Canonical

Ubuntu Pro 14.04 LTS

4792 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2019-11833

  • EPSS 0.02%
  • Veröffentlicht 15.05.2019 13:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:51

fs/ext4/extents.c in the Linux kernel through 5.1.2 does not zero out the unused memory region in the extent tree block, which might allow local users to obtain sensitive information by reading uninitialized data in the filesystem.

3.3

CVE-2019-11884

  • EPSS 0.05%
  • Veröffentlicht 10.05.2019 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:57

The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a...

7.8

CVE-2019-2054

  • EPSS 0.35%
  • Veröffentlicht 08.05.2019 17:29:01
  • Zuletzt bearbeitet 21.11.2024 04:40:08

In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead to local escalation of privilege with no additional execution privileges needed. User ...

9.3

CVE-2018-20836

  • EPSS 4.06%
  • Veröffentlicht 07.05.2019 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:02:16

An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free.

7.8

CVE-2019-11810

  • EPSS 1.84%
  • Veröffentlicht 07.05.2019 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:48

An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasas_create_frame_pool() fails in megasas_alloc_cmds() in drivers/scsi/megaraid/megaraid_sas_base.c. This causes a Denial of Service, related to a ...

7

CVE-2019-11811

  • EPSS 0.07%
  • Veröffentlicht 07.05.2019 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:48

An issue was discovered in the Linux kernel before 5.0.4. There is a use-after-free upon attempted read access to /proc/ioports after the ipmi_si module is removed, related to drivers/char/ipmi/ipmi_si_intf.c, drivers/char/ipmi/ipmi_si_mem_io.c, and ...

10

CVE-2019-11683

  • EPSS 10.03%
  • Veröffentlicht 02.05.2019 17:29:02
  • Zuletzt bearbeitet 21.11.2024 04:21:35

udp_gro_receive_segment in net/ipv4/udp_offload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to cause a denial of service (slab-out-of-bounds memory corruption) or possibly have unspecified other impact via UDP packets with a 0 pay...

5.5

CVE-2018-20509

  • EPSS 0.05%
  • Veröffentlicht 30.04.2019 18:29:07
  • Zuletzt bearbeitet 21.11.2024 04:01:38

The print_binder_ref_olocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading " ref *desc *node" lines in a debugfs file.

5.5

CVE-2018-20510

  • EPSS 0.06%
  • Veröffentlicht 30.04.2019 18:29:07
  • Zuletzt bearbeitet 21.11.2024 04:01:38

The print_binder_transaction_ilocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "*from *code *flags" lines in a debugfs file.

0

CVE-2019-3892

  • EPSS 0.24%
  • Veröffentlicht 30.04.2019 07:15:09
  • Zuletzt bearbeitet 07.11.2023 03:10:16

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-11599. Reason: This candidate is a reservation duplicate of CVE-2019-11599. Notes: All CVE users should reference CVE-2019-11599 instead of this candidate. All references and des...