Vulnerabilities > Canonical > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-03-12 CVE-2016-9600 NULL Pointer Dereference vulnerability in multiple products
JasPer before version 2.0.10 is vulnerable to a null pointer dereference was found in the decoded creation of JPEG 2000 image files.
network
low complexity
jasper-project canonical redhat CWE-476
6.5
6.5
2018-03-10 CVE-2018-8043 NULL Pointer Dereference vulnerability in multiple products
The unimac_mdio_probe function in drivers/net/phy/mdio-bcm-unimac.c in the Linux kernel through 4.15.8 does not validate certain resource availability, which allows local users to cause a denial of service (NULL pointer dereference).
local
low complexity
linux canonical CWE-476
5.5
5.5
2018-03-09 CVE-2018-7537 Incorrect Regular Expression vulnerability in multiple products
An issue was discovered in Django 2.0 before 2.0.3, 1.11 before 1.11.11, and 1.8 before 1.8.19.
network
low complexity
canonical djangoproject debian CWE-185
5.3
5.3
2018-03-09 CVE-2018-7536 Incorrect Regular Expression vulnerability in multiple products
An issue was discovered in Django 2.0 before 2.0.3, 1.11 before 1.11.11, and 1.8 before 1.8.19.
network
low complexity
canonical djangoproject debian redhat CWE-185
5.3
5.3
2018-03-09 CVE-2018-7995 Race Condition vulnerability in multiple products
Race condition in the store_int_with_restart() function in arch/x86/kernel/cpu/mcheck/mce.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (panic) by leveraging root access to write to the check_interval file in a /sys/devices/system/machinecheck/machinecheck<cpu number> directory.
local
high complexity
linux canonical debian CWE-362
4.7
4.7
2018-03-09 CVE-2018-1071 zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function.
local
low complexity
zsh debian canonical redhat
5.5
5.5
2018-03-08 CVE-2018-7755 Information Exposure vulnerability in multiple products
An issue was discovered in the fd_locked_ioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7.
local
low complexity
linux canonical CWE-200
5.5
5.5
2018-03-07 CVE-2018-7740 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
The resv_map_release function in mm/hugetlb.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (BUG) via a crafted application that makes mmap system calls and has a large pgoff argument to the remap_file_pages system call.
local
low complexity
linux redhat debian canonical CWE-119
5.5
5.5
2018-03-06 CVE-2018-7731 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in Exempi through 2.4.4.
local
low complexity
exempi-project canonical CWE-476
5.5
5.5
2018-03-06 CVE-2018-7730 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in Exempi through 2.4.4.
local
low complexity
exempi-project debian canonical CWE-125
5.5
5.5