Canonical

Ubuntu 20.04 LTS

3473 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.7

CVE-2020-27820

  • EPSS 0.02%
  • Veröffentlicht 03.11.2021 00:15:07
  • Zuletzt bearbeitet 21.11.2024 05:21:52

A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose() handler could happen if removing device (that is not common to remove video card physically without power-off, but same happens if "unbind" the driver).

5.5

CVE-2021-43056

  • EPSS 0.02%
  • Veröffentlicht 28.10.2021 04:15:08
  • Zuletzt bearbeitet 21.11.2024 06:28:36

An issue was discovered in the Linux kernel for powerpc before 5.14.15. It allows a malicious KVM guest to crash the host, when the host is running on Power8, due to an arch/powerpc/kvm/book3s_hv_rmhandlers.S implementation bug in the handling of the...

5.5

CVE-2021-0938

  • EPSS 0.04%
  • Veröffentlicht 25.10.2021 14:15:09
  • Zuletzt bearbeitet 21.11.2024 05:43:16

In memzero_explicit of compiler-clang.h, there is a possible bypass of defense in depth due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for expl...

7.2

CVE-2021-0941

  • EPSS 0.06%
  • Veröffentlicht 25.10.2021 14:15:09
  • Zuletzt bearbeitet 21.11.2024 05:43:16

In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: And...

6.7

CVE-2021-42739

  • EPSS 0.11%
  • Veröffentlicht 20.10.2021 07:15:09
  • Zuletzt bearbeitet 21.11.2024 06:28:04

The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandles bounds checking.

7.8

CVE-2021-42252

  • EPSS 0.13%
  • Veröffentlicht 11.10.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:27:27

An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute pr...

7.8

CVE-2021-42008

Exploit
  • EPSS 0.93%
  • Veröffentlicht 05.10.2021 00:15:07
  • Zuletzt bearbeitet 21.11.2024 06:27:03

The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access.

7.8

CVE-2021-41864

  • EPSS 0.02%
  • Veröffentlicht 02.10.2021 00:15:07
  • Zuletzt bearbeitet 21.11.2024 06:26:55

prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.

8.8

CVE-2021-3653

Exploit
  • EPSS 0.02%
  • Veröffentlicht 29.09.2021 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:22:04

A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the ...

7

CVE-2021-40490

  • EPSS 0.04%
  • Veröffentlicht 03.09.2021 01:15:07
  • Zuletzt bearbeitet 21.11.2024 06:24:14

A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13.