Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ubuntu_linux
(Canonical)| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2019-01-01 | CVE-2018-20650 | A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach. | Ubuntu_linux, Debian_linux, Poppler, Enterprise_linux, Enterprise_linux_desktop, Enterprise_linux_eus, Enterprise_linux_server, Enterprise_linux_server_aus, Enterprise_linux_server_tus, Enterprise_linux_workstation | 6.5 | ||
| 2019-04-01 | CVE-2018-3979 | A remote denial-of-service vulnerability exists in the way the Nouveau Display Driver (the default Ubuntu Nvidia display driver) handles GPU shader execution. A specially crafted pixel shader can cause remote denial-of-service issues. An attacker can provide a specially crafted website to trigger this vulnerability. This vulnerability can be triggered remotely after the user visits a malformed website. No further user interaction is required. Vulnerable versions include Ubuntu 18.04 LTS... | Ubuntu_linux, Geforce_gtx_745_firmware, Geforce_gtx_750_firmware, Geforce_gtx_750_ti_firmware, Geforce_gtx_840m_firmware, Geforce_gtx_845m_firmware, Geforce_gtx_850m_firmware, Geforce_gtx_860m_firmware, Geforce_gtx_950m_firmware, Geforce_gtx_960m_firmware, Grid_m30_firmware, Grid_m40_firmware, Quadro_k1200_firmware, Quadro_k2200_firmware, Quadro_k620_firmware, Quadro_m1000m_firmware, Quadro_m1200m_firmware | 6.5 | ||
| 2018-01-24 | CVE-2017-18075 | crypto/pcrypt.c in the Linux kernel before 4.14.13 mishandles freeing instances, allowing a local user able to access the AF_ALG-based AEAD interface (CONFIG_CRYPTO_USER_API_AEAD) and pcrypt (CONFIG_CRYPTO_PCRYPT) to cause a denial of service (kfree of an incorrect pointer) or possibly have unspecified other impact by executing a crafted sequence of system calls. | Ubuntu_linux, Linux_kernel | 7.8 | ||
| 2018-01-29 | CVE-2017-18079 | drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact because the port->exists value can change after it is validated. | Ubuntu_linux, Linux_kernel | 7.8 | ||
| 2019-09-08 | CVE-2019-16091 | Symonics libmysofa 0.7 has an out-of-bounds read in directblockRead in hdf/fractalhead.c. | Ubuntu_linux, Libmysofa | 7.5 | ||
| 2019-09-08 | CVE-2019-16092 | Symonics libmysofa 0.7 has a NULL pointer dereference in getHrtf in hrtf/reader.c. | Ubuntu_linux, Libmysofa | 9.8 | ||
| 2019-09-08 | CVE-2019-16093 | Symonics libmysofa 0.7 has an invalid write in readOHDRHeaderMessageDataLayout in hdf/dataobject.c. | Ubuntu_linux, Libmysofa | 9.8 | ||
| 2019-09-08 | CVE-2019-16094 | Symonics libmysofa 0.7 has an invalid read in readOHDRHeaderMessageDataLayout in hdf/dataobject.c. | Ubuntu_linux, Libmysofa | 7.5 | ||
| 2019-09-08 | CVE-2019-16095 | Symonics libmysofa 0.7 has an invalid read in getDimension in hrtf/reader.c. | Ubuntu_linux, Libmysofa | 7.5 | ||
| 2019-10-16 | CVE-2019-2922 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 5.6.45 and prior and 5.7.27 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts).... | Ubuntu_linux, Active_iq_unified_manager, Oncommand_insight, Oncommand_workflow_automation, Snapcenter, Mysql | 5.3 |