|
273621
|
6.2 |
MEDIUM
Local
|
linux
novell
|
linux_kernel
suse_linux_enterprise_debuginfo
suse_linux_enterprise_real_time_extension
|
Memory leak in the cuse_channel_release function in fs/fuse/cuse.c in the Linux kernel before 4.4 allows local users to cause a denial of service (memory consumption) or possibly have unspecified oth…
|
CWE-399
Resource Management Errors
|
CVE-2015-1339
|
2024-11-21 11:25 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273622
|
6.5 |
MEDIUM
Network
|
debian
libtiff
|
debian_linux
libtiff
|
The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1547
|
2024-11-21 11:25 |
2016-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273623
|
- |
|
canonical
|
ubuntu_linux
lxcfs
|
The do_write_pids function in lxcfs.c in LXCFS before 0.12 does not properly check permissions, which allows local users to gain privileges by writing a pid to the tasks file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1344
|
2024-11-21 11:25 |
2015-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273624
|
- |
|
canonical
|
ubuntu_linux
lxcfs
|
LXCFS before 0.12 does not properly enforce directory escapes, which might allow local users to gain privileges by (1) querying or (2) updating a cgroup.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1342
|
2024-11-21 11:25 |
2015-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273625
|
- |
|
google
|
chrome
|
The PDF viewer in Google Chrome before 46.0.2490.86 does not properly restrict scripting messages and API exposure, which allows remote attackers to bypass the Same Origin Policy via an unintended em…
|
CWE-20
Improper Input Validation
|
CVE-2015-1302
|
2024-11-21 11:25 |
2015-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273626
|
- |
|
google
|
chrome
|
object-observe.js in Google V8, as used in Google Chrome before 45.0.2454.101, does not properly restrict method calls on access-checked objects, which allows remote attackers to bypass the Same Orig…
|
CWE-284
Improper Access Control
|
CVE-2015-1304
|
2024-11-21 11:25 |
2015-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273627
|
- |
|
google
|
chrome
|
bindings/core/v8/V8DOMWrapper.h in Blink, as used in Google Chrome before 45.0.2454.101, does not perform a rethrow action to propagate information about a cross-context exception, which allows remot…
|
CWE-20
Improper Input Validation
|
CVE-2015-1303
|
2024-11-21 11:25 |
2015-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273628
|
- |
|
simpestreams_project
canonical
|
simplestreams
ubuntu_linux
|
Simple Streams (simplestreams) does not properly verify the GPG signatures of disk image files, which allows remote mirror servers to spoof disk images and have unspecified other impact via a 403 (ak…
|
CWE-20
Improper Input Validation
|
CVE-2015-1337
|
2024-11-21 11:25 |
2015-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273629
|
- |
|
apport_project
canonical
|
apport
ubuntu_linux
|
kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privileges via a (1) symlink or (2) hard link attack on /var/crash/vmcore.lo…
|
CWE-59
Link Following
|
CVE-2015-1338
|
2024-11-21 11:25 |
2015-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273630
|
- |
|
linuxcontainers
canonical
|
lxc
ubuntu_linux
|
lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source.
|
CWE-59
Link Following
|
CVE-2015-1335
|
2024-11-21 11:25 |
2015-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
