Vulnerabilities (CVE)

Vendor filter

Canonical Subscribe

Filter

1420 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-19058 2 Freedesktop, Canonical 2 Poppler, Ubuntu Linux 2018-12-07 4.3
An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to denial of service because EmbFile::save2 in FileSpec.cc lacks a stream check before saving an embedded file.
CVE-2018-19059 2 Freedesktop, Canonical 2 Poppler, Ubuntu Linux 2018-12-07 4.3
An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts.
CVE-2018-19060 2 Freedesktop, Canonical 2 Poppler, Ubuntu Linux 2018-12-07 4.3
An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating a filename of an embedded file before constructing a save path.
CVE-2018-18751 3 Gnu, Canonical, Redhat 3 Gettext, Ubuntu Linux, Enterprise Linux 2018-12-07 7.5
An issue was discovered in GNU gettext 0.19.8. There is a double free in default_add_message in read-catalog.c, related to an invalid free in po_gram_parse in po-gram-gen.y, as demonstrated by lt-msgfmt.
CVE-2017-15705 4 Apache, Canonical, Debian and 1 more 7 Spamassassin, Ubuntu Linux, Debian Linux and 4 more 2018-12-07 5.0
A denial of service vulnerability was identified that exists in Apache SpamAssassin before 3.4.2. The vulnerability arises with certain unclosed tags in emails that cause markup to be handled incorrectly leading to scan timeouts. In Apache...
CVE-2018-19541 3 Jasper Project, Canonical, Suse 4 Jasper, Ubuntu Linux, Linux Enterprise Desktop and 1 more 2018-12-07 6.8
An issue was discovered in JasPer 2.0.14. There is a heap-based buffer over-read of size 8 in the function jas_image_depalettize in libjasper/base/jas_image.c.
CVE-2018-18873 4 Jasper Project, Canonical, Debian and 1 more 5 Jasper, Ubuntu Linux, Debian Linux and 2 more 2018-12-07 6.8
An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function ras_putdatastd in ras/ras_enc.c.
CVE-2018-19542 3 Jasper Project, Canonical, Suse 4 Jasper, Ubuntu Linux, Linux Enterprise Desktop and 1 more 2018-12-07 4.3
An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading to a denial of service.
CVE-2018-19543 4 Jasper Project, Canonical, Debian and 1 more 5 Jasper, Ubuntu Linux, Debian Linux and 2 more 2018-12-07 6.8
An issue was discovered in JasPer 2.0.14. There is a heap-based buffer over-read of size 8 in the function jp2_decode in libjasper/jp2/jp2_dec.c.
CVE-2018-14622 3 Canonical, Debian, Redhat 7 Ubuntu Linux, Debian Linux, Enterprise Linux and 4 more 2018-12-07 5.0
A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The return value of makefd_xprt() was not checked in all instances, which could lead to a crash when the server exhausted the maximum number of available...
CVE-2018-16839 3 Haxx, Canonical, Debian 3 Curl, Ubuntu Linux, Debian Linux 2018-12-07 7.5
Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer overrun in the SASL authentication code that may lead to denial of service.
CVE-2018-16840 1 Canonical 1 Ubuntu Linux 2018-12-07 7.5
A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` function, the library code first frees a struct...
CVE-2018-16842 3 Haxx, Canonical, Debian 3 Curl, Ubuntu Linux, Debian Linux 2018-12-07 6.4
Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service.
CVE-2018-10840 2 Canonical, Linux 2 Ubuntu Linux, Linux Kernel 2018-12-07 7.2
Linux kernel is vulnerable to a heap-based buffer overflow in the fs/ext4/xattr.c:ext4_xattr_set_entry() function. An attacker could exploit this by operating on a mounted crafted ext4 image.
CVE-2016-1583 3 Linux, Canonical, Novell 9 Ubuntu Linux, Suse Linux Enterprise Live Patching, Suse Linux Enterprise Software Development Kit and 6 more 2018-12-06 7.2
The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc...
CVE-2013-2037 2 Httplib2 Project, Canonical 2 Ubuntu Linux, Httplib2 2018-12-06 2.6
httplib2 0.7.2, 0.8, and earlier, after an initial connection is made, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows...
CVE-2018-6559 2 Canonical, Linux 2 Ubuntu Linux, Linux Kernel 2018-12-06 2.1
The Linux kernel, as used in Ubuntu 18.04 LTS and Ubuntu 18.10, allows local users to obtain names of files in which they would not normally be able to access via an overlayfs mount inside of a user namespace.
CVE-2012-5688 2 Isc, Canonical 2 Bind, Ubuntu Linux 2018-12-06 7.8
ISC BIND 9.8.x before 9.8.4-P1 and 9.9.x before 9.9.2-P1, when DNS64 is enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.
CVE-2018-12375 2 Mozilla, Canonical 2 Firefox, Ubuntu Linux 2018-12-06 6.8
Memory safety bugs present in Firefox 61. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox < 62.
CVE-2018-12385 4 Mozilla, Canonical, Debian and 1 more 11 Firefox, Firefox Esr, Thunderbird and 8 more 2018-12-06 4.4
A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination with another vulnerability allowing an attacker...