Canonical

Ubuntu 18.04 LTS

1647 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2019-15090

  • EPSS 0.11%
  • Veröffentlicht 16.08.2019 00:15:11
  • Zuletzt bearbeitet 21.11.2024 04:28:02

An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. In the qedi_dbg_* family of functions, there is an out-of-bounds read.

8.1

CVE-2019-9506

  • EPSS 4.46%
  • Veröffentlicht 14.08.2019 17:15:11
  • Zuletzt bearbeitet 21.11.2024 04:51:45

The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") tha...

5.5

CVE-2019-14763

  • EPSS 0.06%
  • Veröffentlicht 07.08.2019 22:15:15
  • Zuletzt bearbeitet 21.11.2024 04:27:17

In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may potentially cause a deadlock with f_hid.

10

CVE-2018-20961

Exploit
  • EPSS 8.46%
  • Veröffentlicht 07.08.2019 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:02:34

In the Linux kernel before 4.16.4, a double free vulnerability in the f_midi_set_alt function of drivers/usb/gadget/function/f_midi.c in the f_midi driver may allow attackers to cause a denial of service or possibly have unspecified other impact.

7.5

CVE-2018-16871

  • EPSS 1.5%
  • Veröffentlicht 30.07.2019 17:15:12
  • Zuletzt bearbeitet 21.11.2024 03:53:29

A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence....

6.8

CVE-2019-14283

  • EPSS 0.05%
  • Veröffentlicht 26.07.2019 13:15:13
  • Zuletzt bearbeitet 21.11.2024 04:26:22

In the Linux kernel before 5.2.3, set_geometry in drivers/block/floppy.c does not validate the sect and head fields, as demonstrated by an integer overflow and out-of-bounds read. It can be triggered by an unprivileged local user when a floppy disk h...

6.2

CVE-2019-14284

  • EPSS 0.05%
  • Veröffentlicht 26.07.2019 13:15:13
  • Zuletzt bearbeitet 21.11.2024 04:26:22

In the Linux kernel before 5.2.3, drivers/block/floppy.c allows a denial of service by setup_format_params division-by-zero. Two consecutive ioctls can trigger the bug: the first one should set the drive geometry with .sect and .rate values that make...

7.8

CVE-2018-20854

  • EPSS 0.07%
  • Veröffentlicht 26.07.2019 05:15:10
  • Zuletzt bearbeitet 21.11.2024 04:02:19

An issue was discovered in the Linux kernel before 4.20. drivers/phy/mscc/phy-ocelot-serdes.c has an off-by-one error with a resultant ctrl->phys out-of-bounds read.

3.3

CVE-2018-20855

  • EPSS 0.11%
  • Veröffentlicht 26.07.2019 05:15:10
  • Zuletzt bearbeitet 21.11.2024 04:02:19

An issue was discovered in the Linux kernel before 4.18.7. In create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp was never initialized, resulting in a leak of stack memory to userspace.

7.8

CVE-2018-20856

  • EPSS 0.09%
  • Veröffentlicht 26.07.2019 05:15:10
  • Zuletzt bearbeitet 21.11.2024 04:02:19

An issue was discovered in the Linux kernel before 4.18.7. In block/blk-core.c, there is an __blk_drain_queue() use-after-free because a certain error case is mishandled.