Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

canonical ubuntu linux 11.10 vulnerabilities and exploits

(subscribe to this query)
5.8
CVSSv2
CVE-2012-5821
Lynx does not verify that the server's certificate is signed by a trusted certification authority, which allows man-in-the-middle malicious users to spoof SSL servers via a crafted certificate, related to improper use of a certain GnuTLS function.
Lynx Lynx -Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04
6.8
CVSSv2
CVE-2012-5060
Unspecified vulnerability in the Server component in Oracle MySQL 5.1.65 and previous versions and 5.5.27 and previous versions allows remote authenticated users to affect availability, related to GIS Extension.
Oracle MysqlMariadb MariadbCanonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04
6.5
CVSSv2
CVE-2013-0208
The boot-from-volume feature in OpenStack Compute (Nova) Folsom and Essex, when using nova-volumes, allows remote authenticated users to boot from other users' volumes via a volume id in the block_device_mapping parameter.
Openstack Essex -Openstack Folsom -Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.10
3.6
CVSSv2
CVE-2011-4406
The Ubuntu AccountsService package prior to 0.6.14-1git1ubuntu1.1 does not properly drop privileges when changing language settings, which allows local users to modify arbitrary files via unspecified vectors.
Canonical Ubuntu Linux 11.10Canonical Accountsservice
6.9
CVSSv2
CVE-2008-5983
Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and previous versions, and possibly later versions, prepends an empty string to sys.path when the argv[0] argument does not contain a path separator, which might allow local users to execute arbit...
Python PythonFedoraproject Fedora 13Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 10.04
4.6
CVSSv2
CVE-2011-4613
The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restrictions by associating stdin with a file that is misinterpreted as the console TTY.
Canonical Ubuntu Linux 11.10Debian Debian LinuxUbuntu LinuxX.org X Server -Canonical Ubuntu Linux 10.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.04
6.4
CVSSv2
CVE-2011-3152
DistUpgrade/DistUpgradeFetcherCore.py in Update Manager prior to 1:0.87.31.1, 1:0.134.x prior to 1:0.134.11.1, 1:0.142.x prior to 1:0.142.23.1, 1:0.150.x prior to 1:0.150.5.1, and 1:0.152.x prior to 1:0.152.25.5 on Ubuntu 8.04 up to and including 11.10 does not verify the GPG sig...
Canonical Update-managerCanonical Update-manager 1\\Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 10.10
1.9
CVSSv2
CVE-2011-3154
DistUpgrade/DistUpgradeViewKDE.py in Update Manager prior to 1:0.87.31.1, 1:0.134.x prior to 1:0.134.11.1, 1:0.142.x prior to 1:0.142.23.1, 1:0.150.x prior to 1:0.150.5.1, and 1:0.152.x prior to 1:0.152.25.5 does not properly create temporary files, which allows local users to ob...
Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 10.04Canonical Update-manager 1\\Canonical Ubuntu Linux 11.10Canonical Update-managerCanonical Ubuntu Linux 10.10Canonical Ubuntu Linux 11.04
6.4
CVSSv2
CVE-2012-2135
The utf-16 decoder in Python 3.1 up to and including 3.3 does not update the aligned_end variable after calling the unicode_decode_call_errorhandler function, which allows remote malicious users to obtain sensitive information (process memory) or cause a denial of service (memory...
Python PythonCanonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 12.04Debian Debian Linux 6.0
9.3
CVSSv2
CVE-2012-4191
The mozilla::net::FailDelayManager::Lookup function in the WebSockets implementation in Mozilla Firefox prior to 16.0.1, Thunderbird prior to 16.0.1, and SeaMonkey prior to 2.13.1 allows remote malicious users to cause a denial of service (memory corruption and application crash)...
Mozilla FirefoxMozilla SeamonkeyMozilla ThunderbirdCanonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook