Canonical

Ubuntu 22.04 LTS

7957 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-0160

Exploit
  • EPSS 0.01%
  • Veröffentlicht 18.07.2023 17:15:11
  • Zuletzt bearbeitet 21.11.2024 07:36:39

A deadlock flaw was found in the Linux kernel’s BPF subsystem. This flaw allows a local user to potentially crash the system.

9.1

CVE-2023-38426

  • EPSS 0.08%
  • Veröffentlicht 18.07.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 08:13:32

An issue was discovered in the Linux kernel before 6.3.4. ksmbd has an out-of-bounds read in smb2_find_context_vals when create_context's name_len is larger than the tag length.

9.8

CVE-2023-38427

  • EPSS 0.09%
  • Veröffentlicht 18.07.2023 00:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:42

An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an integer underflow and out-of-bounds read in deassemble_neg_contexts.

9.1

CVE-2023-38428

  • EPSS 0.08%
  • Veröffentlicht 18.07.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 08:13:32

An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not properly check the UserName value because it does not consider the address of security buffer, leading to an out-of-bounds read.

9.8

CVE-2023-38429

  • EPSS 0.05%
  • Veröffentlicht 18.07.2023 00:15:09
  • Zuletzt bearbeitet 03.01.2025 12:15:25

An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/connection.c in ksmbd has an off-by-one error in memory allocation (because of ksmbd_smb2_check_message) that may lead to out-of-bounds access.

9.1

CVE-2023-38430

  • EPSS 0.08%
  • Veröffentlicht 18.07.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 08:13:33

An issue was discovered in the Linux kernel before 6.3.9. ksmbd does not validate the SMB request protocol ID, leading to an out-of-bounds read.

9.1

CVE-2023-38431

  • EPSS 0.08%
  • Veröffentlicht 18.07.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 08:13:33

An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/connection.c in ksmbd does not validate the relationship between the NetBIOS header's length field and the SMB header sizes, via pdu_size in ksmbd_conn_handler_loop, leading to a...

9.1

CVE-2023-38432

  • EPSS 0.07%
  • Veröffentlicht 18.07.2023 00:15:09
  • Zuletzt bearbeitet 21.11.2024 08:13:33

An issue was discovered in the Linux kernel before 6.3.10. fs/smb/server/smb2misc.c in ksmbd does not validate the relationship between the command payload size and the RFC1002 length specification, leading to an out-of-bounds read.

7.8

CVE-2023-21255

  • EPSS 0.1%
  • Veröffentlicht 13.07.2023 00:15:24
  • Zuletzt bearbeitet 13.02.2025 17:16:02

In multiple functions of binder.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

6.7

CVE-2023-21400

Exploit
  • EPSS 0.04%
  • Veröffentlicht 13.07.2023 00:15:24
  • Zuletzt bearbeitet 13.02.2025 17:16:02

In multiple functions of io_uring.c, there is a possible kernel memory corruption due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exp...