Canonical

Ubuntu 18.04 LTS

1647 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7

CVE-2020-11884

  • EPSS 0.06%
  • Veröffentlicht 29.04.2020 13:15:11
  • Zuletzt bearbeitet 21.11.2024 04:58:49

In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enable_sacf_uaccess in arch/s390/lib/uaccess.c that fails to protect against a concurrent page table upgrade...

4.4

CVE-2020-0067

  • EPSS 0.06%
  • Veröffentlicht 17.04.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:52:50

In f2fs_xattr_generic_list of xattr.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not required for exploitation.Pr...

5.5

CVE-2020-11669

  • EPSS 0.08%
  • Veröffentlicht 10.04.2020 15:15:12
  • Zuletzt bearbeitet 21.11.2024 04:58:21

An issue was discovered in the Linux kernel before 5.2 on the powerpc platform. arch/powerpc/kernel/idle_book3s.S does not have save/restore functionality for PNV_POWERSAVE_AMR, PNV_POWERSAVE_UAMOR, and PNV_POWERSAVE_AMOR, aka CID-53a712bae5dd.

5.5

CVE-2020-8832

  • EPSS 0.31%
  • Veröffentlicht 10.04.2020 00:15:11
  • Zuletzt bearbeitet 21.11.2024 05:39:31

The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 ("The Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors.") was discovered to be incomplete, meaning that in versions of th...

6.5

CVE-2020-8834

Exploit
  • EPSS 0.09%
  • Veröffentlicht 09.04.2020 22:15:12
  • Zuletzt bearbeitet 21.11.2024 05:39:32

KVM in the Linux kernel on Power8 processors has a conflicting use of HSTATE_HOST_R1 to store r1 state in kvmppc_hv_entry plus in kvmppc_{save,restore}_tm, leading to a stack corruption. Because of this, an attacker with the ability run code in kerne...

7.1

CVE-2020-11668

  • EPSS 0.05%
  • Veröffentlicht 09.04.2020 21:15:15
  • Zuletzt bearbeitet 21.11.2024 04:58:21

In the Linux kernel before 5.6.1, drivers/media/usb/gspca/xirlink_cit.c (aka the Xirlink camera USB driver) mishandles invalid descriptors, aka CID-a246b4d54770.

6.8

CVE-2020-2732

  • EPSS 0.44%
  • Veröffentlicht 08.04.2020 22:15:12
  • Zuletzt bearbeitet 21.11.2024 05:26:06

A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that shou...

7.2

CVE-2019-20636

  • EPSS 0.11%
  • Veröffentlicht 08.04.2020 14:15:12
  • Zuletzt bearbeitet 21.11.2024 04:38:56

In the Linux kernel before 5.4.12, drivers/input/input.c has out-of-bounds writes via a crafted keycode table, as demonstrated by input_set_keycode, aka CID-cb222aed03d7.

4.9

CVE-2020-11609

  • EPSS 0.07%
  • Veröffentlicht 07.04.2020 17:15:14
  • Zuletzt bearbeitet 21.11.2024 04:58:14

An issue was discovered in the stv06xx subsystem in the Linux kernel before 5.6.1. drivers/media/usb/gspca/stv06xx/stv06xx.c and drivers/media/usb/gspca/stv06xx/stv06xx_pb0100.c mishandle invalid descriptors, as demonstrated by a NULL pointer derefer...

4.9

CVE-2020-11608

  • EPSS 0.07%
  • Veröffentlicht 07.04.2020 14:15:14
  • Zuletzt bearbeitet 21.11.2024 04:58:13

An issue was discovered in the Linux kernel before 5.6.1. drivers/media/usb/gspca/ov519.c allows NULL pointer dereferences in ov511_mode_init_regs and ov518_mode_init_regs when there are zero endpoints, aka CID-998912346c0d.