Canonical Ubuntu Linux vulnerabilities
4,102 known vulnerabilities affecting canonical/ubuntu_linux.
Total CVEs
4,102
CISA KEV
44
actively exploited
Public exploits
271
Exploited in wild
54
Severity breakdown
CRITICAL545HIGH1396MEDIUM1945LOW216
Vulnerabilities
Page 16 of 206
CVE-2020-10379HIGHCVSS 7.8v20.042020-06-25
CVE-2020-10379 [HIGH] CWE-120 CVE-2020-10379: In Pillow before 7.1.0, there are two Buffer Overflows in libImaging/TiffDecode.c.
In Pillow before 7.1.0, there are two Buffer Overflows in libImaging/TiffDecode.c.
nvd
CVE-2020-10378MEDIUMCVSS 5.5v16.04v18.04+1 more2020-06-25
CVE-2020-10378 [MEDIUM] CWE-125 CVE-2020-10378: In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX f
In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state->shuffle is instructed to read beyond state->buffer.
nvd
CVE-2020-10177MEDIUMCVSS 5.5v16.04v18.04+1 more2020-06-25
CVE-2020-10177 [MEDIUM] CWE-125 CVE-2020-10177: Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c.
Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c.
nvd
CVE-2020-10994MEDIUMCVSS 5.5v16.04v18.042020-06-25
CVE-2020-10994 [MEDIUM] CWE-125 CVE-2020-10994: In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a cr
In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.
nvd
CVE-2020-5967MEDIUMCVSS 4.7v18.04v19.10+1 more2020-06-25
CVE-2020-5967 [MEDIUM] CWE-362 CVE-2020-5967: NVIDIA Linux GPU Display Driver, all versions, contains a vulnerability in the UVM driver, in which
NVIDIA Linux GPU Display Driver, all versions, contains a vulnerability in the UVM driver, in which a race condition may lead to a denial of service.
nvd
CVE-2020-12865HIGHCVSS 8.0v16.04v18.04+1 more2020-06-24
CVE-2020-12865 [HIGH] CWE-787 CVE-2020-12865: A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the
A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084.
nvd
CVE-2020-12861HIGHCVSS 8.8v16.04v18.04+1 more2020-06-24
CVE-2020-12861 [HIGH] CWE-787 CVE-2020-12861: A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the sam
A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-080.
nvd
CVE-2020-12866MEDIUMCVSS 5.7v16.04v18.04+1 more2020-06-24
CVE-2020-12866 [MEDIUM] CWE-476 CVE-2020-12866: A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the
A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, GHSL-2020-079.
nvd
CVE-2020-12864MEDIUMCVSS 4.3v16.04v18.04+1 more2020-06-24
CVE-2020-12864 [MEDIUM] CWE-125 CVE-2020-12864: An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the s
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-081.
nvd
CVE-2020-15011MEDIUMCVSS 4.3v16.04v18.042020-06-24
CVE-2020-15011 [MEDIUM] CWE-74 CVE-2020-15011: GNU Mailman before 2.1.33 allows arbitrary content injection via the Cgi/private.py private archive
GNU Mailman before 2.1.33 allows arbitrary content injection via the Cgi/private.py private archive login page.
nvd
CVE-2020-12862MEDIUMCVSS 4.3v16.04v18.04+1 more2020-06-24
CVE-2020-12862 [MEDIUM] CWE-125 CVE-2020-12862: An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the s
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082.
nvd
CVE-2020-12863MEDIUMCVSS 4.3v16.04v18.04+1 more2020-06-24
CVE-2020-12863 [MEDIUM] CWE-125 CVE-2020-12863: An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the s
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-083.
nvd
CVE-2020-4031HIGHCVSS 7.5v18.04v20.042020-06-22
CVE-2020-4031 [HIGH] CWE-416 CVE-2020-4031: In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject. All FreeRDP clients
In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2.
nvd
CVE-2020-4032MEDIUMCVSS 4.3v18.04v20.042020-06-22
CVE-2020-4032 [MEDIUM] CWE-681 CVE-2020-4032: In FreeRDP before version 2.1.2, there is an integer casting vulnerability in update_recv_secondary_
In FreeRDP before version 2.1.2, there is an integer casting vulnerability in update_recv_secondary_order. All clients with +glyph-cache /relax-order-checks are affected. This is fixed in version 2.1.2.
nvd
CVE-2020-11095MEDIUMCVSS 5.4v18.04v20.042020-06-22
CVE-2020-11095 [MEDIUM] CWE-125 CVE-2020-11095: In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory locati
In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1.2.
nvd
CVE-2020-11097MEDIUMCVSS 5.4v18.04v20.042020-06-22
CVE-2020-11097 [MEDIUM] CWE-125 CVE-2020-11097: In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory locati
In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1.2.
nvd
CVE-2020-11098MEDIUMCVSS 6.5v18.04v20.042020-06-22
CVE-2020-11098 [MEDIUM] CWE-125 CVE-2020-11098: In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put. This affects all
In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put. This affects all FreeRDP clients with `+glyph-cache` option enabled This is fixed in version 2.1.2.
nvd
CVE-2020-4030MEDIUMCVSS 6.5v18.04v20.042020-06-22
CVE-2020-4030 [MEDIUM] CWE-125 CVE-2020-4030: In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse. Logging might bypass s
In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse. Logging might bypass string length checks due to an integer overflow. This is fixed in version 2.1.2.
nvd
CVE-2020-11096MEDIUMCVSS 6.5v18.04v20.042020-06-22
CVE-2020-11096 [MEDIUM] CWE-125 CVE-2020-11096: In FreeRDP before version 2.1.2, there is a global OOB read in update_read_cache_bitmap_v3_order. As
In FreeRDP before version 2.1.2, there is a global OOB read in update_read_cache_bitmap_v3_order. As a workaround, one can disable bitmap cache with -bitmap-cache (default). This is fixed in version 2.1.2.
nvd
CVE-2020-11099MEDIUMCVSS 6.5v18.04v20.042020-06-22
CVE-2020-11099 [MEDIUM] CWE-125 CVE-2020-11099: In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_licen
In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet. A manipulated license packet can lead to out of bound reads to an internal buffer. This is fixed in version 2.1.2.
nvd