which might allow local guest OS users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1)...
CVE-2017-14461 3 Dovecot, Debian, Ubuntu 3 Dovecot, Debian Linux, Ubuntu 2018-04-04 5.5
A specially crafted email delivered over SMTP and passed on to Dovecot by MTA can trigger an out of bounds read resulting in potential sensitive information disclosure and denial of service. In order to trigger this vulnerability, an attacker...
CVE-2013-2186 2 Redhat, Ubuntu 5 Ubuntu, Jboss Enterprise Web Server, Openshift and 2 more 2018-01-09 7.5
The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file...
CVE-2009-1296 1 Ubuntu 2 Ubuntu, 73-oubuntu 2017-08-17 1.9
The eCryptfs support utilities (ecryptfs-utils) 73-0ubuntu6.1 on Ubuntu 9.04 stores the mount passphrase in installation logs, which might allow local users to obtain access to the filesystem by reading the log files from disk. NOTE: the log...
CVE-2014-1424 2 Canonical, Ubuntu 2 Apparmor, Ubuntu 2014-11-24 6.4
apparmor_parser in the apparmor package before 2.8.95~2430-0ubuntu5.1 in Ubuntu 14.04 allows attackers to bypass AppArmor policies via unspecified vectors, related to a "miscompilation flaw."
CVE-2009-1295 2 Apport, Ubuntu 2 Ubuntu, Apport 2009-05-15 1.9
Apport before 0.108.4 on Ubuntu 8.04 LTS, before 0.119.2 on Ubuntu 8.10, and before 1.0-0ubuntu5.2 on Ubuntu 9.04 does not properly remove files from the application's crash-report directory, which allows local users to delete arbitrary files via...