Search CVE reports
31 – 40 of 1754 results
CVE-2011-4915
Low priorityfs/proc/base.c in the Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /proc/interrupts.
18 affected packages
linux, linux-armadaxp, linux-ec2, linux-flo, linux-fsl-imx51...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | — |
linux-armadaxp | — | — | — | — | — |
linux-ec2 | — | — | — | — | — |
linux-flo | — | — | — | — | — |
linux-fsl-imx51 | — | — | — | — | — |
linux-goldfish | — | — | — | — | — |
linux-grouper | — | — | — | — | — |
linux-lts-backport-maverick | — | — | — | — | — |
linux-lts-backport-natty | — | — | — | — | — |
linux-lts-backport-oneiric | — | — | — | — | — |
linux-lts-quantal | — | — | — | — | — |
linux-lts-raring | — | — | — | — | — |
linux-lts-saucy | — | — | — | — | — |
linux-maguro | — | — | — | — | — |
linux-mako | — | — | — | — | — |
linux-manta | — | — | — | — | — |
linux-mvl-dove | — | — | — | — | — |
linux-ti-omap4 | — | — | — | — | — |
CVE-2015-9541
Low priorityQt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.
5 affected packages
phantomjs, pyside, pyside2, qt4-x11, qtbase-opensource-src
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
phantomjs | Not in release | Not in release | Vulnerable | Vulnerable | Vulnerable |
pyside | Not in release | Not in release | Not in release | Vulnerable | Vulnerable |
pyside2 | Vulnerable | Vulnerable | Vulnerable | Not in release | Needs evaluation |
qt4-x11 | Not in release | Not in release | Not in release | Vulnerable | Vulnerable |
qtbase-opensource-src | Not affected | Not affected | Not affected | Vulnerable | Vulnerable |
CVE-2012-5476
Low priorityWithin the RHOS Essex Preview (2012.2) of the OpenStack dashboard package, the file /etc/quantum/quantum.conf is world readable which exposes the admin password and token value.
1 affected packages
quantum
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
quantum | — | — | — | — | Not in release |
CVE-2019-0155
High prioritySome fixes available 48 of 66
Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R)...
38 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-hwe, linux-azure...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Not affected | Fixed | Fixed |
linux-aws | — | — | Not affected | Fixed | Fixed |
linux-aws-5.0 | — | — | Not in release | Fixed | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Fixed |
linux-azure | — | — | Not affected | Fixed | Fixed |
linux-azure-5.3 | — | — | Not in release | Fixed | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Ignored |
linux-euclid | — | — | Not in release | Not in release | Ignored |
linux-flo | — | — | Not in release | Not in release | Ignored |
linux-gcp | — | — | Not affected | Fixed | Fixed |
linux-gcp-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke | — | — | Not affected | Not in release | Ignored |
linux-gke-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.0 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.3 | — | — | Not in release | Not affected | Not in release |
linux-goldfish | — | — | Not in release | Not in release | Ignored |
linux-grouper | — | — | Not in release | Not in release | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-edge | — | — | Not in release | Fixed | Ignored |
linux-kvm | — | — | Not affected | Fixed | Fixed |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-utopic | — | — | Not in release | Not in release | Not in release |
linux-lts-vivid | — | — | Not in release | Not in release | Not in release |
linux-lts-wily | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-maguro | — | — | Not in release | Not in release | Not in release |
linux-mako | — | — | Not in release | Not in release | Ignored |
linux-manta | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Fixed | Ignored |
linux-oem-5.6 | — | — | Not affected | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Fixed | Not in release |
linux-oracle | — | — | Not affected | Fixed | Fixed |
linux-oracle-5.0 | — | — | Not in release | Fixed | Not in release |
linux-oracle-5.3 | — | — | Not in release | Not affected | Not in release |
linux-raspi2 | — | — | Ignored | Fixed | Fixed |
linux-raspi2-5.3 | — | — | Not in release | Not affected | Not in release |
linux-snapdragon | — | — | Not in release | Fixed | Fixed |
CVE-2019-0154
Medium prioritySome fixes available 41 of 65
Insufficient access control in subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R)...
39 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-hwe, linux-azure...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Not affected | Fixed | Fixed |
linux-aws | — | — | Not affected | Fixed | Fixed |
linux-aws-5.0 | — | — | Not in release | Not affected | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Fixed |
linux-azure | — | — | Not affected | Fixed | Fixed |
linux-azure-5.3 | — | — | Not in release | Not affected | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Ignored |
linux-euclid | — | — | Not in release | Not in release | Ignored |
linux-firmware | — | — | Not affected | Not affected | Not affected |
linux-flo | — | — | Not in release | Not in release | Ignored |
linux-gcp | — | — | Not affected | Fixed | Fixed |
linux-gcp-5.3 | — | — | Not in release | Not affected | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke | — | — | Not affected | Not in release | Ignored |
linux-gke-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.0 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.3 | — | — | Not in release | Not affected | Not in release |
linux-goldfish | — | — | Not in release | Not in release | Ignored |
linux-grouper | — | — | Not in release | Not in release | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Not affected | Fixed | Fixed |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-utopic | — | — | Not in release | Not in release | Not in release |
linux-lts-vivid | — | — | Not in release | Not in release | Not in release |
linux-lts-wily | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-maguro | — | — | Not in release | Not in release | Not in release |
linux-mako | — | — | Not in release | Not in release | Ignored |
linux-manta | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Fixed | Ignored |
linux-oem-5.6 | — | — | Not affected | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Fixed | Not in release |
linux-oracle | — | — | Not affected | Fixed | Fixed |
linux-oracle-5.0 | — | — | Not in release | Not affected | Not in release |
linux-oracle-5.3 | — | — | Not in release | Not affected | Not in release |
linux-raspi2 | — | — | Ignored | Fixed | Fixed |
linux-raspi2-5.3 | — | — | Not in release | Not affected | Not in release |
linux-snapdragon | — | — | Not in release | Fixed | Fixed |
CVE-2009-2802
Medium priorityMantisBT 1.2.x before 1.2.2 insecurely handles attachments and MIME types. Arbitrary inline attachment rendering could lead to cross-domain scripting or other browser attacks.
1 affected packages
mantis
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
mantis | — | — | — | — | — |
CVE-2013-1811
Medium priorityAn access control issue in MantisBT before 1.2.13 allows users with "Reporter" permissions to change any issue to "New".
1 affected packages
mantis
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
mantis | — | — | — | — | Not in release |
CVE-2007-3732
Medium priorityIn Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without ensuring that the segments are set properly. The kernel's %fs needs to be restored before the call in TRACE_IRQS_ON and before enabling...
22 affected packages
linux, linux-armadaxp, linux-flo, linux-goldfish, linux-grouper...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | Not affected |
linux-armadaxp | — | — | — | — | Not in release |
linux-flo | — | — | — | — | Not affected |
linux-goldfish | — | — | — | — | Not affected |
linux-grouper | — | — | — | — | Not in release |
linux-linaro-omap | — | — | — | — | Not in release |
linux-linaro-shared | — | — | — | — | Not in release |
linux-linaro-vexpress | — | — | — | — | Not in release |
linux-lts-quantal | — | — | — | — | Not in release |
linux-lts-raring | — | — | — | — | Not in release |
linux-lts-saucy | — | — | — | — | Not in release |
linux-lts-trusty | — | — | — | — | Not in release |
linux-lts-utopic | — | — | — | — | Not in release |
linux-lts-vivid | — | — | — | — | Not in release |
linux-lts-wily | — | — | — | — | Not in release |
linux-lts-xenial | — | — | — | — | Not in release |
linux-maguro | — | — | — | — | Not in release |
linux-mako | — | — | — | — | Not affected |
linux-manta | — | — | — | — | Not in release |
linux-qcm-msm | — | — | — | — | Not in release |
linux-raspi2 | — | — | — | — | Not affected |
linux-ti-omap4 | — | — | — | — | Not in release |
CVE-2010-2243
Low priorityA vulnerability exists in kernel/time/clocksource.c in the Linux kernel before 2.6.34 where on non-GENERIC_TIME systems (GENERIC_TIME=n), accessing /sys/devices/system/clocksource/clocksource0/current_clocksource results in an OOPS.
11 affected packages
linux, linux-armadaxp, linux-ec2, linux-fsl-imx51, linux-lts-backport-maverick...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | — |
linux-armadaxp | — | — | — | — | — |
linux-ec2 | — | — | — | — | — |
linux-fsl-imx51 | — | — | — | — | — |
linux-lts-backport-maverick | — | — | — | — | — |
linux-lts-backport-natty | — | — | — | — | — |
linux-lts-backport-oneiric | — | — | — | — | — |
linux-lts-quantal | — | — | — | — | — |
linux-lts-raring | — | — | — | — | — |
linux-mvl-dove | — | — | — | — | — |
linux-ti-omap4 | — | — | — | — | — |
CVE-2014-8181
Low priorityThe kernel in Red Hat Enterprise Linux 7 and MRG-2 does not clear garbage data for SG_IO buffer, which may leaking sensitive information to userspace.
27 affected packages
linux, linux-armadaxp, linux-aws, linux-flo, linux-gke...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | Not affected |
linux-armadaxp | — | — | — | — | Not in release |
linux-aws | — | — | — | — | Not affected |
linux-flo | — | — | — | — | Not affected |
linux-gke | — | — | — | — | Not affected |
linux-goldfish | — | — | — | — | Not affected |
linux-grouper | — | — | — | — | Not in release |
linux-hwe | — | — | — | — | Not affected |
linux-hwe-edge | — | — | — | — | Not affected |
linux-linaro-omap | — | — | — | — | Not in release |
linux-linaro-shared | — | — | — | — | Not in release |
linux-linaro-vexpress | — | — | — | — | Not in release |
linux-lts-quantal | — | — | — | — | Not in release |
linux-lts-raring | — | — | — | — | Not in release |
linux-lts-saucy | — | — | — | — | Not in release |
linux-lts-trusty | — | — | — | — | Not in release |
linux-lts-utopic | — | — | — | — | Not in release |
linux-lts-vivid | — | — | — | — | Not in release |
linux-lts-wily | — | — | — | — | Not in release |
linux-lts-xenial | — | — | — | — | Not in release |
linux-maguro | — | — | — | — | Not in release |
linux-mako | — | — | — | — | Not affected |
linux-manta | — | — | — | — | Not in release |
linux-qcm-msm | — | — | — | — | Not in release |
linux-raspi2 | — | — | — | — | Not affected |
linux-snapdragon | — | — | — | — | Not affected |
linux-ti-omap4 | — | — | — | — | Not in release |