canonical

4,251 tracked vulnerabilities.

CVE-2016-10714 CRITICAL
Canonical Ubuntu Linux < 5.3 - Numeric Error
Feb 27, 2018
CVSS 9.8
EPSS 0.02
CVE-2016-10712 HIGH
PHP < 5.5.32, 5.6.x < 5.6.18, 7.x < 7.0.3 - Input Validation Bypass via Stream Metadata Manipulation
Feb 09, 2018
CVSS 7.5
EPSS 0.02
CVE-2016-10708 HIGH
OpenSSH < 7.4 - Denial of Service via Out-of-Sequence NEWKEYS Message
Jan 21, 2018
CVSS 7.5
EPSS 0.16
CVE-2016-1252 MEDIUM
Debian jessie <1.0.9.8.4, Debian unstable <1.4~beta2, Ubuntu 14.04 ...
Dec 05, 2017
CVSS 5.9
EPSS 0.07
CVE-2016-6796 HIGH
Apache Tomcat <9.0.0.M10, <8.5.5, <8.0.37, <7.0.71, <6.0.46 - Auth ...
Aug 11, 2017
CVSS 7.5
EPSS 0.08
CVE-2016-6797 HIGH
Apache Tomcat 6.0.0-6.0.45, 7.0.0-7.0.70, 8.0.0.RC1-8.0.36, 8.5.0-8.5.4, 9.0.0.M1-9.0.0.M9 - Incorrect Authorization
Aug 10, 2017
CVSS 7.5
EPSS 0.08
CVE-2016-6794 MEDIUM
Apache Tomcat <9.0.0.M10, <8.5.5, <8.0.37, <7.0.71, <6.0.46 - Info ...
Aug 10, 2017
CVSS 5.3
EPSS 0.07
CVE-2016-5018 CRITICAL
Apache Tomcat <9.0.0.M10, <8.5.5, <8.0.37, <7.0.71, <6.0.46 - Auth ...
Aug 10, 2017
CVSS 9.1
EPSS 0.10
CVE-2016-0762 MEDIUM
Apache Tomcat <9.0.0.M10, <8.5.5, <8.0.37, <7.0.71, <6.0.46 - Info ...
Aug 10, 2017
CVSS 5.9
EPSS 0.08
CVE-2016-9843 CRITICAL
zlib 1.2.0-1.2.8 - Unspecified Impact via Big-Endian CRC Calculation
May 23, 2017
CVSS 9.8
EPSS 0.06
CVE-2016-9842 HIGH
zlib 1.2.3.4-1.2.8 - Integer Overflow via Left Shift of Negative Integer
May 23, 2017
CVSS 8.8
EPSS 0.05
CVE-2016-9841 CRITICAL
zlib 1.2.0-1.2.8 - Use-After-Free in inffast.c
May 23, 2017
CVSS 9.8
EPSS 0.08
CVE-2016-9840 HIGH
zlib <1.2.8 - Info Disclosure
May 23, 2017
CVSS 8.8
EPSS 0.05
CVE-2016-6489 HIGH
Nettle - Info Disclosure
Apr 14, 2017
CVSS 7.5
EPSS 0.05
CVE-2016-0727 HIGH
NTP Package <4.2.6.p3 - Privilege Escalation via Crontab Script
Apr 14, 2017
CVSS 7.8
EPSS 0.01
CVE-2016-8735 CRITICAL KEVNUCLEI
Apache Tomcat , 7.x , 8.x , 8.5.x , 9.x <6.0.48 <7.0.73 <8.0.39 <8.5.7 - Remote Code Execution
Apr 06, 2017
CVSS 9.8
EPSS 0.90
CVE-2016-9243 HIGH
cryptography < 1.5.2 - Insufficient Key Length Validation in HKDF
Mar 27, 2017
CVSS 7.5
EPSS 0.03
CVE-2016-9388 MEDIUM
JasPer < 1.900.14 - Denial of Service via Crafted Image File
Mar 23, 2017
CVSS 5.5
EPSS 0.02
CVE-2016-9775 HIGH
Debian Linux - Access Control
Mar 23, 2017
CVSS 7.8
EPSS 0.01
CVE-2016-9774 HIGH
Debian Linux - Symlink Following
Mar 23, 2017
CVSS 7.8
EPSS 0.01
CVE-2016-10109 HIGH
pcsc-lite < 1.8.20 - Use-After-Free via SCardReleaseContext
Feb 23, 2017
CVSS 7.5
EPSS 0.04
CVE-2016-3616 HIGH
libjpeg-turbo - Denial of Service via NULL Pointer Dereference in cjpeg
Feb 13, 2017
CVSS 8.8
EPSS 0.04
CVE-2016-2148 CRITICAL
BusyBox < 1.25.0 - Heap-Based Buffer Overflow in DHCP Client via OPTION_6RD Parsing
Feb 09, 2017
CVSS 9.8
EPSS 0.28
CVE-2016-2147 HIGH
BusyBox < 1.25.0 - Denial of Service via DHCP Client Integer Overflow
Feb 09, 2017
CVSS 7.5
EPSS 0.08
CVE-2016-10165 HIGH
Little CMS < 2.11 - Out-of-bounds Read via Crafted ICC Profile
Feb 03, 2017
CVSS 7.1
EPSS 0.03