GCVE - cpe:2.3:o:ubuntu:linux:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:ubuntu:linux:*:*:*:*:*:*:*:*

part: o version: * update: *

Vendor	Ubuntu (`54779f98-997b-58ec-a561-52dfa4086aae`)
Product	Linux (`30cf0eb7-eccd-5871-a244-9b2eb2b4dc91`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2011-4613`	vulnerable	2026-06-03 14:31:25.623115	Details available The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restrictions by associating stdin with a file that is misinterpreted as the console TTY. Published: 2014-02-05T19:00:00.000Z Updated: 2024-08-07T00:09:19.491Z Open on db.gcve.eu Reference links http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652249 http://www.ubuntu.com/usn/USN-1349-1 http://www.debian.org/security/2011/dsa-2364	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-1573`	vulnerable	2026-06-03 14:29:36.574705	Details available xvfb-run 1.6.1 in Debian GNU/Linux, Ubuntu, Fedora 10, and possibly other operating systems place the magic cookie (MCOOKIE) on the command line, which allows local users to gain privileges by listing the process and its arguments. Published: 2009-05-06T17:00:00.000Z Updated: 2024-08-07T05:20:34.939Z Open on db.gcve.eu Reference links http://www.openwall.com/lists/oss-security/2009/05/05/2 http://www.openwall.com/lists/oss-security/2009/05/05/4 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=526678 http://secunia.com/advisories/39834 http://www.securityfocus.com/bid/34828	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-7236`	not_vulnerable	2026-06-03 14:27:55.295646	Details available The default configuration of xterm on Debian GNU/Linux sid and possibly Ubuntu enables the allowWindowOps resource, which allows user-assisted attackers to execute arbitrary code or have unspecified other impact via escape sequences. Published: 2009-01-02T18:00:00.000Z Updated: 2024-08-07T20:57:40.715Z Open on db.gcve.eu Reference links http://secunia.com/advisories/33388 https://usn.ubuntu.com/703-1/ http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=510030 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=384593	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.