Canonical

Ubuntu 22.04 LTS

7957 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.6

CVE-2023-4010

Exploit
  • EPSS 0.02%
  • Veröffentlicht 31.07.2023 17:15:10
  • Zuletzt bearbeitet 21.11.2024 08:34:13

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb_giveback_urb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return ...

7.8

CVE-2023-2640

Exploit
  • EPSS 91.39%
  • Veröffentlicht 26.07.2023 02:15:09
  • Zuletzt bearbeitet 21.11.2024 07:58:59

On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs", an unprivileged user may set privileged extended attributes on the mounted files, leading them to be set on the uppe...

7.8

CVE-2023-32629

Exploit
  • EPSS 62.84%
  • Veröffentlicht 26.07.2023 02:15:09
  • Zuletzt bearbeitet 21.11.2024 08:03:44

Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data skip permission checks when calling ovl_do_setxattr on Ubuntu kernels

4.4

CVE-2023-3772

  • EPSS 0.01%
  • Veröffentlicht 25.07.2023 16:15:11
  • Zuletzt bearbeitet 21.11.2024 08:18:01

A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to directly dereference a NULL pointer in xfrm_update_ae_params(), leading to a possibl...

4.4

CVE-2023-3773

  • EPSS 0.02%
  • Veröffentlicht 25.07.2023 16:15:11
  • Zuletzt bearbeitet 21.11.2024 08:18:01

A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to cause a 4 byte out-of-bounds read of XFRMA_MTIMER_THRESH when parsing netlink attrib...

5.5

CVE-2023-20593

Exploit
  • EPSS 5.88%
  • Veröffentlicht 24.07.2023 20:15:10
  • Zuletzt bearbeitet 13.02.2025 17:16:01

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

7.8

CVE-2023-3640

  • EPSS 0.15%
  • Veröffentlicht 24.07.2023 16:15:13
  • Zuletzt bearbeitet 15.04.2025 12:15:17

A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to memory, where a user may guess the location of exception stacks or other important data. Based on the previous CVE-2023-0597, the 'Ra...

7.8

CVE-2023-3812

  • EPSS 0.01%
  • Veröffentlicht 24.07.2023 16:15:13
  • Zuletzt bearbeitet 21.11.2024 08:18:07

An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates a malicious (too big) networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially ...

7.1

CVE-2023-3567

  • EPSS 0.01%
  • Veröffentlicht 24.07.2023 16:15:12
  • Zuletzt bearbeitet 21.11.2024 08:17:33

A use-after-free flaw was found in vcs_read in drivers/tty/vt/vc_screen.c in vc_screen in the Linux Kernel. This issue may allow an attacker with local user access to cause a system crash or leak internal kernel information.

4.4

CVE-2023-2860

  • EPSS 0.01%
  • Veröffentlicht 24.07.2023 16:15:11
  • Zuletzt bearbeitet 21.11.2024 07:59:26

An out-of-bounds read vulnerability was found in the SR-IPv6 implementation in the Linux kernel. The flaw exists within the processing of seg6 attributes. The issue results from the improper validation of user-supplied data, which can result in a rea...