Canonical

Ubuntu Pro 14.04 LTS

4792 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-28328

  • EPSS 0.02%
  • Veröffentlicht 19.04.2023 23:15:07
  • Zuletzt bearbeitet 19.03.2025 16:15:21

A NULL pointer dereference flaw was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into the device. This flaw allows a local user to crash ...

4.7

CVE-2023-1382

  • EPSS 0.02%
  • Veröffentlicht 19.04.2023 23:15:06
  • Zuletzt bearbeitet 19.03.2025 16:15:17

A data race flaw was found in the Linux kernel, between where con is allocated and con->sock is set. This issue leads to a NULL pointer dereference when accessing con->sock->sk in net/tipc/topsrv.c in the tipc protocol in the Linux kernel.

5.5

CVE-2023-2162

  • EPSS 0.01%
  • Veröffentlicht 19.04.2023 20:15:12
  • Zuletzt bearbeitet 19.03.2025 16:15:21

A use-after-free vulnerability was found in iscsi_sw_tcp_session_create in drivers/scsi/iscsi_tcp.c in SCSI sub-component in the Linux Kernel. In this flaw an attacker could leak kernel internal information.

7.8

CVE-2023-1829

  • EPSS 0.25%
  • Veröffentlicht 12.04.2023 12:15:07
  • Zuletzt bearbeitet 13.02.2025 17:16:00

A use-after-free vulnerability in the Linux Kernel traffic control index filter (tcindex) can be exploited to achieve local privilege escalation. The tcindex_delete function which does not properly deactivate filters in case of a perfect hashes while...

7

CVE-2023-1989

  • EPSS 0.02%
  • Veröffentlicht 11.04.2023 21:15:15
  • Zuletzt bearbeitet 21.11.2024 07:40:17

A use-after-free flaw was found in btsdio_remove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw, a call to btsdio_remove with an unfinished job, may cause a race problem leading to a UAF on hdev devices.

6.5

CVE-2023-30456

  • EPSS 0.01%
  • Veröffentlicht 10.04.2023 02:15:06
  • Zuletzt bearbeitet 19.03.2025 16:15:22

An issue was discovered in arch/x86/kvm/vmx/nested.c in the Linux kernel before 6.2.8. nVMX on x86_64 lacks consistency checks for CR0 and CR4.

5.5

CVE-2020-11935

  • EPSS 0.04%
  • Veröffentlicht 07.04.2023 02:15:07
  • Zuletzt bearbeitet 21.11.2024 04:58:56

It was discovered that aufs improperly managed inode reference counts in the vfsub_dentry_open() method. A local attacker could use this vulnerability to cause a denial of service attack.

7.8

CVE-2023-1670

  • EPSS 0.05%
  • Veröffentlicht 30.03.2023 23:15:06
  • Zuletzt bearbeitet 14.02.2025 16:15:32

A flaw use after free in the Linux kernel Xircom 16-bit PCMCIA (PC-card) Ethernet driver was found.A local user could use this flaw to crash the system or potentially escalate their privileges on the system.

6.6

CVE-2023-1073

  • EPSS 0.02%
  • Veröffentlicht 27.03.2023 21:15:10
  • Zuletzt bearbeitet 23.04.2025 17:16:24

A memory corruption flaw was found in the Linux kernel’s human interface device (HID) subsystem in how a user inserts a malicious USB device. This flaw allows a local user to crash or potentially escalate their privileges on the system.

5.5

CVE-2023-1074

  • EPSS 0.01%
  • Veröffentlicht 27.03.2023 21:15:10
  • Zuletzt bearbeitet 19.03.2025 16:15:16

A memory leak flaw was found in the Linux kernel's Stream Control Transmission Protocol. This issue may occur when a user starts a malicious networking service and someone connects to this service. This could allow a local user to starve resources, c...