Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

11 – 20 of 1310 results


CVE-2017-2634

Medium priority
Ignored

It was found that the Linux kernel's Datagram Congestion Control Protocol (DCCP) implementation before 2.6.22.17 used the IPv4-only inet_sk_rebuild_header() function for both IPv4 and IPv6 DCCP connections, which could result in...

27 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-gke...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected
linux-armadaxp Not in release
linux-aws Not affected
linux-flo Not affected
linux-gke Not affected
linux-goldfish Not affected
linux-grouper Not in release
linux-hwe Not affected
linux-hwe-edge Not affected
linux-linaro-omap Not in release
linux-linaro-shared Not in release
linux-linaro-vexpress Not in release
linux-lts-quantal Not in release
linux-lts-raring Not in release
linux-lts-saucy Not in release
linux-lts-trusty Not in release
linux-lts-utopic Not in release
linux-lts-vivid Not in release
linux-lts-wily Not in release
linux-lts-xenial Not in release
linux-maguro Not in release
linux-mako Not affected
linux-manta Not in release
linux-qcm-msm Not in release
linux-raspi2 Not affected
linux-snapdragon Not affected
linux-ti-omap4 Not in release
Show all 27 packages Show less packages

CVE-2015-9016

Medium priority

Some fixes available 1 of 5

In blk_mq_tag_to_rq in blk-mq.c in the upstream kernel, there is a possible use after free due to a race condition when a request has been previously freed by blk_mq_complete_request. This could lead to local escalation...

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Not affected
linux-armadaxp Not in release Not in release
linux-aws Not affected Not affected
linux-azure Not affected Not affected
linux-euclid Not in release Not affected
linux-flo Not in release Ignored
linux-gcp Not affected Not affected
linux-gke Not in release Not affected
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Not affected Not affected
linux-hwe-edge Fixed Not affected
linux-kvm Not affected Not affected
linux-linaro-omap Not in release Not in release
linux-linaro-shared Not in release Not in release
linux-linaro-vexpress Not in release Not in release
linux-lts-quantal Not in release Not in release
linux-lts-raring Not in release Not in release
linux-lts-saucy Not in release Not in release
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Not affected Not affected
linux-qcm-msm Not in release Not in release
linux-raspi2 Not affected Not affected
linux-snapdragon Not affected Not affected
linux-ti-omap4 Not in release Not in release
Show all 32 packages Show less packages

CVE-2017-18224

Medium priority

Some fixes available 4 of 10

In the Linux kernel before 4.15, fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations in DIRECT mode, which allows local users to cause a denial of...

33 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-azure-edge...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Not affected
linux-armadaxp Not in release Not in release
linux-aws Not affected Not affected
linux-azure Not affected Fixed
linux-azure-edge Not affected Not affected
linux-euclid Not in release Ignored
linux-flo Not in release Ignored
linux-gcp Not affected Fixed
linux-gke Not in release Not affected
linux-goldfish Not in release Not affected
linux-grouper Not in release Not in release
linux-hwe Not affected Fixed
linux-hwe-edge Not affected Fixed
linux-kvm Not affected Not affected
linux-linaro-omap Not in release Not in release
linux-linaro-shared Not in release Not in release
linux-linaro-vexpress Not in release Not in release
linux-lts-quantal Not in release Not in release
linux-lts-raring Not in release Not in release
linux-lts-saucy Not in release Not in release
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Not affected Ignored
linux-qcm-msm Not in release Not in release
linux-raspi2 Not affected Not affected
linux-snapdragon Not affected Not affected
linux-ti-omap4 Not in release Not in release
Show all 33 packages Show less packages

CVE-2017-6280

Medium priority

Some fixes available 1 of 6

NVIDIA driver contains a possible out-of-bounds read vulnerability due to a leak which may lead to information disclosure. This issue is rated as moderate. Android: A-63851980.

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Not affected
linux-armadaxp Not in release Not in release
linux-aws Not affected Not affected
linux-azure Not affected Not affected
linux-euclid Not in release Ignored
linux-flo Not in release Ignored
linux-gcp Not affected Not affected
linux-gke Not in release Ignored
linux-goldfish Not in release Ignored
linux-grouper Not in release Not in release
linux-hwe Not affected Not affected
linux-hwe-edge Fixed Not affected
linux-kvm Not affected Not affected
linux-linaro-omap Not in release Not in release
linux-linaro-shared Not in release Not in release
linux-linaro-vexpress Not in release Not in release
linux-lts-quantal Not in release Not in release
linux-lts-raring Not in release Not in release
linux-lts-saucy Not in release Not in release
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Not affected Not affected
linux-qcm-msm Not in release Not in release
linux-raspi2 Not affected Not affected
linux-snapdragon Not affected Not affected
linux-ti-omap4 Not in release Not in release
Show all 32 packages Show less packages

CVE-2017-18218

Medium priority

Some fixes available 2 of 5

In drivers/net/ethernet/hisilicon/hns/hns_enet.c in the Linux kernel before 4.13, local users can cause a denial of service (use-after-free and BUG) or possibly have unspecified other impact by leveraging differences in...

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected
linux-armadaxp Not in release
linux-aws Not affected
linux-azure Not affected
linux-euclid Not affected
linux-flo Ignored
linux-gcp Not affected
linux-gke Not affected
linux-goldfish Not affected
linux-grouper Not in release
linux-hwe Fixed
linux-hwe-edge Fixed
linux-kvm Not affected
linux-linaro-omap Not in release
linux-linaro-shared Not in release
linux-linaro-vexpress Not in release
linux-lts-quantal Not in release
linux-lts-raring Not in release
linux-lts-saucy Not in release
linux-lts-trusty Not in release
linux-lts-utopic Not in release
linux-lts-vivid Not in release
linux-lts-wily Not in release
linux-lts-xenial Not in release
linux-maguro Not in release
linux-mako Ignored
linux-manta Not in release
linux-oem Not affected
linux-qcm-msm Not in release
linux-raspi2 Not affected
linux-snapdragon Not affected
linux-ti-omap4 Not in release
Show all 32 packages Show less packages

CVE-2017-18202

Medium priority

Some fixes available 4 of 9

The __oom_reap_task_mm function in mm/oom_kill.c in the Linux kernel before 4.14.4 mishandles gather operations, which allows attackers to cause a denial of service (TLB entry leak or use-after-free) or possibly have unspecified...

33 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-azure-edge...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Not affected
linux-armadaxp Not in release Not in release
linux-aws Not affected Not affected
linux-azure Not affected Fixed
linux-azure-edge Not affected Not affected
linux-euclid Not in release Not affected
linux-flo Not in release Ignored
linux-gcp Not affected Fixed
linux-gke Not in release Not affected
linux-goldfish Not in release Not affected
linux-grouper Not in release Not in release
linux-hwe Not affected Fixed
linux-hwe-edge Not affected Fixed
linux-kvm Not affected Not affected
linux-linaro-omap Not in release Not in release
linux-linaro-shared Not in release Not in release
linux-linaro-vexpress Not in release Not in release
linux-lts-quantal Not in release Not in release
linux-lts-raring Not in release Not in release
linux-lts-saucy Not in release Not in release
linux-lts-trusty Not in release Not in release
linux-lts-utopic Not in release Not in release
linux-lts-vivid Not in release Not in release
linux-lts-wily Not in release Not in release
linux-lts-xenial Not in release Not in release
linux-maguro Not in release Not in release
linux-mako Not in release Ignored
linux-manta Not in release Not in release
linux-oem Not affected Ignored
linux-qcm-msm Not in release Not in release
linux-raspi2 Not affected Not affected
linux-snapdragon Not affected Not affected
linux-ti-omap4 Not in release Not in release
Show all 33 packages Show less packages

CVE-2017-18200

Medium priority
Ignored

The f2fs implementation in the Linux kernel before 4.14 mishandles reference counts associated with f2fs_wait_discard_bios calls, which allows local users to cause a denial of service (BUG), as demonstrated by fstrim.

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected
linux-armadaxp Not in release
linux-aws Not affected
linux-azure Not affected
linux-euclid Not affected
linux-flo Ignored
linux-gcp Not affected
linux-gke Not affected
linux-goldfish Not affected
linux-grouper Not in release
linux-hwe Not affected
linux-hwe-edge Not affected
linux-kvm Not affected
linux-linaro-omap Not in release
linux-linaro-shared Not in release
linux-linaro-vexpress Not in release
linux-lts-quantal Not in release
linux-lts-raring Not in release
linux-lts-saucy Not in release
linux-lts-trusty Not in release
linux-lts-utopic Not in release
linux-lts-vivid Not in release
linux-lts-wily Not in release
linux-lts-xenial Not in release
linux-maguro Not in release
linux-mako Ignored
linux-manta Not in release
linux-oem Not affected
linux-qcm-msm Not in release
linux-raspi2 Not affected
linux-snapdragon Not affected
linux-ti-omap4 Not in release
Show all 32 packages Show less packages

CVE-2018-7273

Negligible priority

Some fixes available 5 of 21

In the Linux kernel through 4.15.4, the floppy driver reveals the addresses of kernel functions and global variables using printk calls within the function show_floppy in drivers/block/floppy.c. An attacker can read...

64 affected packages

linux, linux-armadaxp, linux-aws, linux-aws-5.0, linux-aws-5.3...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected Not affected Ignored
linux-armadaxp Not in release Not in release Not in release
linux-aws Not affected Not affected Ignored
linux-aws-5.0 Not in release Not affected Not in release
linux-aws-5.3 Not in release Not affected Not in release
linux-aws-5.4 Not in release Not affected Not in release
linux-aws-hwe Not in release Not in release Not affected
linux-azure Not affected Not affected Fixed
linux-azure-4.15 Not in release Not affected Not in release
linux-azure-5.3 Not in release Not affected Not in release
linux-azure-5.4 Not in release Not affected Not in release
linux-azure-edge Not in release Not affected Not in release
linux-dell300x Not in release Not affected Not in release
linux-euclid Not in release Not in release Ignored
linux-flo Not in release Not in release Ignored
linux-gcp Not affected Not affected Fixed
linux-gcp-4.15 Not in release Not affected Not in release
linux-gcp-5.3 Not in release Not affected Not in release
linux-gcp-5.4 Not in release Not affected Not in release
linux-gcp-edge Not in release Not affected Not in release
linux-gke Not affected Not in release Ignored
linux-gke-4.15 Not in release Not affected Not in release
linux-gke-5.0 Not in release Not affected Not in release
linux-gke-5.3 Not in release Not affected Not in release
linux-gke-5.4 Not in release Not affected Not in release
linux-gkeop Not affected Not in release Not in release
linux-gkeop-5.4 Not in release Not affected Not in release
linux-goldfish Not in release Not in release Ignored
linux-grouper Not in release Not in release Not in release
linux-hwe Not in release Not affected Fixed
linux-hwe-5.4 Not in release Not affected Not in release
linux-hwe-5.8 Not affected Not in release Not in release
linux-hwe-edge Not in release Not affected Fixed
linux-kvm Not affected Not affected Ignored
linux-linaro-omap Not in release Not in release Not in release
linux-linaro-shared Not in release Not in release Not in release
linux-linaro-vexpress Not in release Not in release Not in release
linux-lts-quantal Not in release Not in release Not in release
linux-lts-raring Not in release Not in release Not in release
linux-lts-saucy Not in release Not in release Not in release
linux-lts-trusty Not in release Not in release Not in release
linux-lts-utopic Not in release Not in release Not in release
linux-lts-vivid Not in release Not in release Not in release
linux-lts-wily Not in release Not in release Not in release
linux-lts-xenial Not in release Not in release Not in release
linux-maguro Not in release Not in release Not in release
linux-mako Not in release Not in release Ignored
linux-manta Not in release Not in release Not in release
linux-oem Not in release Not affected Ignored
linux-oem-5.10 Not affected Not in release Not in release
linux-oem-5.6 Not affected Not in release Not in release
linux-oem-osp1 Not in release Not affected Not in release
linux-oracle Not affected Not affected Not affected
linux-oracle-5.0 Not in release Not affected Not in release
linux-oracle-5.3 Not in release Not affected Not in release
linux-oracle-5.4 Not in release Not affected Not in release
linux-qcm-msm Not in release Not in release Not in release
linux-raspi Not affected Not in release Not in release
linux-raspi-5.4 Not in release Not affected Not in release
linux-raspi2 Not affected Not affected Ignored
linux-raspi2-5.3 Not in release Not affected Not in release
linux-riscv Not affected Not in release Not in release
linux-snapdragon Not in release Fixed Ignored
linux-ti-omap4 Not in release Not in release Not in release
Show all 64 packages Show less packages

CVE-2018-1000028

Medium priority
Ignored

Linux kernel version after commit bdcf0a423ea1 - 4.15-rc4+, 4.14.8+, 4.9.76+, 4.4.111+ contains a Incorrect Access Control vulnerability in NFS server (nfsd) that can result in remote users reading or writing files they should not...

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected
linux-armadaxp Not in release
linux-aws Not affected
linux-azure Not affected
linux-euclid Not affected
linux-flo Ignored
linux-gcp Not affected
linux-gke Not affected
linux-goldfish Not affected
linux-grouper Not in release
linux-hwe Not affected
linux-hwe-edge Not affected
linux-kvm Not affected
linux-linaro-omap Not in release
linux-linaro-shared Not in release
linux-linaro-vexpress Not in release
linux-lts-quantal Not in release
linux-lts-raring Not in release
linux-lts-saucy Not in release
linux-lts-trusty Not in release
linux-lts-utopic Not in release
linux-lts-vivid Not in release
linux-lts-wily Not in release
linux-lts-xenial Not in release
linux-maguro Not in release
linux-mako Ignored
linux-manta Not in release
linux-oem Not affected
linux-qcm-msm Not in release
linux-raspi2 Not affected
linux-snapdragon Not affected
linux-ti-omap4 Not in release
Show all 32 packages Show less packages

CVE-2014-8171

Low priority
Ignored

The memory resource controller (aka memcg) in the Linux kernel allows local users to cause a denial of service (deadlock) by spawning new processes within a memory-constrained cgroup.

31 affected packages

linux, linux-2.6, linux-armadaxp, linux-aws, linux-ec2...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
linux Not affected
linux-2.6 Not in release
linux-armadaxp Not in release
linux-aws Not affected
linux-ec2 Not in release
linux-flo Ignored
linux-fsl-imx51 Not in release
linux-gke Not affected
linux-goldfish Ignored
linux-grouper Not in release
linux-hwe Not affected
linux-hwe-edge Not affected
linux-linaro-omap Not in release
linux-linaro-shared Not in release
linux-linaro-vexpress Not in release
linux-lts-quantal Not in release
linux-lts-raring Not in release
linux-lts-saucy Not in release
linux-lts-trusty Not in release
linux-lts-utopic Not in release
linux-lts-vivid Not in release
linux-lts-wily Not in release
linux-lts-xenial Not in release
linux-maguro Not in release
linux-mako Ignored
linux-manta Not in release
linux-mvl-dove Not in release
linux-qcm-msm Not in release
linux-raspi2 Not affected
linux-snapdragon Not affected
linux-ti-omap4 Not in release
Show all 31 packages Show less packages