Canonical

Ubuntu 14.04 LTS

821 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2018-1068

  • EPSS 0.03%
  • Veröffentlicht 16.03.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:06

A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.

5.5

CVE-2018-7757

  • EPSS 0.1%
  • Veröffentlicht 08.03.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:40

Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (memory consumption) via many read accesses to files in the /sys/class/sas_phy...

5.5

CVE-2018-7755

Exploit
  • EPSS 0.01%
  • Veröffentlicht 08.03.2018 07:29:01
  • Zuletzt bearbeitet 21.11.2024 04:12:40

An issue was discovered in the fd_locked_ioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a kernel pointer to user memory in response to the FDGETPRM ioctl. An attacker can send the FDGETPRM ioc...

5.5

CVE-2017-18216

  • EPSS 0.05%
  • Veröffentlicht 05.03.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:35

In fs/ocfs2/cluster/nodemanager.c in the Linux kernel before 4.15, local users can cause a denial of service (NULL pointer dereference and BUG) because a required mutex is not used.

7.1

CVE-2018-1066

  • EPSS 5.04%
  • Veröffentlicht 02.03.2018 08:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:06

The Linux kernel before version 4.11 is vulnerable to a NULL pointer dereference in fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allows an attacker controlling a CIFS server to kernel panic a client that has this server mounted, because an empty Tar...

5.5

CVE-2017-18208

  • EPSS 0.05%
  • Veröffentlicht 01.03.2018 05:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:34

The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED for a DAX mapping.

4.7

CVE-2017-18203

  • EPSS 0.05%
  • Veröffentlicht 27.02.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:33

The dm_get_from_kobject function in drivers/md/dm.c in the Linux kernel before 4.14.3 allow local users to cause a denial of service (BUG) by leveraging a race condition with __dm_destroy during creation and removal of DM devices.

5.5

CVE-2017-18204

  • EPSS 0.07%
  • Veröffentlicht 27.02.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:33

The ocfs2_setattr function in fs/ocfs2/file.c in the Linux kernel before 4.14.2 allows local users to cause a denial of service (deadlock) via DIO requests.

5.5

CVE-2018-7492

Exploit
  • EPSS 0.07%
  • Veröffentlicht 26.02.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:14

A NULL pointer dereference was found in the net/rds/rdma.c __rds_rdma_map() function in the Linux kernel before 4.14.7 allowing local attackers to cause a system panic and a denial-of-service, related to RDS_GET_MR and RDS_GET_MR_FOR_DEST.

7.8

CVE-2018-6927

  • EPSS 0.04%
  • Veröffentlicht 12.02.2018 19:29:01
  • Zuletzt bearbeitet 21.11.2024 04:11:26

The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value.