Search CVE reports

49091 – 49100 of 65781 results

Detailed view

Sort by:

CVE-2015-7178

Medium priority

Not affected

The ProgramBinary::linkAttributes function in libGLES in ANGLE, as used in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 on Windows, mishandles shader access, which allows remote attackers to execute arbitrary code...

2 affected packages

firefox, thunderbird

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
thunderbird	—	—	—	—

CVE-2015-4505

Medium priority

Not affected

updater.exe in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 on Windows allows local users to write to arbitrary files by conducting a junction attack and waiting for an update operation by the Mozilla Maintenance Service.

1 affected package

firefox

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—

CVE-2015-4503

Medium priority

Not affected

The TCP Socket API implementation in Mozilla Firefox before 41.0 mishandles array boundaries that were established with a navigator.mozTCPSocket.open method call and send method calls, which allows remote TCP servers to obtain...

1 affected package

firefox

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—

CVE-2015-4476

Medium priority

Not affected

Mozilla Firefox before 41.0 on Android allows user-assisted remote attackers to spoof address-bar attributes by leveraging lack of navigation after a paste of a URL with a nonstandard scheme, as demonstrated by spoofing an SSL attribute.

1 affected package

firefox

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—

CVE-2015-5257

Low priority

Some fixes available 8 of 31

drivers/usb/serial/whiteheat.c in the Linux kernel before 4.2.4 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via a crafted USB...

99 affected packages

linux-armadaxp, linux-aws, linux-flo, linux, linux-gke...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux-armadaxp	—	—	—	—
linux-aws	Not affected	Not affected	Not affected	Not affected
linux-flo	—	—	—	—
linux	Not affected	Not affected	Not affected	Not affected
linux-gke	Not affected	Not affected	Ignored	Not in release
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	Not in release	Not in release	Not in release	Ignored
linux-hwe-edge	Not in release	Not in release	Not in release	Ignored
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	Not in release	Not in release	Not in release	Not in release
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	Not in release	Not in release	Ignored	Ignored
linux-snapdragon	Not in release	Not in release	Not in release	Ignored
linux-ti-omap4	—	—	—	—
linux-hwe-5.4	Not in release	Not in release	Not in release	Not affected
linux-hwe-5.15	Not in release	Not in release	Not affected	Not in release
linux-hwe-6.8	Not in release	Not affected	Not in release	Not in release
linux-hwe-6.11	Ignored	Not in release	Not in release	Not in release
linux-hwe-6.14	Not affected	Not in release	Not in release	Not in release
linux-kvm	Not in release	Not affected	Not affected	Not affected
linux-aws-5.4	Not in release	Not in release	Not in release	Not affected
linux-aws-5.15	Not in release	Not in release	Not affected	Not in release
linux-aws-6.8	Not in release	Not affected	Not in release	Not in release
linux-aws-6.14	Not affected	Not in release	Not in release	Not in release
linux-aws-hwe	Not in release	Not in release	Not in release	Not in release
linux-azure	Not affected	Not affected	Not affected	Ignored
linux-azure-4.15	Not in release	Not in release	Not in release	Not affected
linux-azure-5.4	Not in release	Not in release	Not in release	Not affected
linux-azure-5.15	Not in release	Not in release	Not affected	Not in release
linux-azure-6.8	Not in release	Not affected	Not in release	Not in release
linux-azure-6.11	Ignored	Not in release	Not in release	Not in release
linux-azure-fde	Not affected	Not affected	Ignored	Not in release
linux-azure-fde-5.15	Not in release	Not in release	Ignored	Not in release
linux-azure-nvidia	Not affected	Not in release	Not in release	Not in release
linux-bluefield	Not in release	Not in release	Not affected	Not in release
linux-fips	Not in release	Not affected	Not affected	Not affected
linux-aws-fips	Not in release	Not affected	Not affected	Not affected
linux-azure-fips	Not in release	Not affected	Not affected	Not affected
linux-gcp-fips	Not in release	Not affected	Not affected	Not affected
linux-gcp	Not affected	Not affected	Not affected	Ignored
linux-gcp-4.15	Not in release	Not in release	Not in release	Not affected
linux-gcp-5.4	Not in release	Not in release	Not in release	Not affected
linux-gcp-5.15	Not in release	Not in release	Not affected	Not in release
linux-gcp-6.8	Not in release	Not affected	Not in release	Not in release
linux-gcp-6.11	Ignored	Not in release	Not in release	Not in release
linux-gcp-6.14	Not affected	Not in release	Not in release	Not in release
linux-gkeop	Not affected	Not affected	Ignored	Not in release
linux-ibm	Not affected	Not affected	Not affected	Not in release
linux-ibm-5.4	Not in release	Not in release	Not in release	Not affected
linux-ibm-5.15	Not in release	Not in release	Not affected	Not in release
linux-ibm-6.8	Not in release	Not affected	Not in release	Not in release
linux-intel	Not affected	Not in release	Not in release	Not in release
linux-intel-iotg	Not in release	Not affected	Not in release	Not in release
linux-intel-iotg-5.15	Not in release	Not in release	Not affected	Not in release
linux-iot	Not in release	Not in release	Not affected	Not in release
linux-intel-iot-realtime	Not in release	Not affected	Not in release	Not in release
linux-lowlatency	Not affected	Not affected	Not in release	Not in release
linux-lowlatency-hwe-5.15	Not in release	Not in release	Not affected	Not in release
linux-lowlatency-hwe-6.8	Not in release	Not affected	Not in release	Not in release
linux-lowlatency-hwe-6.11	Ignored	Not in release	Not in release	Not in release
linux-nvidia	Not affected	Not affected	Not in release	Not in release
linux-nvidia-6.8	Not in release	Not affected	Not in release	Not in release
linux-nvidia-lowlatency	Not affected	Not in release	Not in release	Not in release
linux-nvidia-tegra	Not affected	Not affected	Not in release	Not in release
linux-nvidia-tegra-5.15	Not in release	Not in release	Not affected	Not in release
linux-nvidia-tegra-igx	Not in release	Not affected	Not in release	Not in release
linux-oracle	Not affected	Not affected	Not affected	Not affected
linux-oracle-5.4	Not in release	Not in release	Not in release	Not affected
linux-oracle-5.15	Not in release	Not in release	Not affected	Not in release
linux-oracle-6.8	Not in release	Not affected	Not in release	Not in release
linux-oracle-6.14	Not affected	Not in release	Not in release	Not in release
linux-oem-6.8	Not affected	Not in release	Not in release	Not in release
linux-oem-6.11	Not affected	Not in release	Not in release	Not in release
linux-oem-6.14	Not affected	Not in release	Not in release	Not in release
linux-raspi	Not affected	Not affected	Not affected	Not in release
linux-raspi-5.4	Not in release	Not in release	Not in release	Not affected
linux-raspi-realtime	Not affected	Not in release	Not in release	Not in release
linux-realtime	Not affected	Not affected	Not in release	Not in release
linux-riscv	Ignored	Ignored	Ignored	Not in release
linux-riscv-5.15	Not in release	Not in release	Not affected	Not in release
linux-riscv-6.8	Not in release	Not affected	Not in release	Not in release
linux-riscv-6.14	Not affected	Not in release	Not in release	Not in release
linux-xilinx-zynqmp	Not in release	Not affected	Not affected	Not in release
linux-nvidia-6.11	Not affected	Not in release	Not in release	Not in release
linux-realtime-6.8	Not in release	Not affected	Not in release	Not in release
linux-realtime-6.14	Not affected	Not in release	Not in release	Not in release

CVE-2015-1338

Medium priority

Fixed

kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privileges via a (1) symlink or (2) hard link attack on /var/crash/vmcore.log.

1 affected package

apport

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
apport	—	—	—	—

CVE-2015-1337

Medium priority

Fixed

Simple Streams (simplestreams) does not properly verify the GPG signatures of disk image files, which allows remote mirror servers to spoof disk images and have unspecified other impact via a 403 (aka Forbidden) response.

1 affected package

simplestreams

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
simplestreams	—	—	—	—

CVE-2015-7312

Medium priority

Some fixes available 5 of 27

Multiple race conditions in the Advanced Union Filesystem (aufs) aufs3-mmap.patch and aufs4-mmap.patch patches for the Linux kernel 3.x and 4.x allow local users to cause a denial of service (use-after-free and BUG) or possibly...

39 affected packages

linux, linux-2.6, linux-armadaxp, linux-aws, linux-aws-hwe...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	Not affected
linux-2.6	—	—	—	Not in release
linux-armadaxp	—	—	—	Not in release
linux-aws	—	—	—	Not affected
linux-aws-hwe	—	—	—	Not in release
linux-azure	—	—	—	Not affected
linux-azure-edge	—	—	—	Not affected
linux-ec2	—	—	—	Not in release
linux-euclid	—	—	—	Not in release
linux-flo	—	—	—	Not in release
linux-fsl-imx51	—	—	—	Not in release
linux-gcp	—	—	—	Not affected
linux-gcp-edge	—	—	—	Not affected
linux-gke	—	—	—	Not in release
linux-goldfish	—	—	—	Not in release
linux-grouper	—	—	—	Not in release
linux-hwe	—	—	—	Not affected
linux-hwe-edge	—	—	—	Not affected
linux-kvm	—	—	—	Not affected
linux-linaro-omap	—	—	—	Not in release
linux-linaro-shared	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	Not in release
linux-lts-quantal	—	—	—	Not in release
linux-lts-raring	—	—	—	Not in release
linux-lts-saucy	—	—	—	Not in release
linux-lts-trusty	—	—	—	Not in release
linux-lts-utopic	—	—	—	Not in release
linux-lts-vivid	—	—	—	Not in release
linux-lts-wily	—	—	—	Not in release
linux-lts-xenial	—	—	—	Not in release
linux-maguro	—	—	—	Not in release
linux-mako	—	—	—	Not in release
linux-manta	—	—	—	Not in release
linux-mvl-dove	—	—	—	Not in release
linux-oem	—	—	—	Not affected
linux-qcm-msm	—	—	—	Not in release
linux-raspi2	—	—	—	Not affected
linux-snapdragon	—	—	—	Not affected
linux-ti-omap4	—	—	—	Not in release

CVE-2015-4511

Medium priority

Fixed

Heap-based buffer overflow in the nestegg_track_codec_data function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via a crafted header in a WebM video.

2 affected packages

firefox, thunderbird

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—
thunderbird	—	—	—	—

CVE-2015-5251

Low priority

Some fixes available 1 of 2

OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allow remote authenticated users to change the status of their images and bypass access restrictions via the HTTP x-image-meta-status...

1 affected package

glance

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
glance	—	—	—	—

Export to JSON

Results by page: