Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 0.44%
  • Veröffentlicht 16.11.2009 19:30:01
  • Zuletzt bearbeitet 16.06.2026 23:12:39

The poll_mode_io file for the megaraid_sas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows local users to change the I/O mode of the driver by modifying this file.

Exploit
  • EPSS 87.26%
  • Veröffentlicht 09.11.2009 17:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:50

The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Secu...

Exploit
  • EPSS 0.61%
  • Veröffentlicht 06.11.2009 15:30:00
  • Zuletzt bearbeitet 16.06.2026 23:12:14

The connector layer in the Linux kernel before 2.6.31.5 does not require the CAP_SYS_ADMIN capability for certain interaction with the (1) uvesafb, (2) pohmelfs, (3) dst, or (4) dm subsystem, which allows local users to bypass intended access restric...

Exploit
  • EPSS 4.93%
  • Veröffentlicht 04.11.2009 15:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:49

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathna...

  • EPSS 0.43%
  • Veröffentlicht 22.10.2009 16:00:00
  • Zuletzt bearbeitet 16.06.2026 23:12:02

The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash...

Exploit
  • EPSS 0.99%
  • Veröffentlicht 22.10.2009 16:00:00
  • Zuletzt bearbeitet 16.06.2026 23:12:02

net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows local users to cause a denial of service (system hang) by creating an abstract-namespace AF_UNIX listening socket, performing a shutdown operation on this socket, and then performing ...

  • EPSS 0.41%
  • Veröffentlicht 20.10.2009 17:30:00
  • Zuletzt bearbeitet 16.06.2026 23:10:29

arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 p...

  • EPSS 0.4%
  • Veröffentlicht 19.10.2009 20:00:00
  • Zuletzt bearbeitet 16.06.2026 23:11:10

The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain (1) tcm__pad1 and (2) tcm__pad2 structure members, which might allow local users ...

  • EPSS 0.4%
  • Veröffentlicht 19.10.2009 20:00:00
  • Zuletzt bearbeitet 16.06.2026 23:12:00

The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensit...

  • EPSS 4.21%
  • Veröffentlicht 07.10.2009 18:30:00
  • Zuletzt bearbeitet 16.06.2026 23:10:28

smbd in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8, and 3.4 before 3.4.2 allows remote authenticated users to cause a denial of service (infinite loop) via an unanticipated oplock break notification reply packet.