Vulnerabilities > Canonical > Ubuntu Linux > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-19 | CVE-2018-2790 | Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). | 3.1 |
| 2018-02-08 | CVE-2018-1000030 | Use After Free vulnerability in multiple products Python 2.7.14 is vulnerable to a Heap-Buffer-Overflow as well as a Heap-Use-After-Free. | 3.6 |
| 2018-01-18 | CVE-2018-2579 | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). | 3.7 |
| 2017-01-06 | CVE-2016-2380 | Out-of-bounds Read vulnerability in multiple products An information leak exists in the handling of the MXIT protocol in Pidgin. | 3.1 |
| 2017-01-06 | CVE-2016-4323 | Path Traversal vulnerability in multiple products A directory traversal exists in the handling of the MXIT protocol in Pidgin. | 3.7 |
| 2016-07-22 | CVE-2015-8946 | Improper Input Validation vulnerability in multiple products ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors. | 3.3 |
| 2016-07-22 | CVE-2016-6224 | Improper Input Validation vulnerability in multiple products ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obtain sensitive information via unspecified vectors. | 3.3 |
| 2016-05-23 | CVE-2016-4486 | Information Exposure vulnerability in multiple products The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message. | 3.3 |
| 2016-05-05 | CVE-2016-3716 | Permissions, Privileges, and Access Controls vulnerability in multiple products The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to move arbitrary files via a crafted image. | 3.3 |
| 2016-04-25 | CVE-2016-4053 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote attackers to obtain sensitive stack layout information via crafted Edge Side Includes (ESI) responses, related to incorrect use of assert and compiler optimization. | 3.7 |