Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
canonical ubuntu linux 14.10 vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2015-0250
XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) JPG conversion classes in Apache Batik 1.x prior to 1.8 allows remote malicious users to read arbitrary files or cause a denial of service via a crafted SVG file.
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Apache Batik
Redhat Jboss Enterprise Brms Platform
2 Github repositories
6.4
CVSSv2
CVE-2015-2304
Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and previous versions allows remote malicious users to write to arbitrary files via a full pathname in an archive.
Libarchive Libarchive
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
6.4
CVSSv2
CVE-2014-7142
The pinger in Squid 3.x prior to 3.4.8 allows remote malicious users to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.
Oracle Solaris 11.2
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Squid-cache Squid 3.4.5
Squid-cache Squid 3.4.4
Squid-cache Squid 3.1.1
Squid-cache Squid 3.1.10
Squid-cache Squid 3.1.17
Squid-cache Squid 3.1.18
Squid-cache Squid 3.1.19
Squid-cache Squid 3.1.5
Squid-cache Squid 3.1.5.1
Squid-cache Squid 3.2.0.11
Squid-cache Squid 3.2.0.12
Squid-cache Squid 3.2.0.2
Squid-cache Squid 3.2.0.3
Squid-cache Squid 3.2.1
Squid-cache Squid 3.2.10
Squid-cache Squid 3.2.6
Squid-cache Squid 3.2.7
Squid-cache Squid 3.3.10
Squid-cache Squid 3.3.11
5.8
CVSSv2
CVE-2014-9672
Array index error in the parse_fond function in base/ftmac.c in FreeType prior to 2.5.4 allows remote malicious users to cause a denial of service (out-of-bounds read) or obtain sensitive information from process memory via a crafted FOND resource in a Mac font file.
Oracle Solaris 11.2
Oracle Solaris 10.0
Debian Debian Linux 7.0
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 10.04
Freetype Freetype
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
5
CVSSv2
CVE-2015-3167
contrib/pgcrypto in PostgreSQL prior to 9.0.20, 9.1.x prior to 9.1.16, 9.2.x prior to 9.2.11, 9.3.x prior to 9.3.7, and 9.4.x prior to 9.4.2 uses different error responses when an incorrect key is used, which makes it easier for malicious users to obtain the key via a brute force...
Postgresql Postgresql
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 15.04
5
CVSSv2
CVE-2015-3407
Module::Signature prior to 0.74 allows remote malicious users to bypass signature verification for files via a signature file that does not list the files.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 15.04
Module-signature Project Module-signature
5
CVSSv2
CVE-2015-2668
ClamAV prior to 0.98.7 allows remote malicious users to cause a denial of service (infinite loop) via a crafted xz archive file.
Clamav Clamav
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.1
5
CVSSv2
CVE-2015-3451
The _clone function in XML::LibXML prior to 2.0119 does not properly set the expand_entities option, which allows remote malicious users to conduct XML external entity (XXE) attacks via crafted XML data to the (1) new or (2) load_xml function.
Xml-libxml Project Xml-libxml
Debian Debian Linux 7.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Debian Debian Linux 8.0
Fedoraproject Fedora 21
Fedoraproject Fedora 20
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
5
CVSSv2
CVE-2015-2170
The upx decoder in ClamAV prior to 0.98.7 allows remote malicious users to cause a denial of service (crash) via a crafted file.
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Clamav Clamav
5
CVSSv2
CVE-2015-2221
ClamAV prior to 0.98.7 allows remote malicious users to cause a denial of service (infinite loop) via a crafted y0da cryptor file.
Clamav Clamav
Canonical Ubuntu Linux 15.1
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »