Canonical

Ubuntu Pro 16.04 LTS

5033 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7

CVE-2023-4244

  • EPSS 0.02%
  • Veröffentlicht 06.09.2023 14:15:11
  • Zuletzt bearbeitet 13.02.2025 17:17:16

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Due to a race condition between nf_tables netlink control plane transaction and nft_set element garbage colle...

5.5

CVE-2023-4459

  • EPSS 0.01%
  • Veröffentlicht 21.08.2023 19:15:09
  • Zuletzt bearbeitet 21.11.2024 08:35:12

A NULL pointer dereference flaw was found in vmxnet3_rq_cleanup in drivers/net/vmxnet3/vmxnet3_drv.c in the networking sub-component in vmxnet3 in the Linux Kernel. This issue may allow a local attacker with normal user privilege to cause a denial of...

7.1

CVE-2023-4387

  • EPSS 0.01%
  • Veröffentlicht 16.08.2023 19:15:10
  • Zuletzt bearbeitet 03.06.2025 03:15:25

A use-after-free flaw was found in vmxnet3_rq_alloc_rx_buf in drivers/net/vmxnet3/vmxnet3_drv.c in VMware's vmxnet3 ethernet NIC driver in the Linux Kernel. This issue could allow a local attacker to crash the system due to a double-free while cleani...

5.5

CVE-2023-4385

  • EPSS 0.01%
  • Veröffentlicht 16.08.2023 17:15:11
  • Zuletzt bearbeitet 21.11.2024 08:34:58

A NULL pointer dereference flaw was found in dbFree in fs/jfs/jfs_dmap.c in the journaling file system (JFS) in the Linux Kernel. This issue may allow a local attacker to crash the system due to a missing sanity check.

7.8

CVE-2023-40283

  • EPSS 0.01%
  • Veröffentlicht 14.08.2023 03:15:09
  • Zuletzt bearbeitet 25.02.2026 18:17:01

An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.

6.5

CVE-2022-40982

Exploit
  • EPSS 0.73%
  • Veröffentlicht 11.08.2023 03:15:14
  • Zuletzt bearbeitet 21.11.2024 07:22:21

Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

0

CVE-2023-4128

  • EPSS 0.04%
  • Veröffentlicht 10.08.2023 17:15:12
  • Zuletzt bearbeitet 14.11.2023 12:15:20

Rejected reason: ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-4206, CVE-2023-4207, CVE-2023-4208. Reason: This record is a duplicate of CVE-2023-4206, CVE-2023-4207, CVE-2023-4208. Notes: All CVE users should reference CVE-2023-4206...

4.7

CVE-2023-20569

Exploit
  • EPSS 1.95%
  • Veröffentlicht 08.08.2023 18:15:11
  • Zuletzt bearbeitet 21.11.2024 07:41:08

A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure. ...

5.5

CVE-2023-20588

  • EPSS 6.7%
  • Veröffentlicht 08.08.2023 18:15:11
  • Zuletzt bearbeitet 21.11.2024 07:41:10

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. 

4.6

CVE-2023-4010

Exploit
  • EPSS 0.02%
  • Veröffentlicht 31.07.2023 17:15:10
  • Zuletzt bearbeitet 21.11.2024 08:34:13

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb_giveback_urb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return ...