Canonical

Ubuntu 20.04 LTS

3473 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-35788

Exploit
  • EPSS 0.01%
  • Veröffentlicht 16.06.2023 21:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:41

An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets. This may result in denial of service o...

7.1

CVE-2023-3268

  • EPSS 0.01%
  • Veröffentlicht 16.06.2023 19:15:14
  • Zuletzt bearbeitet 11.03.2025 15:15:39

An out of bounds (OOB) memory access flaw was found in the Linux kernel in relay_file_read_start_pos in kernel/relay.c in the relayfs. This flaw could allow a local attacker to crash the system or leak kernel internal information.

6.7

CVE-2023-3159

  • EPSS 0.01%
  • Veröffentlicht 12.06.2023 21:15:22
  • Zuletzt bearbeitet 23.04.2025 17:16:35

A use after free issue was discovered in driver/firewire in outbound_phy_packet_callback in the Linux Kernel. In this flaw a local attacker with special privilege may cause a use after free problem when queue_event() fails.

5.5

CVE-2023-3161

  • EPSS 0.01%
  • Veröffentlicht 12.06.2023 20:15:12
  • Zuletzt bearbeitet 11.03.2025 15:15:39

A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out-of-bounds occurs leading to undefined behavior and...

7.1

CVE-2023-3141

  • EPSS 0.01%
  • Veröffentlicht 09.06.2023 20:15:10
  • Zuletzt bearbeitet 11.03.2025 15:15:38

A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.

7.8

CVE-2023-3111

  • EPSS 0.01%
  • Veröffentlicht 05.06.2023 21:15:11
  • Zuletzt bearbeitet 23.04.2025 17:16:34

A use after free vulnerability was found in prepare_to_relocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possible flaw can be triggered by calling btrfs_ioctl_balance() before calling btrfs_ioctl_defrag().

5.5

CVE-2023-2985

  • EPSS 0.01%
  • Veröffentlicht 01.06.2023 01:15:17
  • Zuletzt bearbeitet 11.03.2025 16:15:14

A use after free flaw was found in hfsplus_put_super in fs/hfsplus/super.c in the Linux Kernel. This flaw could allow a local user to cause a denial of service problem.

5.5

CVE-2023-3006

  • EPSS 0.02%
  • Veröffentlicht 31.05.2023 20:15:11
  • Zuletzt bearbeitet 09.01.2025 21:15:24

A known cache speculation vulnerability, known as Branch History Injection (BHI) or Spectre-BHB, becomes actual again for the new hw AmpereOne. Spectre-BHB is similar to Spectre v2, except that malicious code uses the shared branch history (stored in...

5.5

CVE-2023-34256

  • EPSS 0.02%
  • Veröffentlicht 31.05.2023 20:15:10
  • Zuletzt bearbeitet 11.03.2025 16:15:14

An issue was discovered in the Linux kernel before 6.3.3. There is an out-of-bounds read in crc16 in lib/crc16.c when called from fs/ext4/super.c because ext4_group_desc_csum does not properly check an offset. NOTE: this is disputed by third parties ...

4.7

CVE-2023-2612

  • EPSS 0.02%
  • Veröffentlicht 31.05.2023 00:15:10
  • Zuletzt bearbeitet 21.11.2024 07:58:55

Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock).