Canonical

Ubuntu 20.04 LTS

3473 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-39698

  • EPSS 0.03%
  • Veröffentlicht 16.03.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:20:02

In aio_poll_complete_work of aio.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Produc...

8.8

CVE-2022-27223

  • EPSS 0.32%
  • Veröffentlicht 16.03.2022 00:15:09
  • Zuletzt bearbeitet 21.11.2024 06:55:26

In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host for out-of-array access.

5.6

CVE-2022-23960

  • EPSS 0.23%
  • Veröffentlicht 13.03.2022 00:15:07
  • Zuletzt bearbeitet 21.11.2024 06:49:32

Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. An attacker can leverage the shared branch history in the Branch History Buffer (BHB) to influence mispredicted branches. Then,...

5.5

CVE-2022-26966

  • EPSS 0.03%
  • Veröffentlicht 12.03.2022 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:54:52

An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device.

6.5

CVE-2022-0001

  • EPSS 0.37%
  • Veröffentlicht 11.03.2022 18:15:25
  • Zuletzt bearbeitet 05.05.2025 17:17:29

Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

6.5

CVE-2022-0002

  • EPSS 0.7%
  • Veröffentlicht 11.03.2022 18:15:25
  • Zuletzt bearbeitet 05.05.2025 17:17:30

Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

5.6

CVE-2021-26401

  • EPSS 0.13%
  • Veröffentlicht 11.03.2022 18:15:11
  • Zuletzt bearbeitet 21.11.2024 05:56:18

LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.

7

CVE-2022-23036

  • EPSS 0.12%
  • Veröffentlicht 10.03.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:47:51

Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table i...

7

CVE-2022-23037

  • EPSS 0.12%
  • Veröffentlicht 10.03.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:47:51

Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table i...

7

CVE-2022-23038

  • EPSS 0.12%
  • Veröffentlicht 10.03.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:47:51

Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table i...