Canonical

Ubuntu 22.04 LTS

7957 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2022-41674

Exploit
  • EPSS 0.4%
  • Veröffentlicht 14.10.2022 00:15:09
  • Zuletzt bearbeitet 15.05.2025 15:16:06

An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_info_update function in net/mac80211/scan.c.

7.8

CVE-2022-42720

Exploit
  • EPSS 0.73%
  • Veröffentlicht 14.10.2022 00:15:09
  • Zuletzt bearbeitet 15.05.2025 21:15:49

Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to trigger use-after-free conditions to potentially execute c...

5.5

CVE-2022-42721

Exploit
  • EPSS 0.03%
  • Veröffentlicht 14.10.2022 00:15:09
  • Zuletzt bearbeitet 15.05.2025 21:15:49

A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to corrupt a linked list and, in turn, potentially execute code.

5.5

CVE-2022-42722

Exploit
  • EPSS 0.09%
  • Veröffentlicht 14.10.2022 00:15:09
  • Zuletzt bearbeitet 21.11.2024 07:25:13

In the Linux kernel 5.8 through 5.19.x before 5.19.16, local attackers able to inject WLAN frames into the mac80211 stack could cause a NULL pointer dereference denial-of-service attack against the beacon protection of P2P devices.

8.8

CVE-2022-42719

Exploit
  • EPSS 0.62%
  • Veröffentlicht 13.10.2022 23:15:11
  • Zuletzt bearbeitet 15.05.2025 21:15:48

A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 through 5.19.x before 5.19.16 could be used by attackers (able to inject WLAN frames) to crash the kernel and potentially execute code.

7.8

CVE-2022-20421

  • EPSS 5.43%
  • Veröffentlicht 11.10.2022 20:15:12
  • Zuletzt bearbeitet 21.11.2024 06:42:46

In binder_inc_ref_for_node of binder.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatio...

7

CVE-2022-20422

  • EPSS 0.07%
  • Veröffentlicht 11.10.2022 20:15:12
  • Zuletzt bearbeitet 21.11.2024 06:42:47

In emulation_proc_handler of armv8_deprecated.c, there is a possible way to corrupt memory due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for ex...

4.6

CVE-2022-20423

  • EPSS 0.05%
  • Veröffentlicht 11.10.2022 20:15:12
  • Zuletzt bearbeitet 21.11.2024 06:42:47

In rndis_set_response of rndis.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege if a malicious USB device is attached with no additional execution privileges needed. User interact...

5.5

CVE-2022-42703

Exploit
  • EPSS 0.88%
  • Veröffentlicht 09.10.2022 23:15:09
  • Zuletzt bearbeitet 21.11.2024 07:25:10

mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to leaf anon_vma double reuse.

4.3

CVE-2022-3435

  • EPSS 0.07%
  • Veröffentlicht 08.10.2022 11:15:10
  • Zuletzt bearbeitet 21.11.2024 07:19:30

A vulnerability classified as problematic has been found in Linux Kernel. This affects the function fib_nh_match of the file net/ipv4/fib_semantics.c of the component IPv4 Handler. The manipulation leads to out-of-bounds read. It is possible to initi...