Vulnerabilities > Canonical

DATE CVE VULNERABILITY TITLE RISK
2018-03-06 CVE-2018-7730 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in Exempi through 2.4.4.
local
low complexity
exempi-project debian canonical CWE-125
5.5
5.5
2018-03-06 CVE-2018-7729 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in Exempi through 2.4.4.
local
low complexity
exempi-project canonical CWE-125
5.5
5.5
2018-03-06 CVE-2018-7728 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in Exempi through 2.4.4.
local
low complexity
exempi-project canonical debian CWE-125
5.5
5.5
2018-03-06 CVE-2018-7726 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in ZZIPlib 0.13.68.
network
low complexity
zziplib-project canonical redhat CWE-119
6.5
6.5
2018-03-06 CVE-2018-7725 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in ZZIPlib 0.13.68.
network
low complexity
zziplib-project canonical redhat CWE-119
6.5
6.5
2018-03-06 CVE-2018-1000100 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulnerability in src/isomedia/avc_ext.c lines 2417 to 2420 that can result in Heap chunks being modified, this could lead to RCE.
local
low complexity
gpac-project canonical CWE-119
7.8
7.8
2018-03-05 CVE-2018-1000115 Resource Exhaustion vulnerability in multiple products
Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification of 1:50,000 has been reported by reliable sources).
network
low complexity
memcached canonical debian redhat CWE-400
7.5
7.5
2018-03-02 CVE-2018-1058 A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users.
network
low complexity
postgresql canonical redhat
8.8
8.8
2018-03-02 CVE-2017-15130 A denial of service flaw was found in dovecot before 2.2.34.
network
high complexity
dovecot debian canonical
5.9
5.9
2018-03-02 CVE-2018-1066 NULL Pointer Dereference vulnerability in multiple products
The Linux kernel before version 4.11 is vulnerable to a NULL pointer dereference in fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allows an attacker controlling a CIFS server to kernel panic a client that has this server mounted, because an empty TargetInfo field in an NTLMSSP setup negotiation response is mishandled during session recovery.
network
low complexity
linux debian canonical CWE-476
6.5
6.5