|
1 | 1 | [ |
2 | 2 | { |
3 | 3 | "advisory_id": "UBUNTU-CVE-2001-1593", |
4 | | - "aliases": [], |
| 4 | + "aliases": [ |
| 5 | + "CVE-2001-1593" |
| 6 | + ], |
5 | 7 | "summary": "Jakub Wilk found that a2ps, a tool to convert text and other types of files to PostScript, insecurely used a temporary file in spy_user(). A local attacker could use this flaw to perform a symbolic link attack to modify an arbitrary file accessible to the user running a2ps.", |
6 | 8 | "affected_packages": [ |
7 | 9 | { |
|
45 | 47 | }, |
46 | 48 | { |
47 | 49 | "advisory_id": "UBUNTU-CVE-2005-1515", |
48 | | - "aliases": [], |
| 50 | + "aliases": [ |
| 51 | + "CVE-2005-1515" |
| 52 | + ], |
49 | 53 | "summary": "Integer signedness error in the qmail_put and substdio_put functions in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large number of SMTP RCPT TO commands.", |
50 | 54 | "affected_packages": [ |
51 | 55 | { |
|
146 | 150 | }, |
147 | 151 | { |
148 | 152 | "advisory_id": "UBUNTU-CVE-2010-0751", |
149 | | - "aliases": [], |
| 153 | + "aliases": [ |
| 154 | + "CVE-2010-0751" |
| 155 | + ], |
150 | 156 | "summary": "The ip_evictor function in ip_fragment.c in libnids before 1.24, as used in dsniff and possibly other products, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via crafted fragmented packets.", |
151 | 157 | "affected_packages": [ |
152 | 158 | { |
|
204 | 210 | }, |
205 | 211 | { |
206 | 212 | "advisory_id": "UBUNTU-CVE-2010-1824", |
207 | | - "aliases": [], |
| 213 | + "aliases": [ |
| 214 | + "CVE-2010-1824" |
| 215 | + ], |
208 | 216 | "summary": "Use-after-free vulnerability in WebKit, as used in Apple iTunes before 10.2 on Windows, Apple Safari, and Google Chrome before 6.0.472.59, allows remote attackers to execute arbitrary code or cause a denial of service via vectors related to SVG styles, the DOM tree, and error messages.", |
209 | 217 | "affected_packages": [ |
210 | 218 | { |
|
267 | 275 | }, |
268 | 276 | { |
269 | 277 | "advisory_id": "UBUNTU-CVE-2010-2496", |
270 | | - "aliases": [], |
| 278 | + "aliases": [ |
| 279 | + "CVE-2010-2496" |
| 280 | + ], |
271 | 281 | "summary": "stonith-ng in pacemaker and cluster-glue passed passwords as commandline parameters, making it possible for local attackers to gain access to passwords of the HA stack and potentially influence its operations. This is fixed in cluster-glue 1.0.6 and newer, and pacemaker 1.1.3 and newer.", |
272 | 282 | "affected_packages": [ |
273 | 283 | { |
|
345 | 355 | }, |
346 | 356 | { |
347 | 357 | "advisory_id": "UBUNTU-CVE-2015-0209", |
348 | | - "aliases": [], |
| 358 | + "aliases": [ |
| 359 | + "CVE-2015-0209" |
| 360 | + ], |
349 | 361 | "summary": "Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import.", |
350 | 362 | "affected_packages": [ |
351 | 363 | { |
|
394 | 406 | }, |
395 | 407 | { |
396 | 408 | "advisory_id": "UBUNTU-CVE-2015-0222", |
397 | | - "aliases": [], |
| 409 | + "aliases": [ |
| 410 | + "CVE-2015-0222" |
| 411 | + ], |
398 | 412 | "summary": "ModelMultipleChoiceField in Django 1.6.x before 1.6.10 and 1.7.x before 1.7.3, when show_hidden_initial is set to True, allows remote attackers to cause a denial of service by submitting duplicate values, which triggers a large number of SQL queries.", |
399 | 413 | "affected_packages": [ |
400 | 414 | { |
|
448 | 462 | }, |
449 | 463 | { |
450 | 464 | "advisory_id": "UBUNTU-CVE-2015-0244", |
451 | | - "aliases": [], |
| 465 | + "aliases": [ |
| 466 | + "CVE-2015-0244" |
| 467 | + ], |
452 | 468 | "summary": "PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 does not properly handle errors while reading a protocol message, which allows remote attackers to conduct SQL injection attacks via crafted binary data in a parameter and causing an error, which triggers the loss of synchronization and part of the protocol message to be treated as a new message, as demonstrated by causing a timeout or query cancellation.", |
453 | 469 | "affected_packages": [ |
454 | 470 | { |
|
516 | 532 | }, |
517 | 533 | { |
518 | 534 | "advisory_id": "UBUNTU-CVE-2015-0261", |
519 | | - "aliases": [], |
| 535 | + "aliases": [ |
| 536 | + "CVE-2015-0261" |
| 537 | + ], |
520 | 538 | "summary": "Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value.", |
521 | 539 | "affected_packages": [ |
522 | 540 | { |
|
570 | 588 | }, |
571 | 589 | { |
572 | 590 | "advisory_id": "UBUNTU-CVE-2015-0295", |
573 | | - "aliases": [], |
| 591 | + "aliases": [ |
| 592 | + "CVE-2015-0295" |
| 593 | + ], |
574 | 594 | "summary": "The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.", |
575 | 595 | "affected_packages": [ |
576 | 596 | { |
|
638 | 658 | }, |
639 | 659 | { |
640 | 660 | "advisory_id": "UBUNTU-CVE-2020-0305", |
641 | | - "aliases": [], |
| 661 | + "aliases": [ |
| 662 | + "CVE-2020-0305" |
| 663 | + ], |
642 | 664 | "summary": "In cdev_get of char_dev.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-153467744", |
643 | 665 | "affected_packages": [ |
644 | 666 | { |
|
1434 | 1456 | }, |
1435 | 1457 | { |
1436 | 1458 | "advisory_id": "UBUNTU-CVE-2020-0556", |
1437 | | - "aliases": [], |
| 1459 | + "aliases": [ |
| 1460 | + "CVE-2020-0556" |
| 1461 | + ], |
1438 | 1462 | "summary": "Improper access control in subsystem for BlueZ before version 5.54 may allow an unauthenticated user to potentially enable escalation of privilege and denial of service via adjacent access", |
1439 | 1463 | "affected_packages": [ |
1440 | 1464 | { |
|
1512 | 1536 | }, |
1513 | 1537 | { |
1514 | 1538 | "advisory_id": "UBUNTU-CVE-2020-1739", |
1515 | | - "aliases": [], |
| 1539 | + "aliases": [ |
| 1540 | + "CVE-2020-1739" |
| 1541 | + ], |
1516 | 1542 | "summary": "A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument \"password\" of svn module, it is used on svn command line, disclosing to other users within the same node. An attacker could take advantage by reading the cmdline file from that particular PID on the procfs.", |
1517 | 1543 | "affected_packages": [ |
1518 | 1544 | { |
|
1613 | 1639 | }, |
1614 | 1640 | { |
1615 | 1641 | "advisory_id": "UBUNTU-CVE-2020-1770", |
1616 | | - "aliases": [], |
| 1642 | + "aliases": [ |
| 1643 | + "CVE-2020-1770" |
| 1644 | + ], |
1617 | 1645 | "summary": "Support bundle generated files could contain sensitive information that might be unwanted to be disclosed. This issue affects: ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.", |
1618 | 1646 | "affected_packages": [ |
1619 | 1647 | { |
|
1700 | 1728 | }, |
1701 | 1729 | { |
1702 | 1730 | "advisory_id": "UBUNTU-CVE-2020-1944", |
1703 | | - "aliases": [], |
| 1731 | + "aliases": [ |
| 1732 | + "CVE-2020-1944" |
| 1733 | + ], |
1704 | 1734 | "summary": "There is a vulnerability in Apache Traffic Server 6.0.0 to 6.2.3, 7.0.0 to 7.1.8, and 8.0.0 to 8.0.5 with a smuggling attack and Transfer-Encoding and Content length headers. Upgrade to versions 7.1.9 and 8.0.6 or later versions.", |
1705 | 1735 | "affected_packages": [ |
1706 | 1736 | { |
|
1796 | 1826 | }, |
1797 | 1827 | { |
1798 | 1828 | "advisory_id": "UBUNTU-CVE-2020-2590", |
1799 | | - "aliases": [], |
| 1829 | + "aliases": [ |
| 1830 | + "CVE-2020-2590" |
| 1831 | + ], |
1800 | 1832 | "summary": "Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Kerberos to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).", |
1801 | 1833 | "affected_packages": [ |
1802 | 1834 | { |
|
2000 | 2032 | }, |
2001 | 2033 | { |
2002 | 2034 | "advisory_id": "UBUNTU-CVE-2020-6537", |
2003 | | - "aliases": [], |
| 2035 | + "aliases": [ |
| 2036 | + "CVE-2020-6537" |
| 2037 | + ], |
2004 | 2038 | "summary": "Type confusion in V8 in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.", |
2005 | 2039 | "affected_packages": [ |
2006 | 2040 | { |
|
2298 | 2332 | }, |
2299 | 2333 | { |
2300 | 2334 | "advisory_id": "UBUNTU-CVE-2025-0677", |
2301 | | - "aliases": [], |
| 2335 | + "aliases": [ |
| 2336 | + "CVE-2025-0677" |
| 2337 | + ], |
2302 | 2338 | "summary": "A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the inode's data size to allocate the internal buffer to read the file content, however, it fails to check if the symlink data size has overflown. When this occurs, grub_malloc() may be called with a smaller value than needed. When further reading the data from the disk into the buffer, the grub_ufs_lookup_symlink() function will write past the end of the allocated size. An attack can leverage this by crafting a malicious filesystem, and as a result, it will corrupt data stored in the heap, allowing for arbitrary code execution used to by-pass secure boot mechanisms.", |
2303 | 2339 | "affected_packages": [ |
2304 | 2340 | { |
|
2529 | 2565 | }, |
2530 | 2566 | { |
2531 | 2567 | "advisory_id": "UBUNTU-CVE-2025-1179", |
2532 | | - "aliases": [], |
| 2568 | + "aliases": [ |
| 2569 | + "CVE-2025-1179" |
| 2570 | + ], |
2533 | 2571 | "summary": "A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfd_putl64 of the file bfd/libbfd.c of the component ld. The manipulation leads to memory corruption. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. Upgrading to version 2.44 is able to address this issue. It is recommended to upgrade the affected component. The code maintainer explains, that \"[t]his bug has been fixed at some point between the 2.43 and 2.44 releases\".", |
2534 | 2572 | "affected_packages": [ |
2535 | 2573 | { |
|
2679 | 2717 | }, |
2680 | 2718 | { |
2681 | 2719 | "advisory_id": "UBUNTU-CVE-2025-14345", |
2682 | | - "aliases": [], |
| 2720 | + "aliases": [ |
| 2721 | + "CVE-2025-14345" |
| 2722 | + ], |
2683 | 2723 | "summary": "A post-authentication\u00a0flaw in the network two-phase commit protocol used for cross-shard transactions in MongoDB Server may lead to logical data inconsistencies under specific conditions which are not predictable and exist for a very short period of time. This error can cause the transaction coordination logic to misinterpret the transaction as committed, resulting in inconsistent state on those shards. This may lead to low integrity and availability impact. This issue impacts MongoDB Server v8.0 versions prior to 8.0.16, MongoDB Server v7.0 versions prior to 7.0.26 and MongoDB server v8.2 versions prior to 8.2.2.", |
2684 | 2724 | "affected_packages": [ |
2685 | 2725 | { |
|
2785 | 2825 | }, |
2786 | 2826 | { |
2787 | 2827 | "advisory_id": "UBUNTU-CVE-2025-71115", |
2788 | | - "aliases": [], |
| 2828 | + "aliases": [ |
| 2829 | + "CVE-2025-71115" |
| 2830 | + ], |
2789 | 2831 | "summary": "In the Linux kernel, the following vulnerability has been resolved: um: init cpu_tasks[] earlier This is currently done in uml_finishsetup(), but e.g. with KCOV enabled we'll crash because some init code can call into e.g. memparse(), which has coverage annotations, and then the checks in check_kcov_mode() crash because current is NULL. Simply initialize the cpu_tasks[] array statically, which fixes the crash. For the later SMP work, it seems to have not really caused any problems yet, but initialize all of the entries anyway.", |
2790 | 2832 | "affected_packages": [ |
2791 | 2833 | { |
|
0 commit comments