Canonical

Ubuntu 20.04 LTS

3473 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2023-7192

  • EPSS 0.02%
  • Veröffentlicht 02.01.2024 19:15:11
  • Zuletzt bearbeitet 21.11.2024 08:45:28

A memory leak problem was found in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c in the Linux Kernel. This issue may allow a local attacker with CAP_NET_ADMIN privileges to cause a denial of service (DoS) attack due to a refcount...

5.5

CVE-2023-7042

  • EPSS 0.02%
  • Veröffentlicht 21.12.2023 20:15:09
  • Zuletzt bearbeitet 21.11.2024 08:45:06

A null pointer dereference vulnerability was found in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() in drivers/net/wireless/ath/ath10k/wmi-tlv.c in the Linux kernel. This issue could be exploited to trigger a denial of service.

7

CVE-2023-6931

  • EPSS 0.24%
  • Veröffentlicht 19.12.2023 14:15:08
  • Zuletzt bearbeitet 12.05.2026 11:16:18

A heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component can be exploited to achieve local privilege escalation. A perf_event's read_size can overflow, leading to an heap out-of-bounds increment or write in ...

7

CVE-2023-6932

  • EPSS 0.02%
  • Veröffentlicht 19.12.2023 14:15:08
  • Zuletzt bearbeitet 12.05.2026 11:16:18

A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege escalation. A race condition can be exploited to cause a timer be mistakenly registered on a RCU read locked object which is freed ...

7.8

CVE-2022-22942

  • EPSS 13.53%
  • Veröffentlicht 13.12.2023 09:15:33
  • Zuletzt bearbeitet 21.11.2024 06:47:39

The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.

7.1

CVE-2023-6606

Exploit
  • EPSS 0.01%
  • Veröffentlicht 08.12.2023 17:15:07
  • Zuletzt bearbeitet 21.11.2024 08:44:11

An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information.

6.8

CVE-2023-24023

  • EPSS 0.2%
  • Veröffentlicht 28.11.2023 07:15:41
  • Zuletzt bearbeitet 21.11.2024 07:47:16

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption ke...

4.7

CVE-2023-6176

  • EPSS 0.01%
  • Veröffentlicht 16.11.2023 18:15:07
  • Zuletzt bearbeitet 21.11.2024 08:43:17

A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a user constructs a malicious packet with specific socket configuration, which could allow a local use...

4.3

CVE-2023-6121

  • EPSS 0.66%
  • Veröffentlicht 16.11.2023 15:15:11
  • Zuletzt bearbeitet 12.05.2026 11:16:17

An out-of-bounds read vulnerability was found in the NVMe-oF/TCP subsystem in the Linux kernel. This issue may allow a remote attacker to send a crafted TCP packet, triggering a heap-based buffer overflow that results in kmalloc data being printed an...

4.3

CVE-2023-47233

  • EPSS 0.02%
  • Veröffentlicht 03.11.2023 21:15:17
  • Zuletzt bearbeitet 12.05.2026 11:16:14

The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. For physically proximate attackers with local access, this "could be exploited in a r...