Ubuntu Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2019-03-09	CVE-2019-9638	Out-of-bounds Read vulnerability in multiple products An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. network low complexity php debian canonical opensuse netapp redhat CWE-125	7.5
2019-03-09	CVE-2019-9637	Permissions, Privileges, and Access Controls vulnerability in multiple products An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. network low complexity php debian canonical opensuse netapp CWE-264	7.5
2019-03-08	CVE-2019-9636	Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc) during NFKC normalization. network low complexity python fedoraproject opensuse debian canonical redhat oracle critical	9.8
2019-03-07	CVE-2019-7175	Memory Leak vulnerability in multiple products In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c. network low complexity imagemagick opensuse debian canonical CWE-401	7.5
2019-03-06	CVE-2019-3824	Out-of-bounds Read vulnerability in multiple products A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. network low complexity samba debian canonical CWE-125	6.5
2019-03-05	CVE-2019-9213	NULL Pointer Dereference vulnerability in multiple products In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. local low complexity linux debian redhat opensuse canonical CWE-476	5.5
2019-03-05	CVE-2019-6215	Type Confusion vulnerability in multiple products A type confusion issue was addressed with improved memory handling. network low complexity apple canonical CWE-843	8.8
2019-03-05	CVE-2019-6212	Out-of-bounds Write vulnerability in multiple products Multiple memory corruption issues were addressed with improved memory handling. network low complexity apple canonical CWE-787	8.8
2019-02-28	CVE-2018-18498	Integer Overflow or Wraparound vulnerability in multiple products A potential vulnerability leading to an integer overflow can occur during buffer size calculations for images when a raw value is used instead of the checked value. network low complexity mozilla debian canonical redhat CWE-190 critical	9.8
2019-02-28	CVE-2018-18497	Limitations on the URIs allowed to WebExtensions by the browser.windows.create API can be bypassed when a pipe in the URL field is used within the extension to load multiple pages as a single argument. network low complexity mozilla canonical	6.5