Canonical

Ubuntu Pro 14.04 LTS

4792 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2018-17977

  • EPSS 0.12%
  • Veröffentlicht 08.10.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:55:19

The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTO_AH packets, and IPPROTO_IP packets, which allows local users to cause a denial of service (memory consumption and system hang) by leveraging root access to e...

7.1

CVE-2018-18021

  • EPSS 0.09%
  • Veröffentlicht 07.10.2018 06:29:00
  • Zuletzt bearbeitet 21.11.2024 03:55:23

arch/arm64/kvm/guest.c in KVM in the Linux kernel before 4.18.12 on the arm64 platform mishandles the KVM_SET_ON_REG ioctl. This is exploitable by attackers who can create virtual machines. An attacker can arbitrarily redirect the hypervisor flow of ...

7.8

CVE-2018-10853

  • EPSS 0.03%
  • Veröffentlicht 11.09.2018 14:29:01
  • Zuletzt bearbeitet 21.11.2024 03:42:08

A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process co...

5.5

CVE-2018-7754

  • EPSS 0.05%
  • Veröffentlicht 10.08.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:40

The aoedisk_debugfs_show function in drivers/block/aoe/aoeblk.c in the Linux kernel through 4.16.4rc4 allows local users to obtain sensitive address information by reading "ffree: " lines in a debugfs file.

5.5

CVE-2018-5953

  • EPSS 0.12%
  • Veröffentlicht 07.08.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:09:44

The swiotlb_print_info function in lib/swiotlb.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by reading dmesg data from a "software IO TLB" printk call.

5.5

CVE-2018-5995

  • EPSS 0.05%
  • Veröffentlicht 07.08.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:09:50

The pcpu_embed_first_chunk function in mm/percpu.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by reading dmesg data from a "pages/cpu" printk call.

5.5

CVE-2018-10883

  • EPSS 0.05%
  • Veröffentlicht 30.07.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:13

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.

5.5

CVE-2018-10882

Exploit
  • EPSS 0.06%
  • Veröffentlicht 27.07.2018 18:29:01
  • Zuletzt bearbeitet 21.11.2024 03:42:13

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound write in in fs/jbd2/transaction.c code, a denial of service, and a system crash by unmounting a crafted ext4 filesystem image.

7.1

CVE-2018-14609

Exploit
  • EPSS 0.31%
  • Veröffentlicht 27.07.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:24

An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in __del_reloc_root() in fs/btrfs/relocation.c when mounting a crafted btrfs image, related to removing reloc rb_trees when reloc control has not bee...

7.1

CVE-2018-14610

Exploit
  • EPSS 0.09%
  • Veröffentlicht 27.07.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:24

An issue was discovered in the Linux kernel through 4.17.10. There is out-of-bounds access in write_extent_buffer() when mounting and operating a crafted btrfs image, because of a lack of verification that each block group has a corresponding chunk a...