Canonical

Ubuntu 18.04 LTS

1647 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.3

CVE-2019-9500

Exploit
  • EPSS 2.93%
  • Veröffentlicht 16.01.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:51:44

The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malicious event frame can be constructed to trigger an h...

8.3

CVE-2019-9503

  • EPSS 0.51%
  • Veröffentlicht 16.01.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:51:44

The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a remote source, the is_wlc_event_frame function will c...

5.3

CVE-2019-18282

  • EPSS 0.68%
  • Veröffentlicht 16.01.2020 16:15:16
  • Zuletzt bearbeitet 21.11.2024 04:32:58

The flow_dissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs because the auto flowlabel of a UDP IPv6 packet relies on a 32-bit hashrnd value as a secret, and beca...

7.8

CVE-2020-7053

  • EPSS 0.08%
  • Veröffentlicht 14.01.2020 21:15:16
  • Zuletzt bearbeitet 21.11.2024 05:36:34

In the Linux kernel 4.14 longterm through 4.14.165 and 4.19 longterm through 4.19.96 (and 5.x before 5.2), there is a use-after-free (write) in the i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c, aka CID-7dc40713618c. This is relate...

6.1

CVE-2019-19332

Exploit
  • EPSS 0.02%
  • Veröffentlicht 09.01.2020 15:15:10
  • Zuletzt bearbeitet 21.11.2024 04:34:35

An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A us...

5.5

CVE-2020-0009

  • EPSS 0.12%
  • Veröffentlicht 08.01.2020 16:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:44

In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared between processes, with no additional execution privilege...

6

CVE-2019-19927

Exploit
  • EPSS 0.21%
  • Veröffentlicht 31.12.2019 02:15:10
  • Zuletzt bearbeitet 21.11.2024 04:35:41

In the Linux kernel 5.0.0-rc7 (as distributed in ubuntu/linux.git on kernel.ubuntu.com), mounting a crafted f2fs filesystem image and performing some operations can lead to slab-out-of-bounds read access in ttm_put_pages in drivers/gpu/drm/ttm/ttm_pa...

5.5

CVE-2019-20095

  • EPSS 0.13%
  • Veröffentlicht 30.12.2019 05:15:11
  • Zuletzt bearbeitet 21.11.2024 04:38:03

mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c in the Linux kernel before 5.1.6 has some error-handling cases that did not free allocated hostcmd memory, aka CID-003b686ace82. This will cause a memory leak and denial of service.

5.5

CVE-2019-20096

  • EPSS 0.07%
  • Veröffentlicht 30.12.2019 05:15:11
  • Zuletzt bearbeitet 21.11.2024 04:38:03

In the Linux kernel before 5.1, there is a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b.

5.5

CVE-2019-20054

  • EPSS 0.11%
  • Veröffentlicht 28.12.2019 05:15:11
  • Zuletzt bearbeitet 21.11.2024 04:37:58

In the Linux kernel before 5.0.6, there is a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka CID-23da9588037e.