Canonical

Ubuntu 20.04 LTS

3473 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.3

CVE-2021-21781

Exploit
  • EPSS 0.02%
  • Veröffentlicht 18.08.2021 15:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:57

An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54. The latest version (5.11-rc4) seems to still be vulnerable. A userland application can read the contents of the sigpage, which can le...

0

CVE-2021-3587

  • EPSS -
  • Veröffentlicht 18.08.2021 06:15:07
  • Zuletzt bearbeitet 07.11.2023 03:38:07

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-38208. Reason: This candidate is a reservation duplicate of CVE-2021-38208. Notes: All CVE users should reference CVE-2021-38208 instead of this candidate. All references and des...

6.9

CVE-2021-3573

Exploit
  • EPSS 0.03%
  • Veröffentlicht 13.08.2021 14:15:07
  • Zuletzt bearbeitet 21.11.2024 06:21:52

A use-after-free in function hci_sock_bound_ioctl() of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hci_unregister_dev() together with one of the calls hci_sock_bl...

5.5

CVE-2021-38198

Exploit
  • EPSS 0.08%
  • Veröffentlicht 08.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:37

arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.

6.5

CVE-2021-38199

  • EPSS 0.19%
  • Veröffentlicht 08.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:38

fs/nfs/nfs4client.c in the Linux kernel before 5.13.4 has incorrect connection-setup ordering, which allows operators of remote NFSv4 servers to cause a denial of service (hanging of mounts) by arranging for those servers to be unreachable during tru...

6.8

CVE-2021-38204

  • EPSS 0.07%
  • Veröffentlicht 08.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:39

drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations.

3.3

CVE-2021-38205

  • EPSS 0.02%
  • Veröffentlicht 08.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:39

drivers/net/ethernet/xilinx/xilinx_emaclite.c in the Linux kernel before 5.13.3 makes it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer).

7.5

CVE-2021-38207

  • EPSS 2.48%
  • Veröffentlicht 08.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:39

drivers/net/ethernet/xilinx/ll_temac_main.c in the Linux kernel before 5.12.13 allows remote attackers to cause a denial of service (buffer overflow and lockup) by sending heavy network traffic for about ten minutes.

5.5

CVE-2021-38208

Exploit
  • EPSS 0.08%
  • Veröffentlicht 08.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:40

net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.

7.8

CVE-2021-38160

  • EPSS 0.04%
  • Veröffentlicht 07.08.2021 04:15:06
  • Zuletzt bearbeitet 05.05.2025 14:12:40

In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is...