CVEs (1,928)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
5Canonical DebianMozilla+2 more12Debian Linux Enterprise Linux AusEnterprise Linux Desktop+9 moreApr 29, 2026 Feb 19, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 Use-after-free vulnerability in the nsImageLoadingContent::OnStopContainer function in Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird before 17.0.3, Thunderbird ESR 17.x before 17.0.3, and SeaMo...Show more |
4Canonical MozillaOpensuse+1 more9Enterprise Linux Aus Enterprise Linux DesktopEnterprise Linux Eus+6 moreApr 29, 2026 Feb 19, 2013 N/A· v4 N/A· v3 5.8 MEDIUM· v2 The RasterImage::DrawFrameTo function in Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 allows remote attackers to obtain sensitive information from process memory or cause a denial of...Show more |
4Adobe OpensuseRedhat+1 more9Acrobat Acrobat ReaderEnterprise Linux Desktop+6 moreApr 21, 2026 Feb 14, 2013 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allows remote attackers to execute arbitrary code via a crafted PDF document, as exploited in the wild in February...Show more |
4Adobe OpensuseRedhat+1 more9Acrobat Acrobat ReaderEnterprise Linux Desktop+6 moreApr 21, 2026 Feb 14, 2013 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document, as expl...Show more |
3Canonical Qxl Graphics Driver ProjectRedhat5Enterprise Linux Desktop Enterprise Linux ServerEnterprise Linux Workstation+2 moreApr 29, 2026 Feb 13, 2013 N/A· v4 N/A· v3 2.1 LOW· v2 The QXL display driver in QXL Virtual GPU 0.1.0 allows local users to cause a denial of service (guest crash or hang) via a SPICE connection that prevents other threads from obtaining the qemu_mutex mutex. NOTE: some of...Show more |
7Canonical DebianFedoraproject+4 more12Debian Linux Enterprise Linux DesktopEnterprise Linux Eus+9 moreApr 29, 2026 Feb 13, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a denial of service (g...Show more |
5Canonical FedoraprojectOpensuse+2 more11Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+8 moreApr 29, 2026 Feb 8, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in the virNetMessageFree function in rpc/virnetserverclient.c in libvirt 1.0.x before 1.0.2, 0.10.2 before 0.10.2.3, 0.9.11 before 0.9.11.9, and 0.9.6 before 0.9.6.4 allows remote attackers t...Show more |
4Canonical MozillaOracle+1 more15Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+12 moreApr 29, 2026 Feb 8, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The TLS implementation in Mozilla Network Security Services (NSS) does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which allows...Show more |
3Canonical IscRedhat8Bind Enterprise Linux DesktopEnterprise Linux Hpc Node+5 moreApr 29, 2026 Jan 25, 2013 N/A· v4 N/A· v3 7.1 HIGH· v2 ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service (ass...Show more |
4Canonical MariadbOracle+1 more7Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+4 moreApr 29, 2026 Jan 17, 2013 N/A· v4 N/A· v3 6.6 MEDIUM· v2 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows local users to affect confidentiality and integrity via unknown vectors related to Server Replication. |
4Canonical MariadbOracle+1 more7Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+4 moreApr 29, 2026 Jan 17, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Information Schema. |
4Canonical MariadbOracle+1 more7Enterprise Linux Enterprise Linux DesktopEnterprise Linux Eus+4 moreApr 29, 2026 Jan 17, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote attackers to affect availability via unknown vectors related to Server Locking. |
4Canonical MariadbOracle+1 more7Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+4 moreApr 29, 2026 Jan 17, 2013 N/A· v4 5.4 MEDIUM· v3 5.5 MEDIUM· v2 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.1.28 and earlier, allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Serve...Show more |
4Canonical MariadbOracle+1 more7Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+4 moreApr 29, 2026 Jan 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier and 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer. |
4Canonical MariadbOracle+1 more7Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+4 moreApr 29, 2026 Jan 17, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier and 5.5.28 and earlier allows remote attackers to affect availability via unknown vectors. |
4Canonical MariadbOracle+1 more7Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+4 moreApr 29, 2026 Jan 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors. |
4Canonical MariadbOracle+1 more7Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+4 moreApr 29, 2026 Jan 17, 2013 N/A· v4 N/A· v3 4.0 MEDIUM· v2 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier and 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB. |
5Canonical MozillaOpensuse+2 more14Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+11 moreApr 29, 2026 Jan 13, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.1, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x b...Show more |
5Canonical MozillaOpensuse+2 more13Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+10 moreApr 29, 2026 Jan 13, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 Stack-based buffer overflow in the Canvas implementation in Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 17.x before 17.0.2, and SeaMonkey before 2.15 allows rem...Show more |
5Canonical MozillaOpensuse+2 more14Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+11 moreApr 29, 2026 Jan 13, 2013 N/A· v4 N/A· v3 10.0 HIGH· v2 The nsSVGPathElement::GetPathLengthScale function in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.1, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17....Show more |