18.04

DATE	CVE	VULNERABILITY TITLE	RISK
2018-08-16	CVE-2018-14567	Infinite Loop vulnerability in multiple products libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035 and CVE-2018-9251. network xmlsoft canonical debian CWE-835	4.3
2018-08-10	CVE-2018-6556	Channel and Path Errors vulnerability in multiple products lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. local low complexity canonical linuxcontainers suse opensuse CWE-417	2.1
2018-08-10	CVE-2018-6553	The CUPS AppArmor profile incorrectly confined the dnssd backend due to use of hard links. local low complexity cups canonical debian	4.6
2018-08-09	CVE-2018-10925	Incorrect Authorization vulnerability in multiple products It was discovered that PostgreSQL versions before 10.5, 9.6.10, 9.5.14, 9.4.19, and 9.3.24 failed to properly check authorization on certain statements involved with "INSERT ... network low complexity canonical debian postgresql CWE-863	8.1
2018-08-09	CVE-2018-10915	SQL Injection vulnerability in multiple products A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. network redhat canonical debian postgresql CWE-89	6.0
2018-08-08	CVE-2018-14526	Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in multiple products An issue was discovered in rsn_supp/wpa.c in wpa_supplicant 2.0 through 2.6. low complexity canonical debian w1-fi CWE-924	3.3
2018-08-06	CVE-2018-5390	Resource Exhaustion vulnerability in multiple products Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service. network low complexity redhat linux canonical debian hp hpe f5 a10networks cisco CWE-400	7.5
2018-08-05	CVE-2018-14938	Out-of-bounds Read vulnerability in multiple products An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. network low complexity digitalcorpora canonical CWE-125	6.4
2018-08-03	CVE-2018-14574	Open Redirect vulnerability in multiple products django.middleware.common.CommonMiddleware in Django 1.11.x before 1.11.15 and 2.0.x before 2.0.8 has an Open Redirect. network djangoproject debian canonical CWE-601	5.8
2018-08-03	CVE-2018-14883	Out-of-bounds Read vulnerability in multiple products An issue was discovered in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. network low complexity php canonical debian netapp CWE-125	5.0