Canonical

Ubuntu 22.04 LTS

7957 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2022-2873

  • EPSS 0.04%
  • Veröffentlicht 22.08.2022 15:15:15
  • Zuletzt bearbeitet 21.11.2024 07:01:51

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2C_SMBUS_BLOCK_DATA (with the ioctl I2C_SMBUS) with malicious input data. This flaw allows a local user to cra...

5.5

CVE-2022-26373

  • EPSS 0.11%
  • Veröffentlicht 18.08.2022 20:15:11
  • Zuletzt bearbeitet 05.05.2025 17:18:03

Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

6.7

CVE-2022-2503

Exploit
  • EPSS 0.01%
  • Veröffentlicht 12.08.2022 11:15:07
  • Zuletzt bearbeitet 21.11.2024 07:01:07

Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch...

7.8

CVE-2022-20368

  • EPSS 0.05%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:40

Product: AndroidVersions: Android kernelAndroid ID: A-224546354References: Upstream kernel

6.7

CVE-2022-20369

  • EPSS 0.04%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:41

In v4l2_m2m_querybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitatio...

7.8

CVE-2022-1158

Exploit
  • EPSS 0.02%
  • Veröffentlicht 05.08.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:40:09

A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host ...

7.1

CVE-2022-1973

  • EPSS 0.16%
  • Veröffentlicht 05.08.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:41:51

A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. This flaw allows a local attacker to crash the system and leads to a kernel information leak problem.

8.2

CVE-2022-1012

  • EPSS 0.44%
  • Veröffentlicht 05.08.2022 16:15:11
  • Zuletzt bearbeitet 21.11.2024 06:39:51

A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem.

7.5

CVE-2022-36946

  • EPSS 5.08%
  • Veröffentlicht 27.07.2022 20:15:08
  • Zuletzt bearbeitet 05.05.2025 16:15:18

nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encou...

5.5

CVE-2022-36879

  • EPSS 0.04%
  • Veröffentlicht 27.07.2022 04:15:10
  • Zuletzt bearbeitet 05.05.2025 16:15:17

An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.