Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
canonical ubuntu linux 15.04 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2013-1054
The unity-firefox-extension package could be tricked into destroying the Unity webapps context, causing Firefox to crash. This could be achieved by spinning the event loop inside the webapps initialization callback. Fixed in 3.0.0+14.04.20140416-0ubuntu1.14.04.1 by shipping an em...
Canonical Unity-firefox-extension
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.04
383
VMScore
CVE-2015-1327
Content Hub before version 0.0+15.04.20150331-0ubuntu1.0 DBUS API only requires a file path for a content item, it doesn't actually require the confined app have access to the file to create a transfer. This could allow a malicious application using the DBUS API to export fi...
Canonical Ubuntu Linux 15.04
383
VMScore
CVE-2011-4600
The networkReloadIptablesRules function in network/bridge_driver.c in libvirt prior to 0.9.9 does not properly handle firewall rules on bridge networks when libvirtd is restarted, which might allow remote malicious users to bypass intended access restrictions via a (1) DNS or (2)...
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Redhat Libvirt 0.9.8
383
VMScore
CVE-2016-2191
The bmp_read_rows function in pngxtern/pngxrbmp.c in OptiPNG prior to 0.7.6 allows remote malicious users to cause a denial of service (invalid memory write and crash) via a series of delta escapes in a crafted BMP image.
Optipng Optipng 0.7.2
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Opensuse Leap 42.1
Opensuse Opensuse 13.2
383
VMScore
CVE-2016-1947
Mozilla Firefox 43.x mishandles attempts to connect to the Application Reputation service, which makes it easier for remote malicious users to trigger an unintended download by leveraging the absence of reputation data.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox 43.0.2
Mozilla Firefox 43.0.1
Mozilla Firefox 43.0.4
Mozilla Firefox 43.0
Mozilla Firefox 43.0.3
383
VMScore
CVE-2015-7941
libxml2 2.9.2 does not properly stop parsing invalid input, which allows context-dependent malicious users to cause a denial of service (out-of-bounds read and libxml2 crash) via crafted XML data to the (1) xmlParseEntityDecl or (2) xmlParseConditionalSections function in parser....
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Xmlsoft Libxml2 2.9.2
383
VMScore
CVE-2015-7697
Info-ZIP UnZip 6.0 allows remote malicious users to cause a denial of service (infinite loop) via empty bzip2 data in a ZIP archive.
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Unzip Project Unzip 6.0
1 Github repository
383
VMScore
CVE-2015-4490
The nsCSPHostSrc::permits function in dom/security/nsCSPUtils.cpp in Mozilla Firefox prior to 40.0 does not implement the Content Security Policy Level 2 exceptions for the blob, data, and filesystem URL schemes during wildcard source-expression matching, which might make it easi...
Mozilla Firefox
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Oracle Solaris 11.3
383
VMScore
CVE-2015-5523
The ParseValue function in lexer.c in tidy prior to 4.9.31 allows remote malicious users to cause a denial of service (crash) via vectors involving multiple whitespace characters before an empty href, which triggers a large memory allocation.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Apple Mac Os X
Apple Watchos
Apple Iphone Os
Htacg Tidy
383
VMScore
CVE-2015-5144
Django prior to 1.4.21, 1.5.x up to and including 1.6.x, 1.7.x prior to 1.7.9, and 1.8.x prior to 1.8.3 uses an incorrect regular expression, which allows remote malicious users to inject arbitrary headers and conduct HTTP response splitting attacks via a newline character in an ...
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Djangoproject Django 1.7.5
Djangoproject Django 1.5
Djangoproject Django 1.5.7
Djangoproject Django 1.5.1
Djangoproject Django 1.7.9
Djangoproject Django 1.7.3
Djangoproject Django 1.6
Djangoproject Django 1.6.7
Djangoproject Django 1.8.2
Djangoproject Django 1.7
Djangoproject Django 1.6.5
Djangoproject Django 1.5.3
Djangoproject Django 1.7.7
Djangoproject Django 1.8.1
Djangoproject Django 1.5.4
Djangoproject Django 1.5.12
Djangoproject Django 1.6.8
Djangoproject Django 1.8
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »