Canonical

Ubuntu Pro 18.04 LTS

4807 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2024-23849

  • EPSS 0.02%
  • Veröffentlicht 23.01.2024 09:15:36
  • Zuletzt bearbeitet 04.11.2025 19:16:54

In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off-by-one error for an RDS_MSG_RX_DGRAM_TRACE_MAX comparison, resulting in out-of-bounds access.

5.5

CVE-2024-23851

  • EPSS 0.03%
  • Veröffentlicht 23.01.2024 09:15:36
  • Zuletzt bearbeitet 04.11.2025 19:16:55

copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes, and crash, because of a missing param_kernel->data_size check. This is related to ctl_ioctl.

5.5

CVE-2024-23848

  • EPSS 0.01%
  • Veröffentlicht 23.01.2024 09:15:35
  • Zuletzt bearbeitet 12.05.2026 12:16:17

In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c.

7.5

CVE-2023-39197

  • EPSS 0.04%
  • Veröffentlicht 23.01.2024 03:15:11
  • Zuletzt bearbeitet 21.11.2024 08:14:53

An out-of-bounds read vulnerability was found in Netfilter Connection Tracking (conntrack) in the Linux kernel. This flaw allows a remote user to disclose sensitive information via the DCCP protocol.

7.1

CVE-2024-0775

  • EPSS 0.02%
  • Veröffentlicht 22.01.2024 13:15:25
  • Zuletzt bearbeitet 21.11.2024 08:47:20

A use-after-free flaw was found in the __ext4_remount in fs/ext4/super.c in ext4 in the Linux kernel. This flaw allows a local user to cause an information leak problem while freeing the old quota file names before a potential failure, leading to a u...

6.6

CVE-2024-0607

  • EPSS 0.02%
  • Veröffentlicht 18.01.2024 16:15:08
  • Zuletzt bearbeitet 21.11.2024 08:46:59

A flaw was found in the Netfilter subsystem in the Linux kernel. The issue is in the nft_byteorder_eval() function, where the code iterates through a loop and writes to the `dst` array. On each iteration, 8 bytes are written, but `dst` is an array of...

7.8

CVE-2021-33631

  • EPSS 0.2%
  • Veröffentlicht 18.01.2024 15:15:08
  • Zuletzt bearbeitet 02.04.2025 18:33:53

Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux (filesystem modules) allows Forced Integer Overflow.This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3, from 5.10.0-60.18.0 before 5.10.0-183.0.0.

5.5

CVE-2024-0639

  • EPSS 0.01%
  • Veröffentlicht 17.01.2024 16:15:46
  • Zuletzt bearbeitet 21.11.2024 08:47:02

A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in net/sctp/socket.c in the Linux kernel’s SCTP subsystem. This flaw allows guests with local user privileges to trigger a deadlock and potentially crash the syste...

7

CVE-2023-51780

  • EPSS 0.03%
  • Veröffentlicht 11.01.2024 19:15:12
  • Zuletzt bearbeitet 21.11.2024 08:38:47

An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.

7

CVE-2023-51781

  • EPSS 0.02%
  • Veröffentlicht 11.01.2024 19:15:12
  • Zuletzt bearbeitet 21.11.2024 08:38:47

An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a use-after-free because of an atalk_recvmsg race condition.