Vulnerabilities > Canonical > Ubuntu Linux > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-08-19 CVE-2019-15216 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.0.14.
4.6
2019-08-19 CVE-2019-15215 Use After Free vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.2.6.
4.6
2019-08-19 CVE-2019-15214 Use After Free vulnerability in Linux Kernel
An issue was discovered in the Linux kernel before 5.0.10.
6.9
2019-08-19 CVE-2019-15212 Double Free vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.1.8.
4.6
2019-08-19 CVE-2019-15211 Use After Free vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.2.6.
4.6
2019-08-18 CVE-2019-15145 Out-of-bounds Read vulnerability in multiple products
DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack (application crash via an out-of-bounds read) by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::get_direct_context in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h.
5.5
2019-08-18 CVE-2019-15144 Uncontrolled Recursion vulnerability in multiple products
In DjVuLibre 3.5.27, the sorting functionality (aka GArrayTemplate<TYPE>::sort) allows attackers to cause a denial-of-service (application crash due to an Uncontrolled Recursion) by crafting a PBM image file that is mishandled in libdjvu/GContainer.h.
5.5
2019-08-18 CVE-2019-15143 Infinite Loop vulnerability in multiple products
In DjVuLibre 3.5.27, the bitmap reader component allows attackers to cause a denial-of-service error (resource exhaustion caused by a GBitmap::read_rle_raw infinite loop) by crafting a corrupted image file, related to libdjvu/DjVmDir.cpp and libdjvu/GBitmap.cpp.
5.5
2019-08-18 CVE-2019-15142 Out-of-bounds Read vulnerability in multiple products
In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service (application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read) by crafting a DJVU file.
5.5
2019-08-17 CVE-2019-15133 Divide By Zero vulnerability in multiple products
In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero.
network
low complexity
giflib-project canonical debian CWE-369
6.5