Canonical

Ubuntu 18.04 LTS

1647 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2019-18808

  • EPSS 0.02%
  • Veröffentlicht 07.11.2019 16:15:11
  • Zuletzt bearbeitet 21.11.2024 04:33:36

A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247.

4.9

CVE-2019-18809

  • EPSS 0.09%
  • Veröffentlicht 07.11.2019 16:15:11
  • Zuletzt bearbeitet 21.11.2024 04:33:36

A memory leak in the af9005_identify_state() function in drivers/media/usb/dvb-usb/af9005.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-2289adbfa559.

9.8

CVE-2019-18805

  • EPSS 0.57%
  • Veröffentlicht 07.11.2019 14:15:11
  • Zuletzt bearbeitet 21.11.2024 04:33:36

An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen...

5.5

CVE-2019-18786

  • EPSS 0.11%
  • Veröffentlicht 06.11.2019 03:15:10
  • Zuletzt bearbeitet 21.11.2024 04:33:33

In the Linux kernel through 5.3.8, f->fmt.sdr.reserved is uninitialized in rcar_drif_g_fmt_sdr_cap in drivers/media/platform/rcar_drif.c, which could cause a memory disclosure problem.

7

CVE-2019-18683

Exploit
  • EPSS 0.89%
  • Veröffentlicht 04.11.2019 16:15:11
  • Zuletzt bearbeitet 21.11.2024 04:33:31

An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalation on some Linux distributions where local users have /dev/video0 access, but only if the driver happens to be loaded. ...

8.8

CVE-2019-17666

  • EPSS 0.45%
  • Veröffentlicht 17.10.2019 02:15:13
  • Zuletzt bearbeitet 21.11.2024 04:32:44

rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow.

6.5

CVE-2019-17351

  • EPSS 0.09%
  • Veröffentlicht 08.10.2019 00:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:08

An issue was discovered in drivers/xen/balloon.c in the Linux kernel before 5.2.3, as used in Xen through 4.12.x, allowing guest OS users to cause a denial of service because of unrestricted resource consumption during the mapping of guest memory, ak...

9.8

CVE-2019-17133

  • EPSS 1.56%
  • Veröffentlicht 04.10.2019 12:15:11
  • Zuletzt bearbeitet 21.11.2024 04:31:45

In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.

7.5

CVE-2019-17075

  • EPSS 1.19%
  • Veröffentlicht 01.10.2019 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:31:39

An issue was discovered in write_tpt_entry in drivers/infiniband/hw/cxgb4/mem.c in the Linux kernel through 5.3.2. The cxgb4 driver is directly calling dma_map_single (a DMA function) from a stack variable. This could allow an attacker to trigger a D...

3.3

CVE-2019-17056

  • EPSS 0.07%
  • Veröffentlicht 01.10.2019 14:15:55
  • Zuletzt bearbeitet 21.11.2024 04:31:36

llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176.