Canonical

Ubuntu 25.10

3177 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.12%
  • Veröffentlicht 25.03.2026 10:27:03
  • Zuletzt bearbeitet 28.05.2026 14:25:49

In the Linux kernel, the following vulnerability has been resolved: pinctrl: equilibrium: fix warning trace on load The callback functions 'eqbr_irq_mask()' and 'eqbr_irq_ack()' are also called in the callback function 'eqbr_irq_mask_ack()'. This i...

  • EPSS 0.12%
  • Veröffentlicht 25.03.2026 10:27:02
  • Zuletzt bearbeitet 28.05.2026 14:28:13

In the Linux kernel, the following vulnerability has been resolved: can: ems_usb: ems_usb_read_bulk_callback(): check the proper length of a message When looking at the data in a USB urb, the actual_length is the size of the buffer passed to the dr...

  • EPSS 0.13%
  • Veröffentlicht 25.03.2026 10:27:01
  • Zuletzt bearbeitet 28.05.2026 14:31:45

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix use-after-free in pm8001_queue_command() Commit e29c47fe8946 ("scsi: pm8001: Simplify pm8001_task_exec()") refactors pm8001_queue_command(), however it introduces...

  • EPSS 0.12%
  • Veröffentlicht 25.03.2026 10:26:59
  • Zuletzt bearbeitet 28.05.2026 14:34:35

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref in ip6_rt_get_dev_rcu() l3mdev_master_dev_rcu() can return NULL when the slave device is being un-slaved from a VRF. All other callers deal with this, ...

  • EPSS 0.12%
  • Veröffentlicht 25.03.2026 10:26:58
  • Zuletzt bearbeitet 28.05.2026 14:40:06

In the Linux kernel, the following vulnerability has been resolved: smb: client: Don't log plaintext credentials in cifs_set_cifscreds When debug logging is enabled, cifs_set_cifscreds() logs the key payload and exposes the plaintext username and p...

  • EPSS 0.09%
  • Veröffentlicht 25.03.2026 10:26:57
  • Zuletzt bearbeitet 04.07.2026 12:16:54

In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races around sk->sk_{data_ready,write_space} skmsg (and probably other layers) are changing these pointers while other cpus might read them concurrently. Add co...

  • EPSS 0.12%
  • Veröffentlicht 25.03.2026 10:26:56
  • Zuletzt bearbeitet 28.05.2026 14:46:05

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop When a standalone IPv6 nexthop object is created with a loopback device (e.g., "ip -6 nexthop add id 100 dev l...

  • EPSS 0.12%
  • Veröffentlicht 25.03.2026 10:26:55
  • Zuletzt bearbeitet 29.05.2026 14:25:27

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: purge error queues in socket destructors When TX timestamping is enabled via SO_TIMESTAMPING, SKBs may be queued into sk_error_queue and will stay there until consumed. ...

  • EPSS 0.12%
  • Veröffentlicht 25.03.2026 10:26:54
  • Zuletzt bearbeitet 29.05.2026 14:29:14

In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix cred ref leak in nfsd_nl_threads_set_doit(). syzbot reported memory leak of struct cred. [0] nfsd_nl_threads_set_doit() passes get_current_cred() to nfsd_svc(), but put_...

  • EPSS 0.12%
  • Veröffentlicht 25.03.2026 10:26:54
  • Zuletzt bearbeitet 29.05.2026 14:27:13

In the Linux kernel, the following vulnerability has been resolved: can: ucan: Fix infinite loop from zero-length messages If a broken ucan device gets a message with the message length field set to 0, then the driver will loop for forever in ucan_...