Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

canonical ubuntu linux 12.04 vulnerabilities and exploits

(subscribe to this query)

5
CVSSv2
CVE-2012-0949
The Apport hook in Update Manager as used by Ubuntu 12.04 LTS, 11.10, and 11.04 uploads certain system state archive files when reporting bugs to Launchpad, which allows remote attackers to read repository credentials by viewing a public bug report....
Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 12.04
7.2
CVSSv2
CVE-2015-1341
Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function _python_module_path....
Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 15.10Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 15.04Canonical Apport
4.9
CVSSv2
CVE-2013-1067
Apport 2.12.5 and earlier uses weak permissions for core dump files created by setuid binaries, which allows local users to obtain sensitive information by reading the file....
Canonical Ubuntu Linux 13.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.10Canonical Ubuntu Linux 12.04
1.9
CVSSv2
CVE-2013-2162
Race condition in the post-installation script (mysql-server-5.5.postinst) for MySQL Server 5.5 for Debian GNU/Linux and Ubuntu Linux creates a configuration file with world-readable permissions before restricting the permissions, which allows local users to read the file and...
Canonical Ubuntu Linux 13.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 10.04
7.5
CVSSv2
CVE-2011-4409
The Ubuntu One Client for Ubuntu 10.04 LTS, 11.04, 11.10, and 12.04 LTS does not properly validate SSL certificates, which allows remote attackers to spoof a server and modify or read sensitive information via a man-in-the-middle (MITM) attack....
Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04
6.9
CVSSv2
CVE-2017-6590
An issue was discovered in network-manager-applet (aka network-manager-gnome) in Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS, and 16.10. A local attacker could use this issue at the default Ubuntu login screen to access local files and execute arbitrary commands as the lightdm user....
Canonical Ubuntu Linux 16.10Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04
5
CVSSv2
CVE-2012-0950
The Apport hook (DistUpgradeApport.py) in Update Manager, as used by Ubuntu 12.04 LTS, 11.10, and 11.04, uploads the /var/log/dist-upgrade directory when reporting bugs to Launchpad, which allows remote attackers to read repository credentials by viewing a public bug report. ...
Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04
8.5
CVSSv2
CVE-2015-4004
The OZWPAN driver in the Linux kernel through 4.0.5 relies on an untrusted length field during packet parsing, which allows remote attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read and system crash) via a crafted packet....
Canonical Ubuntu Linux 15.10Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 12.04Linux Linux Kernel
3.6
CVSSv2
CVE-2014-9683
Off-by-one error in the ecryptfs_decode_from_filename function in fs/ecryptfs/crypto.c in the eCryptfs subsystem in the Linux kernel before 3.18.2 allows local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted...
Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.10Canonical Ubuntu Linux 14.04Linux Linux Kernel
6.4
CVSSv2
CVE-2015-1473
The ADDW macro in stdio-common/vfscanf.c in the GNU C Library (aka glibc or libc6) before 2.21 does not properly consider data-type size during a risk-management decision for use of the alloca function, which might allow context-dependent attackers to cause a denial of service...
Canonical Ubuntu Linux 14.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Gnu Glibc
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-36542NULL pointer dereferenceCVE-2021-3490CVE-2021-36934code injectionSSRFCVE-2021-34632CVE-2021-33325CVE-2021-27503
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook