Canonical Ubuntu Linux vulnerabilities
4,102 known vulnerabilities affecting canonical/ubuntu_linux.
Total CVEs
4,102
CISA KEV
44
actively exploited
Public exploits
271
Exploited in wild
54
Severity breakdown
CRITICAL545HIGH1396MEDIUM1945LOW216
Vulnerabilities
Page 112 of 206
CVE-2018-5205HIGHCVSS 7.5v14.04v16.04+2 more2018-01-06
CVE-2018-5205 [HIGH] CWE-134 CVE-2018-5205: When using incomplete escape codes, Irssi before 1.0.6 may access data beyond the end of the string.
When using incomplete escape codes, Irssi before 1.0.6 may access data beyond the end of the string.
nvd
CVE-2018-5248HIGHCVSS 8.8v14.04v16.04+2 more2018-01-05
CVE-2018-5248 [HIGH] CWE-125 CVE-2018-5248: In ImageMagick 7.0.7-17 Q16, there is a heap-based buffer over-read in coders/sixel.c in the ReadSIX
In ImageMagick 7.0.7-17 Q16, there is a heap-based buffer over-read in coders/sixel.c in the ReadSIXELImage function, related to the sixel_decode function.
nvd
CVE-2017-18022MEDIUMCVSS 6.5v14.04v16.04+2 more2018-01-05
CVE-2017-18022 [MEDIUM] CWE-772 CVE-2017-18022: In ImageMagick 7.0.7-12 Q16, there are memory leaks in MontageImageCommand in MagickWand/montage.c.
In ImageMagick 7.0.7-12 Q16, there are memory leaks in MontageImageCommand in MagickWand/montage.c.
nvd
CVE-2018-5246MEDIUMCVSS 6.5v14.04v16.04+2 more2018-01-05
CVE-2018-5246 [MEDIUM] CWE-772 CVE-2018-5246: In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadPATTERNImage in coders/pattern.c.
In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadPATTERNImage in coders/pattern.c.
nvd
CVE-2018-5247MEDIUMCVSS 6.5v14.04v16.04+2 more2018-01-05
CVE-2018-5247 [MEDIUM] CWE-772 CVE-2018-5247: In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadRLAImage in coders/rla.c.
In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadRLAImage in coders/rla.c.
nvd
CVE-2017-5715MEDIUMCVSS 5.6PoCv12.04v14.04+4 more2018-01-04
CVE-2017-5715 [MEDIUM] CWE-203 CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allo
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
nvd
CVE-2017-5753MEDIUMCVSS 5.6PoCv12.04v14.04+3 more2018-01-04
CVE-2017-5753 [MEDIUM] CWE-203 CVE-2017-5753: Systems with microprocessors utilizing speculative execution and branch prediction may allow unautho
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
nvd
CVE-2017-18017CRITICALCVSS 9.8v12.04v14.042018-01-03
CVE-2017-18017 [CRITICAL] CWE-416 CVE-2017-18017: The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and
The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action.
nvd
CVE-2017-1000476MEDIUMCVSS 6.5v14.04v16.04+2 more2018-01-03
CVE-2017-1000476 [MEDIUM] CWE-400 CVE-2017-1000476: ImageMagick 7.0.7-12 Q16, a CPU exhaustion vulnerability was found in the function ReadDDSInfo in co
ImageMagick 7.0.7-12 Q16, a CPU exhaustion vulnerability was found in the function ReadDDSInfo in coders/dds.c, which allows attackers to cause a denial of service.
nvd
CVE-2017-1000422HIGHCVSS 8.8v14.04v16.04+1 more2018-01-02
CVE-2017-1000422 [HIGH] CWE-190 CVE-2017-1000422: Gnome gdk-pixbuf 2.36.8 and older is vulnerable to several integer overflow in the gif_get_lzw funct
Gnome gdk-pixbuf 2.36.8 and older is vulnerable to several integer overflow in the gif_get_lzw function resulting in memory corruption and potential code execution
nvd
CVE-2017-1000445MEDIUMCVSS 6.5v14.04v16.04+2 more2018-01-02
CVE-2017-1000445 [MEDIUM] CWE-476 CVE-2017-1000445: ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the MagickCore c
ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the MagickCore component and might lead to denial of service
nvd
CVE-2017-18008MEDIUMCVSS 6.5v14.04v16.04+2 more2018-01-01
CVE-2017-18008 [MEDIUM] CWE-772 CVE-2017-18008: In ImageMagick 7.0.7-17 Q16, there is a Memory Leak in ReadPWPImage in coders/pwp.c.
In ImageMagick 7.0.7-17 Q16, there is a Memory Leak in ReadPWPImage in coders/pwp.c.
nvd
CVE-2017-7160HIGHCVSS 8.8v16.04v17.102017-12-27
CVE-2017-7160 [HIGH] CWE-119 CVE-2017-7160: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2
An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service
nvd
CVE-2017-16995HIGHCVSS 7.8PoCv14.04v16.042017-12-27
CVE-2017-16995 [HIGH] CWE-119 CVE-2017-16995: The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.4 allows local user
The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.4 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension.
nvd
CVE-2017-17879HIGHCVSS 8.8v14.04v16.04+2 more2017-12-27
CVE-2017-17879 [HIGH] CWE-125 CVE-2017-17879: In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGI
In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length calculation and caused by an off-by-one error.
nvd
CVE-2017-17881MEDIUMCVSS 6.5v14.04v16.04+2 more2017-12-27
CVE-2017-17881 [MEDIUM] CWE-772 CVE-2017-17881: In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadMATImage in c
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service via a crafted MAT image file.
nvd
CVE-2017-17886MEDIUMCVSS 6.5v14.04v16.04+2 more2017-12-27
CVE-2017-17886 [MEDIUM] CWE-772 CVE-2017-17886: In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPSDChannelZip
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPSDChannelZip in coders/psd.c, which allows attackers to cause a denial of service via a crafted psd image file.
nvd
CVE-2017-17882MEDIUMCVSS 6.5v14.04v16.04+2 more2017-12-27
CVE-2017-17882 [MEDIUM] CWE-772 CVE-2017-17882: In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in c
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted XPM image file.
nvd
CVE-2017-17884MEDIUMCVSS 6.5v14.04v16.04+2 more2017-12-27
CVE-2017-17884 [MEDIUM] CWE-772 CVE-2017-17884: In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function WriteOnePNGImage
In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function WriteOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted PNG image file.
nvd
CVE-2017-17887MEDIUMCVSS 6.5v14.04v16.04+2 more2017-12-27
CVE-2017-17887 [MEDIUM] CWE-772 CVE-2017-17887: In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function GetImagePixelCach
In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function GetImagePixelCache in magick/cache.c, which allows attackers to cause a denial of service via a crafted MNG image file that is processed by ReadOneMNGImage.
nvd