Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

canonical ubuntu linux 8.04 vulnerabilities and exploits

(subscribe to this query)

2.1
CVSSv2
CVE-2010-2946
fs/jfs/xattr.c in the Linux kernel before 2.6.35.2 does not properly handle a certain legacy format for storage of extended attributes, which might allow local users by bypass intended xattr namespace restrictions via an "os2." substring at the beginning of a name....
Linux Linux KernelCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 9.04Canonical Ubuntu Linux 9.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 10.10
9.3
CVSSv2
CVE-2008-2712
Vim 7.1.314, 6.4, and other versions allows user-assisted remote attackers to execute arbitrary commands via Vim scripts that do not properly sanitize inputs before invoking the execute or system functions, as demonstrated using (1) filetype.vim, (3) xpm.vim, (4) gzip_vim, and...
Vim VimCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10
6.8
CVSSv2
CVE-2007-4829
Directory traversal vulnerability in the Archive::Tar Perl module 1.36 and earlier allows user-assisted remote attackers to overwrite arbitrary files via a TAR archive that contains a file whose name is an absolute path or has ".." sequences....
Archive\\ \\ Tar ProjectCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10
4.3
CVSSv2
CVE-2008-2009
Xiph.org libvorbis before 1.0 does not properly check for underpopulated Huffman trees, which allows remote attackers to cause a denial of service (crash) via a crafted OGG file that triggers memory corruption during execution of the _make_decode_tree function....
Xiph.org Libvorbis 1.0Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10Canonical Ubuntu Linux 9.04Canonical Ubuntu Linux 9.10
6.8
CVSSv2
CVE-2010-2067
Stack-based buffer overflow in the TIFFFetchSubjectDistance function in tif_dirread.c in LibTIFF before 3.9.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long EXIF SubjectDistance field in a TIFF file....
Libtiff LibtiffCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 9.04Canonical Ubuntu Linux 9.10Canonical Ubuntu Linux 10.04
5
CVSSv2
CVE-2008-5502
The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service (crash) via vectors that trigger memory corruption, related to the GetXMLEntity and FastAppendChar...
Mozilla FirefoxMozilla SeamonkeyCanonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10
10
CVSSv2
CVE-2008-2662
Multiple integer overflows in the rb_str_buf_append function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2 allow context-dependent attackers to execute arbitrary code or cause a denial of service via...
Ruby-lang RubyDebian Debian Linux 4.0Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.04Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04
7.2
CVSSv2
CVE-2009-3725
The connector layer in the Linux kernel before 2.6.31.5 does not require the CAP_SYS_ADMIN capability for certain interaction with the (1) uvesafb, (2) pohmelfs, (3) dst, or (4) dm subsystem, which allows local users to bypass intended access restrictions and gain privileges via...
Linux Linux KernelCanonical Ubuntu Linux 6.06Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10Canonical Ubuntu Linux 9.04Canonical Ubuntu Linux 9.10
7.8
CVSSv2
CVE-2008-2136
Memory leak in the ipip6_rcv function in net/ipv6/sit.c in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3 allows remote attackers to cause a denial of service (memory consumption) via network traffic to a Simple Internet Transition (SIT) tunnel interface, related...
Linux Linux KernelDebian Debian Linux 4.0Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.04Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04
7.8
CVSSv2
CVE-2008-4934
The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kernel before 2.6.28-rc1 does not check a certain return value from the read_mapping_page function before calling kmap, which allows attackers to cause a denial of service (system crash) via a crafted...
Linux Linux KernelDebian Debian Linux 4.0Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2021-20661CVE-2020-4953CVE-2018-19518CVE-2021-27645CVE-2021-3156CVE-2021-26684deserializationwireless