Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

91 – 100 of 595 results

CVE-2019-9003

Medium priority

Some fixes available 10 of 13

In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmi_msghandler.c use-after-free and OOPS by arranging for certain simultaneous execution of the code, as demonstrated by a "service ipmievd restart" loop.

27 affected packages

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-edge...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Not affected
linux-aws Not affected Not affected
linux-aws-hwe Not in release Not affected
linux-azure Fixed Not affected
linux-azure-edge Fixed Not affected
linux-euclid Not in release Not affected
linux-flo Not in release Ignored
linux-gcp Not affected Not affected
linux-gcp-edge Fixed Not in release
linux-gke Not in release Ignored
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Fixed Not affected
linux-hwe-edge Not affected Not affected
linux-kvm Not affected Not affected
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Not affected Ignored
linux-oracle Not affected Not affected
linux-raspi2 Not affected Not affected
linux-snapdragon Not affected Not affected
Show all 27 packages Show less packages

CVE-2019-8956

Medium priority

Some fixes available 10 of 13

In the Linux Kernel before versions 4.20.8 and 4.19.21 a use-after-free error in the "sctp_sendmsg()" function (net/sctp/socket.c) when handling SCTP_SENDALL flag can be exploited to corrupt memory.

27 affected packages

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-edge...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Not affected
linux-aws Not affected Not affected
linux-aws-hwe Not in release Not affected
linux-azure Fixed Not affected
linux-azure-edge Fixed Not affected
linux-euclid Not in release Not affected
linux-flo Not in release Ignored
linux-gcp Not affected Not affected
linux-gcp-edge Fixed Not in release
linux-gke Not in release Ignored
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Fixed Not affected
linux-hwe-edge Not affected Not affected
linux-kvm Not affected Not affected
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Not affected Ignored
linux-oracle Not affected Not affected
linux-raspi2 Not affected Not affected
linux-snapdragon Not affected Not affected
Show all 27 packages Show less packages

CVE-2018-20784

Medium priority

Some fixes available 29 of 46

In the Linux kernel before 4.20.2, kernel/sched/fair.c mishandles leaf cfs_rq's, which allows attackers to cause a denial of service (infinite loop in update_blocked_averages) or possibly have unspecified other impact by inducing...

36 affected packages

linux, linux-aws, linux-aws-5.0, linux-aws-hwe, linux-azure...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Fixed Fixed
linux-aws Fixed Fixed
linux-aws-5.0 Not affected Not in release
linux-aws-hwe Not in release Fixed
linux-azure Fixed Fixed
linux-azure-5.3 Not affected Not in release
linux-azure-edge Fixed Fixed
linux-euclid Not in release Ignored
linux-flo Not in release Ignored
linux-gcp Fixed Fixed
linux-gcp-5.3 Not affected Not in release
linux-gcp-edge Fixed Not in release
linux-gke Not in release Ignored
linux-gke-4.15 Fixed Not in release
linux-gke-5.0 Not affected Not in release
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Fixed Fixed
linux-hwe-edge Not affected Fixed
linux-kvm Fixed Fixed
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Fixed Ignored
linux-oem-5.4 Not in release Not in release
linux-oem-osp1 Not affected Not in release
linux-oracle Fixed Fixed
linux-oracle-5.0 Not affected Not in release
linux-raspi2 Fixed Fixed
linux-raspi2-5.3 Not affected Not in release
linux-snapdragon Fixed Fixed
Show all 36 packages Show less packages

CVE-2019-8980

Medium priority

Some fixes available 27 of 34

A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory consumption) by triggering vfs_read failures.

27 affected packages

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-edge...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Fixed Not affected
linux-aws Fixed Not affected
linux-aws-hwe Not in release Fixed
linux-azure Fixed Fixed
linux-azure-edge Fixed Fixed
linux-euclid Not in release Ignored
linux-flo Not in release Ignored
linux-gcp Fixed Fixed
linux-gcp-edge Fixed Not in release
linux-gke Not affected Ignored
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Fixed Fixed
linux-hwe-edge Not affected Fixed
linux-kvm Fixed Not affected
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Fixed Ignored
linux-oracle Fixed Fixed
linux-raspi2 Fixed Not affected
linux-snapdragon Not affected Not affected
Show all 27 packages Show less packages

CVE-2019-8912

Medium priority

Some fixes available 27 of 33

In the Linux kernel through 4.20.11, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr.

27 affected packages

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-edge...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Fixed Not affected
linux-aws Fixed Not affected
linux-aws-hwe Not in release Fixed
linux-azure Fixed Fixed
linux-azure-edge Fixed Fixed
linux-euclid Not in release Not affected
linux-flo Not in release Ignored
linux-gcp Fixed Fixed
linux-gcp-edge Fixed Not in release
linux-gke Not affected Ignored
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Fixed Fixed
linux-hwe-edge Not affected Fixed
linux-kvm Fixed Not affected
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Fixed Ignored
linux-oracle Fixed Fixed
linux-raspi2 Fixed Not affected
linux-snapdragon Not affected Not affected
Show all 27 packages Show less packages

CVE-2019-6974

Medium priority

Some fixes available 36 of 43

In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading to a use-after-free.

27 affected packages

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-edge...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Fixed Fixed
linux-aws Fixed Fixed
linux-aws-hwe Not in release Fixed
linux-azure Fixed Fixed
linux-azure-edge Fixed Fixed
linux-euclid Not in release Ignored
linux-flo Not in release Ignored
linux-gcp Fixed Fixed
linux-gcp-edge Fixed Not in release
linux-gke Not affected Ignored
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Fixed Fixed
linux-hwe-edge Not affected Fixed
linux-kvm Fixed Fixed
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Fixed Ignored
linux-oracle Fixed Fixed
linux-raspi2 Fixed Fixed
linux-snapdragon Fixed Fixed
Show all 27 packages Show less packages

CVE-2016-10741

Medium priority

Some fixes available 8 of 16

In the Linux kernel before 4.9.3, fs/xfs/xfs_aops.c allows local users to cause a denial of service (system crash) because there is a race condition between direct and memory-mapped I/O (associated with a hole) that is handled...

27 affected packages

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-edge...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Fixed
linux-aws Not affected Fixed
linux-aws-hwe Not in release Not affected
linux-azure Not affected Not affected
linux-azure-edge Not affected Not affected
linux-euclid Not in release Ignored
linux-flo Not in release Ignored
linux-gcp Not affected Not affected
linux-gcp-edge Not affected Not in release
linux-gke Not affected Ignored
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Not affected Fixed
linux-hwe-edge Not affected Fixed
linux-kvm Not affected Fixed
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Not affected Ignored
linux-oracle Not affected Not affected
linux-raspi2 Not affected Fixed
linux-snapdragon Not affected Fixed
Show all 27 packages Show less packages

CVE-2019-7308

Medium priority

Some fixes available 26 of 50

kernel/bpf/verifier.c in the Linux kernel before 4.20.6 performs undesirable out-of-bounds speculation on pointer arithmetic in various cases, including cases of different branches with different state or limits to sanitize,...

108 affected packages

linux, linux-allwinner, linux-allwinner-5.19, linux-aws, linux-aws-5.0...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Not affected Not affected Fixed Ignored
linux-allwinner Not in release Not in release Not in release Not in release Not in release
linux-allwinner-5.19 Not in release Ignored Not in release Not in release Not in release
linux-aws Not affected Not affected Not affected Fixed Ignored
linux-aws-5.0 Not in release Not in release Not affected Not in release
linux-aws-5.15 Not in release Not in release Not affected Not in release Not in release
linux-aws-5.19 Not in release Ignored Not in release Not in release Not in release
linux-aws-5.3 Not in release Not in release Not affected Not in release
linux-aws-5.4 Not in release Not in release Not affected Not in release
linux-aws-6.2 Not in release Not affected Not in release Not in release Not in release
linux-aws-6.5 Not in release Not affected Not in release Not in release Not in release
linux-aws-fips Not in release Not in release Not in release Not in release Not in release
linux-aws-hwe Not in release Not in release Not in release Fixed
linux-azure Not affected Not affected Not affected Fixed Fixed
linux-azure-4.15 Not in release Not in release Not affected Not in release
linux-azure-5.15 Not in release Not in release Not affected Not in release Not in release
linux-azure-5.3 Not in release Not in release Not affected Not in release
linux-azure-5.4 Not in release Not in release Not affected Not in release
linux-azure-6.2 Not in release Not affected Not in release Not in release Not in release
linux-azure-6.5 Not in release Not affected Not in release Not in release Not in release
linux-azure-edge Not in release Not in release Fixed Not in release
linux-azure-fde Not in release Not affected Ignored Not in release Not in release
linux-azure-fde-5.15 Not in release Not in release Not affected Not in release Not in release
linux-azure-fde-6.2 Not in release Not affected Not in release Not in release Not in release
linux-azure-fips Not in release Not in release Not in release Not in release Not in release
linux-bluefield Not in release Not in release Not affected Not in release Not in release
linux-dell300x Not in release Not in release Not affected Not in release
linux-euclid Not in release Not in release Not in release Not affected
linux-fips Not in release Not in release Not in release Not in release Ignored
linux-gcp Not affected Not affected Not affected Fixed Fixed
linux-gcp-4.15 Not in release Not in release Not affected Not in release
linux-gcp-5.15 Not in release Not in release Not affected Not in release Not in release
linux-gcp-5.19 Not in release Ignored Not in release Not in release Not in release
linux-gcp-5.3 Not in release Not in release Not affected Not in release
linux-gcp-5.4 Not in release Not in release Not affected Not in release
linux-gcp-6.2 Not in release Not affected Not in release Not in release Not in release
linux-gcp-6.5 Not in release Not affected Not in release Not in release Not in release
linux-gcp-edge Not in release Not in release Fixed Not in release
linux-gcp-fips Not in release Not in release Not in release Not in release Not in release
linux-gke Not affected Not affected Not affected Not in release Ignored
linux-gke-4.15 Not in release Not in release Not affected Not in release
linux-gke-5.0 Not in release Not in release Not affected Not in release
linux-gke-5.3 Not in release Not in release Not affected Not in release
linux-gke-5.4 Not in release Not in release Not affected Not in release
linux-gkeop Not in release Not affected Not affected Not in release Not in release
linux-gkeop-5.15 Not in release Not in release Not affected Not in release Not in release
linux-gkeop-5.4 Not in release Not in release Not affected Not in release
linux-goldfish Not in release Not in release Not in release Ignored
linux-grouper Not in release Not in release Not in release Not in release
linux-hwe Not in release Not in release Fixed Fixed
linux-hwe-5.15 Not in release Not in release Not affected Not in release Not in release
linux-hwe-5.4 Not in release Not in release Not affected Not in release
linux-hwe-5.8 Not in release Not affected Not in release Not in release
linux-hwe-6.2 Not in release Not affected Not in release Not in release Not in release
linux-hwe-6.5 Not in release Not affected Not in release Not in release Not in release
linux-hwe-edge Not in release Not in release Not affected Fixed
linux-ibm Not affected Not affected Not affected Not in release Not in release
linux-ibm-5.15 Not in release Not in release Not affected Not in release Not in release
linux-ibm-5.4 Not in release Not in release Not in release Not affected Not in release
linux-intel Not affected Not in release Not in release Not in release Not in release
linux-intel-iotg Not in release Not affected Not in release Not in release Not in release
linux-intel-iotg-5.15 Not in release Not in release Not affected Not in release Not in release
linux-iot Not in release Not in release Not affected Not in release Not in release
linux-kvm Not in release Not affected Not affected Fixed Ignored
linux-laptop Not in release Not in release Not in release Not in release Not in release
linux-lowlatency Not affected Not affected Not in release Not in release Not in release
linux-lowlatency-hwe-5.15 Not in release Not in release Not affected Not in release Not in release
linux-lowlatency-hwe-6.2 Not in release Not affected Not in release Not in release Not in release
linux-lowlatency-hwe-6.5 Not in release Not affected Not in release Not in release Not in release
linux-lts-trusty Not in release Not in release Not in release Not in release
linux-lts-utopic Not in release Not in release Not in release Not in release
linux-lts-vivid Not in release Not in release Not in release Not in release
linux-lts-wily Not in release Not in release Not in release Not in release
linux-lts-xenial Not in release Not in release Not in release Not in release
linux-maguro Not in release Not in release Not in release Not in release
linux-mako Not in release Not in release Not in release Ignored
linux-manta Not in release Not in release Not in release Not in release
linux-nvidia Not affected Not affected Not in release Not in release Not in release
linux-nvidia-6.2 Not in release Not affected Not in release Not in release Not in release
linux-nvidia-6.5 Not in release Not affected Not in release Not in release Not in release
linux-nvidia-6.8 Not in release Not affected Not in release Not in release Not in release
linux-nvidia-lowlatency Not affected Not in release Not in release Not in release Not in release
linux-oem Not in release Not in release Fixed Ignored
linux-oem-5.10 Not in release Not affected Not in release Not in release
linux-oem-5.6 Not in release Not affected Not in release Not in release
linux-oem-6.5 Not in release Not affected Not in release Not in release Not in release
linux-oem-6.8 Not affected Not in release Not in release Not in release Not in release
linux-oem-osp1 Not in release Not in release Not affected Not in release
linux-oracle Not affected Not affected Not affected Fixed Fixed
linux-oracle-5.0 Not in release Not in release Not affected Not in release
linux-oracle-5.15 Not in release Not in release Not affected Not in release Not in release
linux-oracle-5.3 Not in release Not in release Not affected Not in release
linux-oracle-5.4 Not in release Not in release Not affected Not in release
linux-oracle-6.5 Not in release Not affected Not in release Not in release Not in release
linux-raspi Not affected Not affected Not affected Not in release Not in release
linux-raspi-5.4 Not in release Not in release Not affected Not in release
linux-raspi2 Not in release Not affected Fixed Ignored
linux-raspi2-5.3 Not in release Not in release Not affected Not in release
linux-riscv Not affected Ignored Not affected Not in release Not in release
linux-riscv-5.15 Not in release Not in release Not affected Not in release Not in release
linux-riscv-5.19 Not in release Ignored Not in release Not in release Not in release
linux-riscv-6.5 Not in release Not affected Not in release Not in release Not in release
linux-snapdragon Not in release Not in release Not affected Ignored
linux-starfive Not in release Not in release Not in release Not in release Not in release
linux-starfive-5.19 Not in release Ignored Not in release Not in release Not in release
linux-starfive-6.2 Not in release Not affected Not in release Not in release Not in release
linux-starfive-6.5 Not in release Not affected Not in release Not in release Not in release
linux-xilinx-zynqmp Not in release Not affected Not affected Not in release Not in release
Show all 108 packages Show less packages

CVE-2017-18360

Medium priority

Some fixes available 9 of 13

In change_port_settings in drivers/usb/serial/io_ti.c in the Linux kernel before 4.11.3, local users could cause a denial of service by division-by-zero in the serial device layer by trying to set very high baud rates.

27 affected packages

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-edge...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Fixed
linux-aws Not affected Fixed
linux-aws-hwe Not in release Not affected
linux-azure Not affected Not affected
linux-azure-edge Not affected Not affected
linux-euclid Not in release Ignored
linux-flo Not in release Ignored
linux-gcp Not affected Fixed
linux-gcp-edge Not affected Not in release
linux-gke Not in release Ignored
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Not affected Fixed
linux-hwe-edge Not affected Fixed
linux-kvm Not affected Not affected
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Not affected Ignored
linux-oracle Not affected Not affected
linux-raspi2 Not affected Fixed
linux-snapdragon Not affected Fixed
Show all 27 packages Show less packages

CVE-2018-16880

Medium priority

Some fixes available 10 of 13

A flaw was found in the Linux kernel's handle_rx() function in the [vhost_net] driver. A malicious virtual guest, under specific conditions, can trigger an out-of-bounds write in a kmalloc-8 slab on a virtual host which may lead...

27 affected packages

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-edge...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Not affected
linux-aws Not affected Not affected
linux-aws-hwe Not in release Not affected
linux-azure Fixed Not affected
linux-azure-edge Fixed Not affected
linux-euclid Not in release Not affected
linux-flo Not in release Ignored
linux-gcp Not affected Not affected
linux-gcp-edge Fixed Not in release
linux-gke Not in release Ignored
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Fixed Not affected
linux-hwe-edge Not affected Not affected
linux-kvm Not affected Not affected
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Not affected Ignored
linux-oracle Not affected Not affected
linux-raspi2 Not affected Not affected
linux-snapdragon Not affected Not affected
Show all 27 packages Show less packages
  1. Previous page
  2. 8
  3. 9
  4. 10
  5. 11
  6. 12
  7. Next page
Export to JSON