Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ubuntu_linux
(Canonical)| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2018-07-16 | CVE-2018-0360 | ClamAV before 0.100.1 has an HWP integer overflow with a resultant infinite loop via a crafted Hangul Word Processor file. This is in parsehwp3_paragraph() in libclamav/hwp.c. | Ubuntu_linux, Clamav, Debian_linux | 5.5 | ||
| 2018-01-02 | CVE-2017-1000422 | Gnome gdk-pixbuf 2.36.8 and older is vulnerable to several integer overflow in the gif_get_lzw function resulting in memory corruption and potential code execution | Ubuntu_linux, Debian_linux, Gdk\-Pixbuf | 8.8 | ||
| 2016-01-21 | CVE-2016-0611 | Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Optimizer. | Ubuntu_linux, Leap, Opensuse, Mysql, Enterprise_linux | N/A | ||
| 2019-02-18 | CVE-2019-8907 | do_core_note in readelf.c in libmagic.a in file 5.35 allows remote attackers to cause a denial of service (stack corruption and application crash) or possibly have unspecified other impact. | Ubuntu_linux, Debian_linux, File, Leap | 8.8 | ||
| 2019-02-18 | CVE-2019-8904 | do_bid_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printf and file_vprintf. | Ubuntu_linux, File | 8.8 | ||
| 2019-03-05 | CVE-2019-6215 | A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution. | Icloud, Iphone_os, Itunes, Safari, Tvos, Watchos, Ubuntu_linux | 8.8 | ||
| 2019-03-05 | CVE-2019-6212 | Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution. | Icloud, Iphone_os, Itunes, Safari, Tvos, Ubuntu_linux | 8.8 | ||
| 2019-01-09 | CVE-2019-5882 | Irssi 1.1.x before 1.1.2 has a use after free when hidden lines are expired from the scroll buffer. | Ubuntu_linux, Irssi | 9.8 | ||
| 2019-02-06 | CVE-2019-3825 | A vulnerability was discovered in gdm before 3.31.4. When timed login is enabled in configuration, an attacker could bypass the lock screen by selecting the timed login user and waiting for the timer to expire, at which time they would gain access to the logged-in user's session. | Ubuntu_linux, Gnome_display_manager, Enterprise_linux | 6.4 | ||
| 2019-03-06 | CVE-2019-3824 | A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. An authenticated user, having read permissions on the LDAP server, could use this flaw to cause denial of service. | Ubuntu_linux, Debian_linux, Samba | 6.5 |