Canonical

Ubuntu 22.04 LTS

7957 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-1078

  • EPSS 0.02%
  • Veröffentlicht 27.03.2023 21:15:10
  • Zuletzt bearbeitet 05.05.2025 16:15:28

A flaw was found in the Linux Kernel in RDS (Reliable Datagram Sockets) protocol. The rds_rm_zerocopy_callback() uses list_entry() on the head of a list causing a type confusion. Local user can trigger this with rds_message_put(). Type confusion lead...

6.8

CVE-2023-1079

  • EPSS 0.02%
  • Veröffentlicht 27.03.2023 21:15:10
  • Zuletzt bearbeitet 19.02.2025 22:15:11

A flaw was found in the Linux kernel. A use-after-free may be triggered in asus_kbd_backlight_set when plugging/disconnecting in a malicious USB device, which advertises itself as an Asus device. Similarly to the previous known CVE-2023-25012, but in...

7.1

CVE-2023-1380

  • EPSS 0.02%
  • Veröffentlicht 27.03.2023 21:15:10
  • Zuletzt bearbeitet 21.11.2024 07:39:04

A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when assoc_info->req_len data is bigger than the size of the buffer, defined ...

4.7

CVE-2023-0590

  • EPSS 0.02%
  • Veröffentlicht 23.03.2023 21:15:19
  • Zuletzt bearbeitet 21.11.2024 07:37:27

A use-after-free flaw was found in qdisc_graft in net/sched/sch_api.c in the Linux Kernel due to a race problem. This flaw leads to a denial of service issue. If patch ebda44da44f6 ("net: sched: fix race condition in qdisc_graft()") not applied yet, ...

5.5

CVE-2023-1249

  • EPSS 0.05%
  • Veröffentlicht 23.03.2023 21:15:19
  • Zuletzt bearbeitet 19.03.2025 16:15:16

A use-after-free flaw was found in the Linux kernel’s core dump subsystem. This flaw allows a local user to crash the system. Only if patch 390031c94211 ("coredump: Use the vma snapshot in fill_files_note") not applied yet, then kernel could be affec...

3.3

CVE-2023-1513

  • EPSS 0.02%
  • Veröffentlicht 23.03.2023 21:15:19
  • Zuletzt bearbeitet 25.02.2025 20:15:32

A flaw was found in KVM. When calling the KVM_GET_DEBUGREGS ioctl, on 32-bit systems, there might be some uninitialized portions of the kvm_debugregs structure that could be copied to userspace, causing an information leak.

7.8

CVE-2023-0386

Warnung
  • EPSS 54.24%
  • Veröffentlicht 22.03.2023 21:15:18
  • Zuletzt bearbeitet 04.11.2025 16:47:21

A flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This...

7.8

CVE-2022-4095

  • EPSS 0.02%
  • Veröffentlicht 22.03.2023 15:15:10
  • Zuletzt bearbeitet 26.02.2025 17:15:13

A use-after-free flaw was found in Linux kernel before 5.19.2. This issue occurs in cmd_hdl_filter in drivers/staging/rtl8712/rtl8712_cmd.c, allowing an attacker to launch a local denial of service attack and gain escalation of privileges.

7.8

CVE-2023-1281

  • EPSS 0.02%
  • Veröffentlicht 22.03.2023 14:15:16
  • Zuletzt bearbeitet 13.02.2025 17:15:58

Use After Free vulnerability in Linux kernel traffic control index filter (tcindex) allows Privilege Escalation. The imperfect hash area can be updated while packets are traversing, which will cause a use-after-free when 'tcf_exts_exec()' is called w...

7.8

CVE-2022-48423

  • EPSS 0.03%
  • Veröffentlicht 19.03.2023 03:15:11
  • Zuletzt bearbeitet 27.02.2025 17:15:14

In the Linux kernel before 6.1.3, fs/ntfs3/record.c does not validate resident attribute names. An out-of-bounds write may occur.