Canonical

Ubuntu 25.10

2230 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2023-6238

  • EPSS 0.02%
  • Veröffentlicht 21.11.2023 21:15:09
  • Zuletzt bearbeitet 21.11.2024 08:43:26

A buffer overflow vulnerability was found in the NVM Express (NVMe) driver in the Linux kernel. Only privileged user could specify a small meta buffer and let the device perform larger Direct Memory Access (DMA) into the same buffer, overwriting unre...

6.5

CVE-2023-1193

  • EPSS 0.07%
  • Veröffentlicht 01.11.2023 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:38:38

A use-after-free flaw was found in setup_async_work in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. This issue could allow an attacker to crash the system by accessing freed work.

6.3

CVE-2023-3397

  • EPSS 0.01%
  • Veröffentlicht 01.11.2023 20:15:08
  • Zuletzt bearbeitet 21.11.2024 08:17:11

A race condition occurred between the functions lmLogClose and txEnd in JFS, in the Linux Kernel, executed in different threads. This flaw allows a local attacker with normal user privileges to crash the system or leak internal kernel information.

4.6

CVE-2023-4010

Exploit
  • EPSS 0.02%
  • Veröffentlicht 31.07.2023 17:15:10
  • Zuletzt bearbeitet 21.11.2024 08:34:13

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb_giveback_urb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return ...

7.8

CVE-2023-3640

  • EPSS 0.15%
  • Veröffentlicht 24.07.2023 16:15:13
  • Zuletzt bearbeitet 15.04.2025 12:15:17

A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to memory, where a user may guess the location of exception stacks or other important data. Based on the previous CVE-2023-0597, the 'Ra...

5.5

CVE-2023-0160

Exploit
  • EPSS 0.01%
  • Veröffentlicht 18.07.2023 17:15:11
  • Zuletzt bearbeitet 21.11.2024 07:36:39

A deadlock flaw was found in the Linux kernel’s BPF subsystem. This flaw allows a local user to potentially crash the system.

5.5

CVE-2023-31082

  • EPSS 0.05%
  • Veröffentlicht 24.04.2023 06:15:07
  • Zuletzt bearbeitet 21.11.2024 08:01:22

An issue was discovered in drivers/tty/n_gsm.c in the Linux kernel 6.2. There is a sleeping function called from an invalid context in gsmld_write, which will block the kernel. Note: This has been disputed by 3rd parties as not a valid vulnerability.

5.5

CVE-2020-11935

  • EPSS 0.04%
  • Veröffentlicht 07.04.2023 02:15:07
  • Zuletzt bearbeitet 21.11.2024 04:58:56

It was discovered that aufs improperly managed inode reference counts in the vfsub_dentry_open() method. A local attacker could use this vulnerability to cause a denial of service attack.

7.8

CVE-2023-0030

  • EPSS 0.1%
  • Veröffentlicht 08.03.2023 23:15:10
  • Zuletzt bearbeitet 05.03.2025 21:15:15

A use-after-free flaw was found in the Linux kernel’s nouveau driver in how a user triggers a memory overflow that causes the nvkm_vma_tail function to fail. This flaw allows a local user to crash or potentially escalate their privileges on the syste...

7.8

CVE-2023-26242

  • EPSS 0.02%
  • Veröffentlicht 21.02.2023 01:15:11
  • Zuletzt bearbeitet 05.05.2025 16:15:31

afu_mmio_region_get_by_offset in drivers/fpga/dfl-afu-region.c in the Linux kernel through 6.1.12 has an integer overflow.