Canonical

Ubuntu Pro 16.04 LTS

5033 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2021-31829

  • EPSS 0.08%
  • Veröffentlicht 06.05.2021 16:15:07
  • Zuletzt bearbeitet 21.11.2024 06:06:18

kernel/bpf/verifier.c in the Linux kernel through 5.12.1 performs undesirable speculative loads, leading to disclosure of stack content via side-channel attacks, aka CID-801c6058d14a. The specific concern is not protecting the BPF stack area against ...

5.5

CVE-2021-29155

  • EPSS 0.21%
  • Veröffentlicht 20.04.2021 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:00:47

An issue was discovered in the Linux kernel through 5.11.x. kernel/bpf/verifier.c performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information f...

7.1

CVE-2021-3506

  • EPSS 0.14%
  • Veröffentlicht 19.04.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 06:21:42

An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in versions before 5.12.0-rc4. A bounds check failure allows a local attacker to gain access to out-of-bounds memory leading to a system cras...

5.5

CVE-2020-36322

  • EPSS 0.04%
  • Veröffentlicht 14.04.2021 06:15:12
  • Zuletzt bearbeitet 21.11.2024 05:29:16

An issue was discovered in the FUSE filesystem implementation in the Linux kernel before 5.10.6, aka CID-5d069dbe8aaf. fuse_do_getattr() calls make_bad_inode() in inappropriate situations, causing a system crash. NOTE: the original fix for this vulne...

5.5

CVE-2020-36310

  • EPSS 0.1%
  • Veröffentlicht 07.04.2021 00:15:13
  • Zuletzt bearbeitet 21.11.2024 05:29:14

An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/svm/svm.c allows a set_memory_region_test infinite loop for certain nested page faults, aka CID-e72436bc3a52.

6.5

CVE-2021-28688

  • EPSS 0.13%
  • Veröffentlicht 06.04.2021 19:15:14
  • Zuletzt bearbeitet 21.11.2024 06:00:08

The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. This initialization went too far and may under certain conditions also overwrite pointers which are in need of clean...

5.5

CVE-2021-29650

  • EPSS 0.03%
  • Veröffentlicht 30.03.2021 21:15:14
  • Zuletzt bearbeitet 21.11.2024 06:01:34

An issue was discovered in the Linux kernel before 5.11.11. The netfilter subsystem allows attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assi...

7.2

CVE-2021-28972

  • EPSS 0.06%
  • Veröffentlicht 22.03.2021 17:15:15
  • Zuletzt bearbeitet 21.11.2024 06:00:28

In drivers/pci/hotplug/rpadlpar_sysfs.c in the Linux kernel through 5.11.8, the RPA PCI Hotplug driver has a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel st...

4.7

CVE-2021-28964

  • EPSS 0.09%
  • Veröffentlicht 22.03.2021 09:15:13
  • Zuletzt bearbeitet 21.11.2024 06:00:27

A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (BUG) because of a lack of locking on an extent buffer before a cloning operation, aka CID-dbcc7d...

6

CVE-2020-27171

  • EPSS 0.18%
  • Veröffentlicht 20.03.2021 22:15:12
  • Zuletzt bearbeitet 21.11.2024 05:20:48

An issue was discovered in the Linux kernel before 5.11.8. kernel/bpf/verifier.c has an off-by-one error (with a resultant integer underflow) affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spect...