Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
canonical ubuntu linux 12.10 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2014-1958
Buffer overflow in the DecodePSDPixels function in coders/psd.c in ImageMagick prior to 6.8.8-5 might allow remote malicious users to execute arbitrary code via a crafted PSD image, involving the L%06ld string, a different vulnerability than CVE-2014-2030.
Imagemagick Imagemagick
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.10
Opensuse Opensuse 11.4
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
8.8
CVSSv3
CVE-2014-2030
Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick, possibly 6.8.8-5, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PSD image, involving the L%06ld string, a different vul...
Imagemagick Imagemagick 6.8.8-5
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.10
Opensuse Opensuse 11.4
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
1 EDB exploit
7.8
CVSSv3
CVE-2016-9950
An issue exists in Apport prior to 2.20.4. There is a path traversal issue in the Apport crash file "Package" and "SourcePackage" fields. These fields are used to build a path to the package specific hook files in the /usr/share/apport/package-hooks/ directory...
Apport Project Apport
Canonical Ubuntu Linux
1 EDB exploit
1 Github repository
1 Article
7.8
CVSSv3
CVE-2016-9949
An issue exists in Apport prior to 2.20.4. In apport/ui.py, Apport reads the CrashDB field and it then evaluates the field as Python code if it begins with a "{". This allows remote malicious users to execute arbitrary Python code.
Apport Project Apport
Canonical Ubuntu Linux
1 EDB exploit
1 Github repository
1 Article
NA
CVE-2014-1418
Django 1.4 prior to 1.4.13, 1.5 prior to 1.5.8, 1.6 prior to 1.6.5, and 1.7 prior to 1.7b4 does not properly include the (1) Vary: Cookie or (2) Cache-Control header in responses, which allows remote malicious users to obtain sensitive information or poison the cache via a reques...
Djangoproject Django 1.7
Djangoproject Django 1.4.12
Djangoproject Django 1.4.2
Djangoproject Django 1.4.4
Djangoproject Django 1.4
Djangoproject Django 1.4.1
Djangoproject Django 1.4.7
Djangoproject Django 1.4.8
Djangoproject Django 1.4.5
Djangoproject Django 1.4.6
Djangoproject Django 1.4.10
Djangoproject Django 1.4.11
Djangoproject Django 1.4.9
Djangoproject Django 1.5.7
Djangoproject Django 1.5.6
Djangoproject Django 1.5.3
Djangoproject Django 1.5.4
Djangoproject Django 1.5
Djangoproject Django 1.5.5
Djangoproject Django 1.5.1
Djangoproject Django 1.5.2
Canonical Ubuntu Linux 12.04
NA
CVE-2014-3730
The django.util.http.is_safe_url function in Django 1.4 prior to 1.4.13, 1.5 prior to 1.5.8, 1.6 prior to 1.6.5, and 1.7 prior to 1.7b4 does not properly validate URLs, which allows remote malicious users to conduct open redirect attacks via a malformed URL, as demonstrated by &q...
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
Djangoproject Django 1.4.2
Djangoproject Django 1.4.4
Djangoproject Django 1.4.1
Djangoproject Django 1.4.10
Djangoproject Django 1.4.7
Djangoproject Django 1.4.8
Djangoproject Django 1.4.11
Djangoproject Django 1.4.12
Djangoproject Django 1.4.9
Djangoproject Django 1.4
Djangoproject Django 1.4.5
Djangoproject Django 1.4.6
Djangoproject Django 1.7
Opensuse Opensuse 13.1
Opensuse Opensuse 12.3
Djangoproject Django 1.6
Djangoproject Django 1.6.2
1 Github repository
NA
CVE-2013-4544
hw/net/vmxnet3.c in QEMU 2.0.0-rc0, 1.7.1, and previous versions allows local guest users to cause a denial of service or possibly execute arbitrary code via vectors related to (1) RX or (2) TX queue numbers or (3) interrupt indices. NOTE: some of these details are obtained from ...
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 10.04
Qemu Qemu 1.0
Qemu Qemu
Qemu Qemu 1.1
Qemu Qemu 1.6.0
Qemu Qemu 1.5.0
Qemu Qemu 1.5.3
Qemu Qemu 1.5.1
Qemu Qemu 2.0.0
Qemu Qemu 1.5.2
Qemu Qemu 1.0.1
Qemu Qemu 1.4.1
Qemu Qemu 1.4.2
Qemu Qemu 1.6.2
Qemu Qemu 1.6.1
NA
CVE-2014-0471
Directory traversal vulnerability in the unpacking functionality in dpkg prior to 1.15.9, 1.16.x prior to 1.16.13, and 1.17.x prior to 1.17.8 allows remote malicious users to write arbitrary files via a crafted source package, related to "C-style filename quoting."
Canonical Ubuntu Linux 10.04
Debian Dpkg 1.10.11
Debian Dpkg 1.10.13
Debian Dpkg 1.10.19
Debian Dpkg 1.10.20
Debian Dpkg 1.10.25
Debian Dpkg 1.10.27
Debian Dpkg 1.10.8
Debian Dpkg 1.13.0
Debian Dpkg 1.13.14
Debian Dpkg 1.13.16
Debian Dpkg 1.13.20
Debian Dpkg 1.13.22
Debian Dpkg 1.13.6
Debian Dpkg 1.13.8
Debian Dpkg 1.14.13
Debian Dpkg 1.14.15
Debian Dpkg 1.14.16.4
Debian Dpkg 1.14.16.6
Debian Dpkg 1.14.22
Debian Dpkg 1.14.24
Debian Dpkg 1.14.30
NA
CVE-2014-1522
The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the Web Audio subsystem in Mozilla Firefox prior to 29.0 and SeaMonkey prior to 2.26 allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds read, memory corruption, and ...
Fedoraproject Fedora 19
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Mozilla Firefox
Mozilla Seamonkey
NA
CVE-2014-1525
The mozilla::dom::TextTrack::AddCue function in Mozilla Firefox prior to 29.0 and SeaMonkey prior to 2.26 does not properly perform garbage collection for Text Track Manager variables, which allows remote malicious users to execute arbitrary code or cause a denial of service (use...
Mozilla Firefox
Mozilla Seamonkey
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Fedoraproject Fedora 19
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »