Canonical

Ubuntu Pro 14.04 LTS

4792 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2019-17133

  • EPSS 1.56%
  • Veröffentlicht 04.10.2019 12:15:11
  • Zuletzt bearbeitet 21.11.2024 04:31:45

In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.

7.5

CVE-2019-17075

  • EPSS 1.19%
  • Veröffentlicht 01.10.2019 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:31:39

An issue was discovered in write_tpt_entry in drivers/infiniband/hw/cxgb4/mem.c in the Linux kernel through 5.3.2. The cxgb4 driver is directly calling dma_map_single (a DMA function) from a stack variable. This could allow an attacker to trigger a D...

3.3

CVE-2019-17056

  • EPSS 0.07%
  • Veröffentlicht 01.10.2019 14:15:55
  • Zuletzt bearbeitet 21.11.2024 04:31:36

llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176.

3.3

CVE-2019-17055

  • EPSS 0.09%
  • Veröffentlicht 01.10.2019 14:15:51
  • Zuletzt bearbeitet 21.11.2024 04:31:36

base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21.

3.3

CVE-2019-17054

  • EPSS 0.1%
  • Veröffentlicht 01.10.2019 14:15:46
  • Zuletzt bearbeitet 21.11.2024 04:31:36

atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-6cc03e8aa36c.

3.3

CVE-2019-17053

  • EPSS 0.1%
  • Veröffentlicht 01.10.2019 14:15:42
  • Zuletzt bearbeitet 21.11.2024 04:31:36

ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7.

3.3

CVE-2019-17052

  • EPSS 0.09%
  • Veröffentlicht 01.10.2019 14:15:40
  • Zuletzt bearbeitet 21.11.2024 04:31:36

ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel 3.16 through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-0614e2b73768.

7.5

CVE-2019-16921

  • EPSS 0.27%
  • Veröffentlicht 27.09.2019 13:15:10
  • Zuletzt bearbeitet 21.11.2024 04:31:20

In the Linux kernel before 4.17, hns_roce_alloc_ucontext in drivers/infiniband/hw/hns/hns_roce_main.c does not initialize the resp data structure, which might allow attackers to obtain sensitive information from kernel stack memory, aka CID-df7e40425...

9.8

CVE-2019-16746

  • EPSS 2.6%
  • Veröffentlicht 24.09.2019 06:15:10
  • Zuletzt bearbeitet 21.11.2024 04:31:06

An issue was discovered in net/wireless/nl80211.c in the Linux kernel through 5.2.17. It does not check the length of variable elements in a beacon head, leading to a buffer overflow.

7.5

CVE-2019-16714

  • EPSS 1.12%
  • Veröffentlicht 23.09.2019 12:15:10
  • Zuletzt bearbeitet 21.11.2024 04:31:02

In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized.