canonical

4,251 tracked vulnerabilities.

CVE-2017-3144 HIGH
ISC DHCP 4.1.0-4.1-ESV-R15 4.2.0-4.2.8 4.3.0-4.3.6 - Uncontrolled Resource Consumption via OMAPI Connection Cleanup
Jan 16, 2019
CVSS 7.5
EPSS 0.73
CVE-2017-16910 MEDIUM
libraw < 0.18.6 - Denial of Service via xtrans_interpolate Function
Dec 07, 2018
CVSS 6.5
EPSS 0.02
CVE-2017-16909 HIGH
LibRaw < 0.18.6 - Heap-Based Buffer Overflow via Crafted TIFF Image
Dec 07, 2018
CVSS 8.8
EPSS 0.02
CVE-2017-5934 MEDIUM
MoinMoin < 1.9.10 - Cross-Site Scripting in GUI Editor Link Dialogue
Oct 15, 2018
CVSS 6.1
EPSS 0.02
CVE-2017-15705 MEDIUM
Apache SpamAssassin < 3.4.2 - Denial of Service via Unclosed HTML Tags
Sep 17, 2018
CVSS 5.3
EPSS 0.08
CVE-2017-15422 MEDIUM
Google Chrome < 63.0.3239.84 - Integer Overflow
Aug 28, 2018
CVSS 6.5
EPSS 0.02
CVE-2017-7518 MEDIUM
Linux kernel <4.12 - Privilege Escalation
Jul 30, 2018
CVSS 5.5
EPSS 0.01
CVE-2017-15118 HIGH
qemu < 2.11 - Stack-based Buffer Overflow in NBD Server Export Name Handling
Jul 27, 2018
CVSS 8.3
EPSS 0.12
CVE-2017-15119 MEDIUM
QEMU < 2.11.0 - Denial of Service via Large NBD Option Requests
Jul 27, 2018
CVSS 5.8
EPSS 0.03
CVE-2017-18344 MEDIUM
Linux Kernel < 4.14.8 - Out-of-bounds Read via timer_create sigev_notify Field
Jul 26, 2018
CVSS 5.5
EPSS 0.03
CVE-2017-7526 MEDIUM
libgcrypt <1.7.8 - Cache Side Channel
Jul 26, 2018
CVSS 6.1
EPSS 0.04
CVE-2017-7481 CRITICAL
Ansible <2.3.1.0-2.4.0.0 - Code Injection
Jul 19, 2018
CVSS 9.8
EPSS 0.05
CVE-2017-7829 MEDIUM
Thunderbird < 52.5.2 - Email Sender Address Spoofing via Null Character Injection
Jun 11, 2018
CVSS 5.3
EPSS 0.02
CVE-2017-7826 CRITICAL
Debian Linux < 57.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.03
CVE-2017-7810 CRITICAL
Debian Linux < 56.0 - Memory Corruption
Jun 11, 2018
CVSS 9.8
EPSS 0.03
CVE-2017-18273 MEDIUM
ImageMagick 7.0.7-16 - Denial of Service via Infinite Loop in ReadTXTImage
May 18, 2018
CVSS 6.5
EPSS 0.02
CVE-2017-18271 MEDIUM
ImageMagick 7.0.7-16 - Denial of Service via Infinite Loop in ReadMIFFImage
May 18, 2018
CVSS 6.5
EPSS 0.02
CVE-2017-18267 MEDIUM
Poppler < 0.64.0 - Denial of Service via Infinite Recursion in FoFiType1C::cvtGlyph
May 10, 2018
CVSS 5.5
EPSS 0.02
CVE-2017-18266 HIGH
xdg-utils < 1.1.3 - Argument Injection via BROWSER Environment Variable
May 10, 2018
CVSS 8.8
EPSS 0.02
CVE-2017-2592 MEDIUM
oslo.middleware < 3.8.1, 3.19.1, 3.23.1 - Sensitive Information Disclosure in Error Logs
May 08, 2018
CVSS 5.9
EPSS 0.00
CVE-2017-17833 CRITICAL
OpenSLP 1.0.2 and 1.1.0 - Remote Code Execution or Denial of Service via Heap Memory Corruption
Apr 23, 2018
CVSS 9.8
EPSS 0.04
CVE-2017-13305 HIGH
Android - Out-of-bounds Read in Upstream Kernel Encrypted-keys
Apr 04, 2018
CVSS 7.1
EPSS 0.00
CVE-2017-7165 HIGH
Apple <11.2, <11.0.2, <7.2, <12.7.2 - RCE/DoS
Apr 03, 2018
CVSS 8.8
EPSS 0.03
CVE-2017-7161 HIGH
Safari < 11.0.2 - Remote Code Execution via WebKit Web Inspector
Apr 03, 2018
CVSS 8.8
EPSS 0.02
CVE-2017-7153 MEDIUM
Apple Products <11.2 - Info Disclosure
Apr 03, 2018
CVSS 6.1
EPSS 0.02