Ubuntu_linux - Vulncode-DB

Date	Id	Summary	Products	Score
2020-02-17	CVE-2015-0258	Multiple incomplete blacklist vulnerabilities in the avatar upload functionality in manageuser.php in Collabtive before 2.1 allow remote authenticated users to execute arbitrary code by uploading a file with a (1) .php3, (2) .php4, (3) .php5, or (4) .phtml extension.	Ubuntu_linux, Debian_linux, Collabtive	8.8
2016-02-15	CVE-2016-0746	Use-after-free vulnerability in the resolver in nginx 0.6.18 through 1.8.0 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (worker process crash) or possibly have unspecified other impact via a crafted DNS response related to CNAME response processing.	Xcode, Ubuntu_linux, Debian_linux, Nginx, Leap	9.8
2016-02-15	CVE-2016-0747	The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution, which allows remote attackers to cause a denial of service (worker process resource consumption) via vectors related to arbitrary name resolution.	Xcode, Ubuntu_linux, Debian_linux, Nginx, Leap	5.3
2015-11-06	CVE-2015-6855	hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WIN_READ_NATIVE_MAX command to an empty drive, which triggers a divide-by-zero error and instance crash.	Eos, Ubuntu_linux, Debian_linux, Fedora, Qemu, Linux_enterprise_desktop, Linux_enterprise_server	7.5
2016-02-15	CVE-2016-0742	The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (invalid pointer dereference and worker process crash) via a crafted UDP DNS response.	Xcode, Ubuntu_linux, Debian_linux, Nginx, Leap, Software_collections	7.5
2016-02-08	CVE-2015-7513	arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service (divide-by-zero error and host OS crash) via a zero value, related to the kvm_vm_ioctl_set_pit and kvm_vm_ioctl_set_pit2 functions.	Ubuntu_linux, Debian_linux, Fedora, Linux_kernel	6.5
2019-02-24	CVE-2019-9071	An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a stack consumption issue in d_count_templates_scopes in cp-demangle.c after many recursive calls.	Ubuntu_linux, Binutils, Hci_management_node, Solidfire	5.5
2019-02-24	CVE-2019-9073	An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in _bfd_elf_slurp_version_tables in elf.c.	Ubuntu_linux, Binutils, Hci_management_node, Solidfire	5.5
2019-02-24	CVE-2019-9074	An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an out-of-bounds read leading to a SEGV in bfd_getl32 in libbfd.c, when called from pex64_get_runtime_function in pei-x86_64.c.	Ubuntu_linux, Binutils, Hci_management_node, Solidfire	5.5
2019-02-24	CVE-2019-9075	An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is a heap-based buffer overflow in _bfd_archive_64_bit_slurp_armap in archive64.c.	Ubuntu_linux, Big\-Ip_access_policy_manager, Big\-Ip_advanced_firewall_manager, Big\-Ip_analytics, Big\-Ip_application_acceleration_manager, Big\-Ip_application_security_manager, Big\-Ip_domain_name_system, Big\-Ip_edge_gateway, Big\-Ip_fraud_protection_service, Big\-Ip_global_traffic_manager, Big\-Ip_link_controller, Big\-Ip_local_traffic_manager, Big\-Ip_policy_enforcement_manager, Big\-Ip_policy_webaccelerator, Big\-Ip_webaccelerator, Binutils, Hci_management_node, Solidfire	7.8

Product: Ubuntu_linux (Canonical)

Product:
Ubuntu_linux
(Canonical)