Canonical

Ubuntu 20.04 LTS

3473 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.6

CVE-2023-25012

Exploit
  • EPSS 0.04%
  • Veröffentlicht 02.02.2023 00:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:30

The Linux kernel through 6.1.9 has a Use-After-Free in bigben_remove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long.

7

CVE-2023-0266

Warnung
  • EPSS 0.15%
  • Veröffentlicht 30.01.2023 14:15:10
  • Zuletzt bearbeitet 24.10.2025 13:54:46

A use after free vulnerability exists in the ALSA PCM package in the Linux Kernel. SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32 is missing locks that can be used in a use-after-free that can result in a priviledge escalation to gain ring0 access from the syst...

7.8

CVE-2022-4139

  • EPSS 0.02%
  • Veröffentlicht 27.01.2023 18:15:15
  • Zuletzt bearbeitet 28.03.2025 16:15:25

An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially leading to random memory corruption or data leaks. This flaw could allow a local user to crash the system or escalate their privileges on the system.

7.8

CVE-2023-20928

  • EPSS 0.11%
  • Veröffentlicht 26.01.2023 21:18:11
  • Zuletzt bearbeitet 02.04.2025 15:15:53

In binder_vma_close of binder.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: And...

5.5

CVE-2023-0394

  • EPSS 0.02%
  • Veröffentlicht 26.01.2023 21:18:07
  • Zuletzt bearbeitet 31.03.2025 15:15:38

A NULL pointer dereference flaw was found in rawv6_push_pending_frames in net/ipv6/raw.c in the network subcomponent in the Linux kernel. This flaw causes the system to crash.

5.5

CVE-2022-47929

Exploit
  • EPSS 0.04%
  • Veröffentlicht 17.01.2023 21:15:14
  • Zuletzt bearbeitet 04.04.2025 18:15:43

In the Linux kernel before 6.1.6, a NULL pointer dereference bug in the traffic control subsystem allows an unprivileged user to trigger a denial of service (system crash) via a crafted traffic control configuration that is set up with "tc qdisc" and...

7.1

CVE-2022-41858

  • EPSS 0.01%
  • Veröffentlicht 17.01.2023 18:15:11
  • Zuletzt bearbeitet 07.04.2025 17:15:33

A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel inform...

7.8

CVE-2023-23559

  • EPSS 0.03%
  • Veröffentlicht 13.01.2023 01:15:10
  • Zuletzt bearbeitet 05.05.2025 16:15:30

In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.

6.6

CVE-2022-3628

Exploit
  • EPSS 0.07%
  • Veröffentlicht 12.01.2023 19:15:24
  • Zuletzt bearbeitet 08.04.2025 15:15:45

A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their privileges.

5.5

CVE-2023-23455

  • EPSS 0.03%
  • Veröffentlicht 12.01.2023 07:15:09
  • Zuletzt bearbeitet 20.03.2025 21:15:18

atm_tc_enqueue in net/sched/sch_atm.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification resu...