Canonical

Ubuntu 24.04 LTS

6644 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.18%
  • Veröffentlicht 27.03.2025 13:38:22
  • Zuletzt bearbeitet 29.10.2025 21:08:13

In the Linux kernel, the following vulnerability has been resolved: powerpc/code-patching: Disable KASAN report during patching via temporary mm Erhard reports the following KASAN hit on Talos II (power9) with kernel 6.13: [ 12.028126] =========...

  • EPSS 0.18%
  • Veröffentlicht 27.03.2025 13:38:22
  • Zuletzt bearbeitet 29.10.2025 21:07:58

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers Other, non DAI copier widgets could have the same stream name (sname) as the ALH copier and in that case the copi...

  • EPSS 0.18%
  • Veröffentlicht 27.03.2025 13:38:21
  • Zuletzt bearbeitet 24.11.2025 10:15:59

In the Linux kernel, the following vulnerability has been resolved: net: allow small head cache usage with large MAX_SKB_FRAGS values Sabrina reported the following splat: WARNING: CPU: 0 PID: 1 at net/core/dev.c:6935 netif_napi_add_weight_loc...

  • EPSS 0.18%
  • Veröffentlicht 27.03.2025 13:38:20
  • Zuletzt bearbeitet 14.07.2026 13:17:26

In the Linux kernel, the following vulnerability has been resolved: bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type() KMSAN reported a use-after-free issue in eth_skb_pkt_type()[1]. The cause of the issue was that eth_skb_pkt_type() acc...

  • EPSS 0.15%
  • Veröffentlicht 25.03.2025 18:15:34
  • Zuletzt bearbeitet 15.04.2026 00:35:42

A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an upcall to the wrong namespace in containerized environments. This issue may lead to disclosing sensitive data fro...

Medienbericht
  • EPSS 0.05%
  • Veröffentlicht 23.03.2025 15:00:47
  • Zuletzt bearbeitet 08.04.2025 08:15:14

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Filesystem bugs due to corrupt images are not considered a CVE for any filesystem that is only mountable by CAP_SYS_ADMIN in the initial user namespace. That ...

  • EPSS 0.21%
  • Veröffentlicht 12.03.2025 09:42:22
  • Zuletzt bearbeitet 03.11.2025 20:17:23

In the Linux kernel, the following vulnerability has been resolved: powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_ALLOC Erhard reported the following KASAN hit while booting his PowerMac G4 with a KASAN-enabled kerne...

  • EPSS 0.2%
  • Veröffentlicht 12.03.2025 09:42:21
  • Zuletzt bearbeitet 14.07.2026 13:17:25

In the Linux kernel, the following vulnerability has been resolved: tcp: drop secpath at the same time as we currently drop dst Xiumei reported hitting the WARN in xfrm6_tunnel_net_exit while running tests that boil down to: - create a pair of net...

  • EPSS 0.22%
  • Veröffentlicht 12.03.2025 09:42:20
  • Zuletzt bearbeitet 01.06.2026 17:16:33

In the Linux kernel, the following vulnerability has been resolved: io_uring: prevent opcode speculation sqe->opcode is used for different tables, make sure we santitise it against speculations.

  • EPSS 0.2%
  • Veröffentlicht 12.03.2025 09:42:19
  • Zuletzt bearbeitet 14.07.2026 13:17:25

In the Linux kernel, the following vulnerability has been resolved: mm/migrate_device: don't add folio to be freed to LRU in migrate_device_finalize() If migration succeeded, we called folio_migrate_flags()->mem_cgroup_migrate() to migrate the memc...