Canonical

Ubuntu 24.04 LTS

6642 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.13%
  • Veröffentlicht 25.06.2026 08:38:50
  • Zuletzt bearbeitet 06.07.2026 18:23:42

In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix IFM region index out-of-bounds in command stream parser NPU_SET_IFM_REGION extracts the region index with param & 0x7f, giving a maximum value of 127. However reg...

  • EPSS 0.13%
  • Veröffentlicht 25.06.2026 08:38:50
  • Zuletzt bearbeitet 06.07.2026 18:22:13

In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix OOB write in ethosu_gem_cmdstream_copy_and_validate() The command stream parsing loop increments the index variable a second time when a 64-bit command word is en...

  • EPSS 0.14%
  • Veröffentlicht 25.06.2026 08:38:49
  • Zuletzt bearbeitet 06.07.2026 18:24:07

In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix arithmetic issues in dma_length() dma_length() derives DMA region usage from command stream values and updates region_size[]: len = ((len + stride[0]) * size...

  • EPSS 0.11%
  • Veröffentlicht 25.06.2026 08:38:48
  • Zuletzt bearbeitet 06.07.2026 18:26:08

In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject NPU_OP_RESIZE commands from userspace NPU_OP_RESIZE is a U85-only command that the driver does not yet implement. The existing WARN_ON(1) placeholder fires unc...

  • EPSS 0.14%
  • Veröffentlicht 25.06.2026 08:38:48
  • Zuletzt bearbeitet 06.07.2026 18:24:43

In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject DMA commands with uninitialized length cmd_state_init() initializes the command state with memset(0xff), leaving dma->len at U64_MAX to signal missing setup. T...

  • EPSS 0.12%
  • Veröffentlicht 25.06.2026 08:38:47
  • Zuletzt bearbeitet 06.07.2026 20:12:00

In the Linux kernel, the following vulnerability has been resolved: fuse: reject fuse_notify() pagecache ops on directories The operations FUSE_NOTIFY_STORE and FUSE_NOTIFY_RETRIEVE allow the FUSE daemon to actively write/read pagecache contents. ...

Medienbericht
  • EPSS 0.13%
  • Veröffentlicht 25.06.2026 08:38:46
  • Zuletzt bearbeitet 10.07.2026 12:17:10

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

  • EPSS 0.12%
  • Veröffentlicht 25.06.2026 08:38:46
  • Zuletzt bearbeitet 06.07.2026 20:11:26

In the Linux kernel, the following vulnerability has been resolved: fuse: limit FUSE_NOTIFY_RETRIEVE to uptodate folios FUSE_NOTIFY_RETRIEVE must be limited to uptodate folios; !uptodate folios can contain uninitialized data. Since FUSE_NOTIFY_RETR...

  • EPSS 0.36%
  • Veröffentlicht 25.06.2026 08:38:45
  • Zuletzt bearbeitet 07.07.2026 18:14:02

In the Linux kernel, the following vulnerability has been resolved: iomap: avoid potential null folio->mapping deref during error reporting When a buffered read fails, iomap_finish_folio_read() reports the error with fserror_report_io(folio->mappin...

  • EPSS 0.13%
  • Veröffentlicht 25.06.2026 08:38:44
  • Zuletzt bearbeitet 07.07.2026 18:18:53

In the Linux kernel, the following vulnerability has been resolved: locking/rtmutex: Skip remove_waiter() when waiter is not enqueued syzbot triggered the following splat in remove_waiter() via FUTEX_CMP_REQUEUE_PI: KASAN: null-ptr-deref in rang...