Search CVE reports

501 – 510 of 595 results

Detailed view

Sort by:

CVE-2017-6951

Medium priority

Some fixes available 1 of 19

The keyring_search_aux function in security/keys/keyring.c in the Linux kernel through 3.14.79 allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a request_key system call for the "dead" type.

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Not affected
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Not affected
linux-azure	—	—	—	—	Not affected
linux-euclid	—	—	—	—	Not affected
linux-flo	—	—	—	—	Ignored
linux-gcp	—	—	—	—	Not affected
linux-gke	—	—	—	—	Not affected
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Not affected
linux-hwe-edge	—	—	—	—	Not affected
linux-kvm	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-oem	—	—	—	—	Not affected
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Not affected
linux-snapdragon	—	—	—	—	Not affected
linux-ti-omap4	—	—	—	—	Not in release

CVE-2017-0537

Low priority

Vulnerable

An information disclosure vulnerability in the kernel USB gadget driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires...

152 affected packages

android, linux, linux-allwinner, linux-allwinner-5.19, linux-armadaxp...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
android	Not in release	Not in release	Not in release	Not in release	Ignored
linux	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-allwinner	Not in release	Not in release	Not in release	Not in release	Not in release
linux-allwinner-5.19	Not in release	Ignored	Not in release	Not in release	Not in release
linux-armadaxp	Not in release	Not in release	Not in release	Not in release	Not in release
linux-aws	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-aws-5.0	Not in release	Not in release	Not in release	Ignored	Not in release
linux-aws-5.11	Not in release	Not in release	Ignored	Not in release	Not in release
linux-aws-5.13	Not in release	Not in release	Ignored	Not in release	Not in release
linux-aws-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-aws-5.19	Not in release	Ignored	Not in release	Not in release	Not in release
linux-aws-5.3	Not in release	Not in release	Not in release	Ignored	Not in release
linux-aws-5.4	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-aws-5.8	Not in release	Not in release	Ignored	Not in release	Not in release
linux-aws-6.2	Not in release	Ignored	Not in release	Not in release	Not in release
linux-aws-6.5	Not in release	Ignored	Not in release	Not in release	Not in release
linux-aws-fips	Not in release	Not in release	Not in release	Not in release	Not in release
linux-aws-hwe	Not in release	Not in release	Not in release	Not in release	Vulnerable
linux-azure	Vulnerable	Vulnerable	Vulnerable	Ignored	Vulnerable
linux-azure-4.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-azure-5.11	Not in release	Not in release	Ignored	Not in release	Not in release
linux-azure-5.13	Not in release	Not in release	Ignored	Not in release	Not in release
linux-azure-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-azure-5.19	Not in release	Ignored	Not in release	Not in release	Not in release
linux-azure-5.3	Not in release	Not in release	Not in release	Ignored	Not in release
linux-azure-5.4	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-azure-5.8	Not in release	Not in release	Ignored	Not in release	Not in release
linux-azure-6.2	Not in release	Ignored	Not in release	Not in release	Not in release
linux-azure-6.5	Not in release	Ignored	Not in release	Not in release	Not in release
linux-azure-edge	Not in release	Not in release	Not in release	Ignored	Not in release
linux-azure-fde	Not in release	Needs evaluation	Ignored	Not in release	Not in release
linux-azure-fde-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-azure-fde-5.19	Not in release	Ignored	Not in release	Not in release	Not in release
linux-azure-fde-6.2	Not in release	Ignored	Not in release	Not in release	Not in release
linux-azure-fips	Not in release	Not in release	Not in release	Not in release	Not in release
linux-bluefield	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-dell300x	Not in release	Not in release	Not in release	Ignored	Not in release
linux-euclid	Not in release	Not in release	Not in release	Not in release	Ignored
linux-fips	Not in release	Not in release	Not in release	Not in release	Ignored
linux-flo	Not in release	Not in release	Not in release	Not in release	Ignored
linux-gcp	Vulnerable	Vulnerable	Vulnerable	Ignored	Vulnerable
linux-gcp-4.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-gcp-5.11	Not in release	Not in release	Ignored	Not in release	Not in release
linux-gcp-5.13	Not in release	Not in release	Ignored	Not in release	Not in release
linux-gcp-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-gcp-5.19	Not in release	Ignored	Not in release	Not in release	Not in release
linux-gcp-5.3	Not in release	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.4	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-gcp-5.8	Not in release	Not in release	Ignored	Not in release	Not in release
linux-gcp-6.2	Not in release	Ignored	Not in release	Not in release	Not in release
linux-gcp-6.5	Not in release	Ignored	Not in release	Not in release	Not in release
linux-gcp-edge	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-gcp-fips	Not in release	Not in release	Not in release	Not in release	Not in release
linux-gke	Vulnerable	Vulnerable	Ignored	Not in release	Ignored
linux-gke-4.15	Not in release	Not in release	Not in release	Ignored	Not in release
linux-gke-5.0	Not in release	Not in release	Not in release	Ignored	Not in release
linux-gke-5.15	Not in release	Not in release	Ignored	Not in release	Not in release
linux-gke-5.3	Not in release	Not in release	Not in release	Ignored	Not in release
linux-gke-5.4	Not in release	Not in release	Not in release	Ignored	Not in release
linux-gkeop	Not in release	Vulnerable	Vulnerable	Not in release	Not in release
linux-gkeop-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-gkeop-5.4	Not in release	Not in release	Not in release	Ignored	Not in release
linux-goldfish	Not in release	Not in release	Not in release	Not in release	Ignored
linux-grouper	Not in release	Not in release	Not in release	Not in release	Not in release
linux-hwe	Not in release	Not in release	Not in release	Ignored	Vulnerable
linux-hwe-5.11	Not in release	Not in release	Ignored	Not in release	Not in release
linux-hwe-5.13	Not in release	Not in release	Ignored	Not in release	Not in release
linux-hwe-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-hwe-5.19	Not in release	Ignored	Not in release	Not in release	Not in release
linux-hwe-5.4	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-hwe-5.8	Not in release	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.2	Not in release	Ignored	Not in release	Not in release	Not in release
linux-hwe-6.5	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-hwe-6.8	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-hwe-edge	Not in release	Not in release	Not in release	Ignored	Ignored
linux-ibm	Vulnerable	Vulnerable	Vulnerable	Not in release	Not in release
linux-ibm-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-ibm-5.4	Not in release	Not in release	Not in release	Ignored	Not in release
linux-intel	Vulnerable	Not in release	Not in release	Not in release	Not in release
linux-intel-5.13	Not in release	Not in release	Ignored	Not in release	Not in release
linux-intel-iot-realtime	Not in release	Not in release	Not in release	Not in release	Not in release
linux-intel-iotg	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-intel-iotg-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-iot	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-kvm	Not in release	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-laptop	Not in release	Not in release	Not in release	Not in release	Not in release
linux-linaro-omap	Not in release	Not in release	Not in release	Not in release	Not in release
linux-linaro-shared	Not in release	Not in release	Not in release	Not in release	Not in release
linux-linaro-vexpress	Not in release	Not in release	Not in release	Not in release	Not in release
linux-lowlatency	Vulnerable	Vulnerable	Not in release	Not in release	Not in release
linux-lowlatency-hwe-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-lowlatency-hwe-5.19	Not in release	Ignored	Not in release	Not in release	Not in release
linux-lowlatency-hwe-6.2	Not in release	Ignored	Not in release	Not in release	Not in release
linux-lowlatency-hwe-6.5	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-lowlatency-hwe-6.8	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-lts-quantal	Not in release	Not in release	Not in release	Not in release	Not in release
linux-lts-raring	Not in release	Not in release	Not in release	Not in release	Not in release
linux-lts-saucy	Not in release	Not in release	Not in release	Not in release	Not in release
linux-lts-trusty	Not in release	Not in release	Not in release	Not in release	Not in release
linux-lts-utopic	Not in release	Not in release	Not in release	Not in release	Not in release
linux-lts-vivid	Not in release	Not in release	Not in release	Not in release	Not in release
linux-lts-wily	Not in release	Not in release	Not in release	Not in release	Not in release
linux-lts-xenial	Not in release	Not in release	Not in release	Not in release	Not in release
linux-maguro	Not in release	Not in release	Not in release	Not in release	Not in release
linux-mako	Not in release	Not in release	Not in release	Not in release	Ignored
linux-manta	Not in release	Not in release	Not in release	Not in release	Not in release
linux-nvidia	Vulnerable	Vulnerable	Not in release	Not in release	Not in release
linux-nvidia-6.2	Not in release	Ignored	Not in release	Not in release	Not in release
linux-nvidia-6.5	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-nvidia-6.8	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-nvidia-lowlatency	Vulnerable	Not in release	Not in release	Not in release	Not in release
linux-oem	Not in release	Not in release	Not in release	Ignored	Ignored
linux-oem-5.10	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oem-5.13	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oem-5.14	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oem-5.17	Not in release	Ignored	Not in release	Not in release	Not in release
linux-oem-5.6	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oem-6.0	Not in release	Ignored	Not in release	Not in release	Not in release
linux-oem-6.1	Not in release	Ignored	Not in release	Not in release	Not in release
linux-oem-6.5	Not in release	Ignored	Not in release	Not in release	Not in release
linux-oem-6.8	Vulnerable	Not in release	Not in release	Not in release	Not in release
linux-oem-osp1	Not in release	Not in release	Not in release	Ignored	Not in release
linux-oracle	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-oracle-5.0	Not in release	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.11	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oracle-5.13	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oracle-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-oracle-5.3	Not in release	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.4	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-oracle-5.8	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oracle-6.5	Not in release	Ignored	Not in release	Not in release	Not in release
linux-qcm-msm	Not in release	Not in release	Not in release	Not in release	Not in release
linux-raspi	Vulnerable	Vulnerable	Vulnerable	Not in release	Not in release
linux-raspi-5.4	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-raspi-realtime	Not in release	Not in release	Not in release	Not in release	Not in release
linux-raspi2	Not in release	Not in release	Ignored	Ignored	Ignored
linux-raspi2-5.3	Not in release	Not in release	Not in release	Ignored	Not in release
linux-realtime	Not in release	Ignored	Not in release	Not in release	Not in release
linux-riscv	Vulnerable	Ignored	Ignored	Not in release	Not in release
linux-riscv-5.11	Not in release	Not in release	Ignored	Not in release	Not in release
linux-riscv-5.15	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-riscv-5.19	Not in release	Ignored	Not in release	Not in release	Not in release
linux-riscv-5.8	Not in release	Not in release	Ignored	Not in release	Not in release
linux-riscv-6.5	Not in release	Ignored	Not in release	Not in release	Not in release
linux-riscv-6.8	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-snapdragon	Not in release	Not in release	Not in release	Ignored	Ignored
linux-starfive	Not in release	Not in release	Not in release	Not in release	Not in release
linux-starfive-5.19	Not in release	Ignored	Not in release	Not in release	Not in release
linux-starfive-6.2	Not in release	Ignored	Not in release	Not in release	Not in release
linux-starfive-6.5	Not in release	Ignored	Not in release	Not in release	Not in release
linux-ti-omap4	Not in release	Not in release	Not in release	Not in release	Not in release
linux-xilinx-zynqmp	Not in release	Vulnerable	Vulnerable	Not in release	Not in release

CVE-2017-2636

High priority

Some fixes available 16 of 31

Race condition in drivers/tty/n_hdlc.c in the Linux kernel through 4.10.1 allows local users to gain privileges or cause a denial of service (double free) by setting the HDLC line discipline.

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Fixed
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Fixed
linux-azure	—	—	—	—	Not affected
linux-euclid	—	—	—	—	Not affected
linux-flo	—	—	—	—	Ignored
linux-gcp	—	—	—	—	Not affected
linux-gke	—	—	—	—	Fixed
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Fixed
linux-hwe-edge	—	—	—	—	Fixed
linux-kvm	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-oem	—	—	—	—	Not affected
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Fixed
linux-snapdragon	—	—	—	—	Fixed
linux-ti-omap4	—	—	—	—	Not in release

CVE-2016-10200

Medium priority

Some fixes available 11 of 30

Race condition in the L2TPv3 IP Encapsulation feature in the Linux kernel before 4.8.14 allows local users to gain privileges or cause a denial of service (use-after-free) by making multiple bind system calls without properly...

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Fixed
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Fixed
linux-azure	—	—	—	—	Not affected
linux-euclid	—	—	—	—	Not affected
linux-flo	—	—	—	—	Ignored
linux-gcp	—	—	—	—	Not affected
linux-gke	—	—	—	—	Not affected
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Fixed
linux-hwe-edge	—	—	—	—	Fixed
linux-kvm	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-oem	—	—	—	—	Not affected
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Fixed
linux-snapdragon	—	—	—	—	Fixed
linux-ti-omap4	—	—	—	—	Not in release

CVE-2015-2877

Low priority

Ignored

** DISPUTED ** Kernel Samepage Merging (KSM) in the Linux kernel 2.6.32 through 4.x does not prevent use of a write-timing side channel, which allows guest OS users to defeat the ASLR protection mechanism on other guest OS...

36 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-azure-edge...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	Ignored	Ignored
linux-armadaxp	—	—	—	Not in release	Not in release
linux-aws	—	—	—	Ignored	Ignored
linux-azure	—	—	—	Ignored	Ignored
linux-azure-edge	—	—	—	Ignored	Ignored
linux-ec2	—	—	—	Not in release	Not in release
linux-euclid	—	—	—	Not in release	Ignored
linux-flo	—	—	—	Not in release	Ignored
linux-fsl-imx51	—	—	—	Not in release	Not in release
linux-gcp	—	—	—	Ignored	Ignored
linux-gke	—	—	—	Not in release	Ignored
linux-goldfish	—	—	—	Not in release	Ignored
linux-grouper	—	—	—	Not in release	Not in release
linux-hwe	—	—	—	Ignored	Ignored
linux-hwe-edge	—	—	—	Ignored	Ignored
linux-kvm	—	—	—	Ignored	Ignored
linux-linaro-omap	—	—	—	Not in release	Not in release
linux-linaro-shared	—	—	—	Not in release	Not in release
linux-linaro-vexpress	—	—	—	Not in release	Not in release
linux-lts-quantal	—	—	—	Not in release	Not in release
linux-lts-raring	—	—	—	Not in release	Not in release
linux-lts-saucy	—	—	—	Not in release	Not in release
linux-lts-trusty	—	—	—	Not in release	Not in release
linux-lts-utopic	—	—	—	Not in release	Not in release
linux-lts-vivid	—	—	—	Not in release	Not in release
linux-lts-wily	—	—	—	Not in release	Not in release
linux-lts-xenial	—	—	—	Not in release	Not in release
linux-maguro	—	—	—	Not in release	Not in release
linux-mako	—	—	—	Not in release	Ignored
linux-manta	—	—	—	Not in release	Not in release
linux-mvl-dove	—	—	—	Not in release	Not in release
linux-oem	—	—	—	Ignored	Ignored
linux-qcm-msm	—	—	—	Not in release	Not in release
linux-raspi2	—	—	—	Ignored	Ignored
linux-snapdragon	—	—	—	Ignored	Ignored
linux-ti-omap4	—	—	—	Not in release	Not in release

CVE-2017-6348

Low priority

Some fixes available 11 of 33

The hashbin_delete function in net/irda/irqueue.c in the Linux kernel before 4.9.13 improperly manages lock dropping, which allows local users to cause a denial of service (deadlock) via crafted operations on IrDA devices.

33 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-azure-edge...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	Not affected	Fixed
linux-armadaxp	—	—	—	Not in release	Not in release
linux-aws	—	—	—	Not affected	Fixed
linux-azure	—	—	—	Not affected	Not affected
linux-azure-edge	—	—	—	Not affected	Not affected
linux-euclid	—	—	—	Not in release	Ignored
linux-flo	—	—	—	Not in release	Ignored
linux-gcp	—	—	—	Not affected	Not affected
linux-gke	—	—	—	Not in release	Fixed
linux-goldfish	—	—	—	Not in release	Ignored
linux-grouper	—	—	—	Not in release	Not in release
linux-hwe	—	—	—	Not affected	Fixed
linux-hwe-edge	—	—	—	Not affected	Fixed
linux-kvm	—	—	—	Not affected	Not affected
linux-linaro-omap	—	—	—	Not in release	Not in release
linux-linaro-shared	—	—	—	Not in release	Not in release
linux-linaro-vexpress	—	—	—	Not in release	Not in release
linux-lts-quantal	—	—	—	Not in release	Not in release
linux-lts-raring	—	—	—	Not in release	Not in release
linux-lts-saucy	—	—	—	Not in release	Not in release
linux-lts-trusty	—	—	—	Not in release	Not in release
linux-lts-utopic	—	—	—	Not in release	Not in release
linux-lts-vivid	—	—	—	Not in release	Not in release
linux-lts-wily	—	—	—	Not in release	Not in release
linux-lts-xenial	—	—	—	Not in release	Not in release
linux-maguro	—	—	—	Not in release	Not in release
linux-mako	—	—	—	Not in release	Ignored
linux-manta	—	—	—	Not in release	Not in release
linux-oem	—	—	—	Not affected	Not affected
linux-qcm-msm	—	—	—	Not in release	Not in release
linux-raspi2	—	—	—	Not affected	Fixed
linux-snapdragon	—	—	—	Not affected	Fixed
linux-ti-omap4	—	—	—	Not in release	Not in release

CVE-2017-6347

Medium priority

Some fixes available 10 of 20

The ip_cmsg_recv_checksum function in net/ipv4/ip_sockglue.c in the Linux kernel before 4.10.1 has incorrect expectations about skb data layout, which allows local users to cause a denial of service (buffer over-read) or possibly...

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Fixed
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Fixed
linux-azure	—	—	—	—	Not affected
linux-euclid	—	—	—	—	Ignored
linux-flo	—	—	—	—	Not affected
linux-gcp	—	—	—	—	Not affected
linux-gke	—	—	—	—	Fixed
linux-goldfish	—	—	—	—	Not affected
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Fixed
linux-hwe-edge	—	—	—	—	Fixed
linux-kvm	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Not affected
linux-manta	—	—	—	—	Not in release
linux-oem	—	—	—	—	Not affected
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Fixed
linux-snapdragon	—	—	—	—	Fixed
linux-ti-omap4	—	—	—	—	Not in release

CVE-2017-6346

Medium priority

Some fixes available 11 of 33

Race condition in net/packet/af_packet.c in the Linux kernel before 4.9.13 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a multithreaded application that makes...

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Fixed
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Fixed
linux-azure	—	—	—	—	Not affected
linux-euclid	—	—	—	—	Ignored
linux-flo	—	—	—	—	Ignored
linux-gcp	—	—	—	—	Not affected
linux-gke	—	—	—	—	Fixed
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Fixed
linux-hwe-edge	—	—	—	—	Fixed
linux-kvm	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-oem	—	—	—	—	Not affected
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Fixed
linux-snapdragon	—	—	—	—	Fixed
linux-ti-omap4	—	—	—	—	Not in release

CVE-2017-6345

Low priority

Some fixes available 11 of 23

The LLC subsystem in the Linux kernel before 4.9.13 does not ensure that a certain destructor exists in required circumstances, which allows local users to cause a denial of service (BUG_ON) or possibly have unspecified other...

33 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-azure-edge...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	Not affected	Fixed
linux-armadaxp	—	—	—	Not in release	Not in release
linux-aws	—	—	—	Not affected	Fixed
linux-azure	—	—	—	Not affected	Not affected
linux-azure-edge	—	—	—	Not affected	Not affected
linux-euclid	—	—	—	Not in release	Ignored
linux-flo	—	—	—	Not in release	Not affected
linux-gcp	—	—	—	Not affected	Not affected
linux-gke	—	—	—	Not in release	Fixed
linux-goldfish	—	—	—	Not in release	Not affected
linux-grouper	—	—	—	Not in release	Not in release
linux-hwe	—	—	—	Not affected	Fixed
linux-hwe-edge	—	—	—	Not affected	Fixed
linux-kvm	—	—	—	Not affected	Not affected
linux-linaro-omap	—	—	—	Not in release	Not in release
linux-linaro-shared	—	—	—	Not in release	Not in release
linux-linaro-vexpress	—	—	—	Not in release	Not in release
linux-lts-quantal	—	—	—	Not in release	Not in release
linux-lts-raring	—	—	—	Not in release	Not in release
linux-lts-saucy	—	—	—	Not in release	Not in release
linux-lts-trusty	—	—	—	Not in release	Not in release
linux-lts-utopic	—	—	—	Not in release	Not in release
linux-lts-vivid	—	—	—	Not in release	Not in release
linux-lts-wily	—	—	—	Not in release	Not in release
linux-lts-xenial	—	—	—	Not in release	Not in release
linux-maguro	—	—	—	Not in release	Not in release
linux-mako	—	—	—	Not in release	Not affected
linux-manta	—	—	—	Not in release	Not in release
linux-oem	—	—	—	Not affected	Not affected
linux-qcm-msm	—	—	—	Not in release	Not in release
linux-raspi2	—	—	—	Not affected	Fixed
linux-snapdragon	—	—	—	Not affected	Fixed
linux-ti-omap4	—	—	—	Not in release	Not in release

CVE-2017-5669

Medium priority

Some fixes available 11 of 33

The do_shmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a...

32 affected packages

linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Fixed
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Fixed
linux-azure	—	—	—	—	Not affected
linux-euclid	—	—	—	—	Ignored
linux-flo	—	—	—	—	Ignored
linux-gcp	—	—	—	—	Not affected
linux-gke	—	—	—	—	Fixed
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Fixed
linux-hwe-edge	—	—	—	—	Fixed
linux-kvm	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-oem	—	—	—	—	Not affected
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Fixed
linux-snapdragon	—	—	—	—	Fixed
linux-ti-omap4	—	—	—	—	Not in release

Export to JSON

Results by page: