Canonical

Ubuntu Pro 16.04 LTS

5033 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2023-32269

  • EPSS 0.01%
  • Veröffentlicht 05.05.2023 17:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:40

An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/af_netrom.c, there is a use-after-free because accept is also allowed for a successfully connected AF_NETROM socket. However, in order for an attacker to exploit this, the syste...

7.8

CVE-2023-31436

  • EPSS 0.04%
  • Veröffentlicht 28.04.2023 02:15:09
  • Zuletzt bearbeitet 21.11.2024 08:01:51

qfq_change_class in net/sched/sch_qfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQ_MIN_LMAX.

4.7

CVE-2023-0458

  • EPSS 0.14%
  • Veröffentlicht 26.04.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 07:37:13

A speculative pointer dereference problem exists in the Linux Kernel on the do_prlimit() function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend ...

7.5

CVE-2023-0045

Exploit
  • EPSS 0.28%
  • Veröffentlicht 25.04.2023 23:15:09
  • Zuletzt bearbeitet 13.02.2025 17:15:52

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ib_prctl_set  function updates the Thread Information Flags (TIFs) for the task and updates the SPEC_CTRL MSR on the function __speculation_ctr...

4.4

CVE-2023-2269

  • EPSS 0.03%
  • Veröffentlicht 25.04.2023 21:15:10
  • Zuletzt bearbeitet 21.11.2024 07:58:16

A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in drivers/md/dm-ioctl.c in the Linux Kernel Device Mapper-Multipathing sub-component.

7.8

CVE-2023-2007

  • EPSS 0.04%
  • Veröffentlicht 24.04.2023 23:15:18
  • Zuletzt bearbeitet 21.11.2024 07:57:45

The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges a...

5.5

CVE-2023-31085

  • EPSS 0.01%
  • Veröffentlicht 24.04.2023 06:15:08
  • Zuletzt bearbeitet 21.11.2024 08:01:23

An issue was discovered in drivers/mtd/ubi/cdev.c in the Linux kernel 6.2. There is a divide-by-zero error in do_div(sz,mtd->erasesize), used indirectly by ctrl_cdev_ioctl, when mtd->erasesize is 0.

5.5

CVE-2023-31082

  • EPSS 0.05%
  • Veröffentlicht 24.04.2023 06:15:07
  • Zuletzt bearbeitet 21.11.2024 08:01:22

An issue was discovered in drivers/tty/n_gsm.c in the Linux kernel 6.2. There is a sleeping function called from an invalid context in gsmld_write, which will block the kernel. Note: This has been disputed by 3rd parties as not a valid vulnerability.

4.7

CVE-2023-31083

  • EPSS 0.01%
  • Veröffentlicht 24.04.2023 06:15:07
  • Zuletzt bearbeitet 03.11.2025 22:16:17

An issue was discovered in drivers/bluetooth/hci_ldisc.c in the Linux kernel 6.2. In hci_uart_tty_ioctl, there is a race condition between HCIUARTSETPROTO and HCIUARTGETPROTO. HCI_UART_PROTO_SET is set before hu->proto is set. A NULL pointer derefere...

5.5

CVE-2023-31084

  • EPSS 0.01%
  • Veröffentlicht 24.04.2023 06:15:07
  • Zuletzt bearbeitet 18.03.2025 20:15:19

An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNING. In dvb_frontend_get_event, wait_event_interruptible is called; the condition is dvb_frontend_test...