CVE-2026-10037
- EPSS 0.12%
- Veröffentlicht 08.07.2026 21:18:56
- Zuletzt bearbeitet 09.07.2026 14:16:26
A sandbox escape vulnerability exists in the OpenJDK packages provided in Ubuntu. The .jar MIME handlers installed by these packages execute files marked as executable when the mailcap package is installed. A compromised or malicious sandboxed applic...
- EPSS 0.11%
- Veröffentlicht 22.06.2026 15:43:33
- Zuletzt bearbeitet 22.06.2026 20:18:53
An issue was discovered in Canonical ADSys upstream versions through v0.16.2. During Active Directory Certificate Services (AD CS) certificate auto-enrollment via the vendored Samba client script (internal/policies/certificate/python/vendor_samba/gp/...
CVE-2026-47336
- EPSS 0.09%
- Veröffentlicht 28.05.2026 18:29:01
- Zuletzt bearbeitet 29.05.2026 21:23:58
Ubuntu Linux 6.8 contains SAUCE patches with a possible use of an uninitialized variable in AppArmor AF_INET/AF_INET6 socket mediation code. The bug can be triggered by an unprivileged local user and could result in incorrect fine-grained mediation o...
CVE-2026-47335
- EPSS 0.1%
- Veröffentlicht 28.05.2026 18:28:49
- Zuletzt bearbeitet 29.05.2026 21:24:14
Ubuntu Linux 6.8 contains SAUCE patches with a possible NULL pointer dereference in the handling of AppArmor notifications. The bug can be triggered by an unprivileged local user. This can lead to a kernel panic.
CVE-2026-47333
- EPSS 0.11%
- Veröffentlicht 28.05.2026 18:28:28
- Zuletzt bearbeitet 09.06.2026 14:40:46
Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which can potentially incorrectly compute the size of an internal buffer, leading to a heap memory out-of-bounds read in notification handling code. The bug can be triggered by an unprivil...
CVE-2026-47331
- EPSS 0.11%
- Veröffentlicht 28.05.2026 18:28:08
- Zuletzt bearbeitet 09.06.2026 14:39:52
Ubuntu Linux 6.8 contains AppArmor SAUCE patches which fail to acquire a lock when modifying a linked list. An unprivileged local user could trigger the race condition that can lead to a use-after-free (UAF) and, theoretically, arbitrary code executi...
CVE-2026-47328
- EPSS 0.09%
- Veröffentlicht 28.05.2026 18:27:33
- Zuletzt bearbeitet 09.06.2026 16:33:18
Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly attempt to free a pointer which was not previously kmalloc()d, while at the same time leaking allocated memory. The bug can be triggered by an unprivileged local user and...
CVE-2026-47327
- EPSS 0.09%
- Veröffentlicht 28.05.2026 18:27:20
- Zuletzt bearbeitet 09.06.2026 14:27:03
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AppArmor notifications. The bug can be triggered by an unprivileged local user. This can lead to a kernel oops.
CVE-2026-47326
- EPSS 0.09%
- Veröffentlicht 28.05.2026 18:26:58
- Zuletzt bearbeitet 09.06.2026 14:23:39
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a memory leak in the handling of big responses to AppArmor notifications. The bug can be triggered by an unprivileged local user. The memory leak could lead to resource exhaustion.
CVE-2025-15480
- EPSS 0.31%
- Veröffentlicht 09.04.2026 16:16:25
- Zuletzt bearbeitet 17.04.2026 20:18:08
In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure, if a user submitted a bug report to Launchpad, ubuntu-desktop-provision could include the user's password has...