Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ubuntu vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2009-0365
nm-applet.conf in GNOME NetworkManager prior to 0.7.0.99 contains an incorrect deny setting, which allows local users to discover (1) network connection passwords and (2) pre-shared keys via calls to the GetSecrets method in the dbus request handler.
Ubuntu Ubuntu Linux 6.06
Ubuntu Ubuntu Linux 8.10
Ubuntu Ubuntu Linux 7.10
Ubuntu Ubuntu Linux 8.04
1.9
CVSSv2
CVE-2009-1295
Apport prior to 0.108.4 on Ubuntu 8.04 LTS, prior to 0.119.2 on Ubuntu 8.10, and prior to 1.0-0ubuntu5.2 on Ubuntu 9.04 does not properly remove files from the application's crash-report directory, which allows local users to delete arbitrary files via unspecified vectors.
Ubuntu Ubuntu 9.0.4
Apport Apport
Ubuntu Ubuntu 8.0.4 Lts
Ubuntu Ubuntu 8.1.0
7.2
CVSSv2
CVE-2006-3378
passwd command in shadow in Ubuntu 5.04 up to and including 6.06 LTS, when called with the -f, -g, or -s flag, does not check the return code of a setuid call, which might allow local users to gain root privileges if setuid fails in cases such as PAM failures or resource limits.
Ubuntu Ubuntu Linux 5.10
Ubuntu Ubuntu Linux 6.06 Lts
Ubuntu Ubuntu Linux 5.04
4.6
CVSSv2
CVE-2006-5649
Unspecified vulnerability in the "alignment check exception handling" in Ubuntu 5.10, 6.06 LTS, and 6.10 for the PowerPC (PPC) allows local users to cause a denial of service (kernel panic) via unspecified vectors.
Ubuntu Ubuntu Linux 6.06 Lts
Ubuntu Ubuntu Linux 5.10
Ubuntu Ubuntu Linux 6.10
7.2
CVSSv2
CVE-2011-0729
dbus_backend/ls-dbus-backend in the D-Bus backend in language-selector prior to 0.6.7 does not restrict access on the basis of a PolicyKit check result, which allows local users to modify the /etc/default/locale and /etc/environment files via a (1) SetSystemDefaultLangEnv or (2) ...
Ubuntu Language-selector 0.6.4
Ubuntu Language-selector 0.6.3
Ubuntu Language-selector 0.6.2
Ubuntu Language-selector 0.6.1
Ubuntu Language-selector 0.4.16
Ubuntu Language-selector 0.4.15
Ubuntu Language-selector 0.4.14
Ubuntu Language-selector 0.4.13
Ubuntu Language-selector 0.4.2
Ubuntu Language-selector 0.4.1
Ubuntu Language-selector 0.4.0
Ubuntu Language-selector 0.3.21
Ubuntu Language-selector 0.3.5
Ubuntu Language-selector 0.3.4
Ubuntu Language-selector 0.3.3
Ubuntu Language-selector 0.3.2
Ubuntu Language-selector 0.2.0
Ubuntu Language-selector 0.1.30
Ubuntu Language-selector 0.1.29
Ubuntu Language-selector 0.1.28
Ubuntu Language-selector 0.1.27
Ubuntu Language-selector 0.1.14
7.2
CVSSv2
CVE-2011-1842
dbus_backend/lsd.py in the D-Bus backend in language-selector prior to 0.6.7 does not validate the arguments to the (1) SetSystemDefaultLangEnv and (2) SetSystemDefaultLanguageEnv functions, which allows local users to gain privileges via shell metacharacters in a string argument...
Ubuntu Language-selector 0.6.0
Ubuntu Language-selector 0.5.7
Ubuntu Language-selector 0.5.0
Ubuntu Language-selector 0.4.19
Ubuntu Language-selector 0.4.12
Ubuntu Language-selector 0.4.11
Ubuntu Language-selector 0.4.10
Ubuntu Language-selector 0.4.3
Ubuntu Language-selector 0.4.2.3
Ubuntu Language-selector 0.3.20
Ubuntu Language-selector 0.3.17
Ubuntu Language-selector 0.3.9
Ubuntu Language-selector 0.3.8
Ubuntu Language-selector 0.3.1
Ubuntu Language-selector 0.3.0
Ubuntu Language-selector 0.2.4
Ubuntu Language-selector 0.2.3
Ubuntu Language-selector 0.1.26
Ubuntu Language-selector 0.1.25
Ubuntu Language-selector 0.1.18
Ubuntu Language-selector 0.1.17
Ubuntu Language-selector 0.1.10
2.6
CVSSv2
CVE-2019-15795
python-apt only checks the MD5 sums of downloaded files in `Version.fetch_binary()` and `Version.fetch_source()` of apt/package.py in version 1.9.0ubuntu1 and previous versions. This allows a man-in-the-middle attack which could potentially be used to install altered packages and...
Ubuntu Python-apt 0.8.0
Ubuntu Python-apt 0.8.1
Ubuntu Python-apt 0.8.3
Ubuntu Python-apt 0.8.9.1
Ubuntu Python-apt 0.9.0
Ubuntu Python-apt 0.9.1
Ubuntu Python-apt 0.9.3.1
Ubuntu Python-apt 0.9.3.2
Ubuntu Python-apt 0.9.3.3
Ubuntu Python-apt 0.9.3.4
Ubuntu Python-apt 0.9.3.5
Ubuntu Python-apt 1.0.1
Ubuntu Python-apt 1.1.0
Debian Python-apt 1.8.4
Ubuntu Python-apt 1.4.0
Ubuntu Python-apt 1.6.0
Ubuntu Python-apt 1.6.1
Ubuntu Python-apt 1.6.2
Ubuntu Python-apt 1.6.3
Ubuntu Python-apt 1.6.4
Ubuntu Python-apt 1.8.4
Ubuntu Python-apt 1.9.0
2.6
CVSSv2
CVE-2019-15796
Python-apt doesn't check if hashes are signed in `Version.fetch_binary()` and `Version.fetch_source()` of apt/package.py or in `_fetch_archives()` of apt/cache.py in version 1.9.3ubuntu2 and previous versions. This allows downloads from unsigned repositories which shouldn...
Ubuntu Python-apt 0.8.0
Ubuntu Python-apt 0.8.1
Ubuntu Python-apt 0.8.3
Ubuntu Python-apt 0.8.9.1
Ubuntu Python-apt 0.9.0
Ubuntu Python-apt 0.9.1
Ubuntu Python-apt 0.9.3.1
Ubuntu Python-apt 0.9.3.2
Ubuntu Python-apt 0.9.3.3
Ubuntu Python-apt 0.9.3.4
Ubuntu Python-apt 0.9.3.5
Ubuntu Python-apt 1.0.1
Ubuntu Python-apt 1.1.0
Debian Python-apt 1.8.4
Ubuntu Python-apt 1.4.0
Ubuntu Python-apt 1.6.0
Ubuntu Python-apt 1.6.1
Ubuntu Python-apt 1.6.2
Ubuntu Python-apt 1.6.3
Ubuntu Python-apt 1.6.4
Ubuntu Python-apt 1.8.4
Ubuntu Python-apt 1.9.0
5.8
CVSSv2
CVE-2012-5356
The apt-add-repository tool in Ubuntu Software Properties 0.75.x prior to 0.75.10.3, 0.80.x prior to 0.80.9.2, 0.81.x prior to 0.81.13.5, 0.82.x prior to 0.82.7.3, and 0.92.x prior to 0.92.8 does not properly check PPA GPG keys imported from a keyserver, which allows remote malic...
Canonical Ubuntu Software Properties 0.75.10.1
Canonical Ubuntu Software Properties 0.75.6
Canonical Ubuntu Software Properties 0.75.5
Canonical Ubuntu Software Properties 0.75.10
Canonical Ubuntu Software Properties 0.75.9
Canonical Ubuntu Software Properties 0.75.8
Canonical Ubuntu Software Properties 0.75.7
Canonical Ubuntu Software Properties 0.75.10.2
Canonical Ubuntu Software Properties 0.75.4
Canonical Ubuntu Software Properties 0.80.6
Canonical Ubuntu Software Properties 0.80.5
Canonical Ubuntu Software Properties 0.80.9.1
Canonical Ubuntu Software Properties 0.80.9
Canonical Ubuntu Software Properties 0.80.2
Canonical Ubuntu Software Properties 0.80
Canonical Ubuntu Software Properties 0.80.8
Canonical Ubuntu Software Properties 0.80.7
Canonical Ubuntu Software Properties 0.80.4
Canonical Ubuntu Software Properties 0.80.3
Canonical Ubuntu Software Properties 0.81.13.3
Canonical Ubuntu Software Properties 0.81.13.2
Canonical Ubuntu Software Properties 0.81.6
5.5
CVSSv2
CVE-2017-14461
A specially crafted email delivered over SMTP and passed on to Dovecot by MTA can trigger an out of bounds read resulting in potential sensitive information disclosure and denial of service. In order to trigger this vulnerability, an attacker needs to send a specially crafted ema...
Dovecot Dovecot 2.2.33.2
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Ubuntu Ubuntu 14.04
Ubuntu Ubuntu 16.04
Ubuntu Ubuntu 17.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »