Lucene search
K

15 matches found

Cloud Foundry
Cloud Foundry
added 2018/12/06 12:0 a.m.33 views

USN-3836-2: Linux kernel (HWE) vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Description USN-3836-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 18.04 LTS for Ubuntu 16.0...

7CVSS5.3AI score0.07611EPSS
Exploits25
Ubuntu
Ubuntu
added 2018/12/04 4:49 a.m.81 views

USN-3836-2: Linux kernel (HWE) vulnerabilities

USN-3836-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 18.04 LTS for Ubuntu 16.04 LTS. Jann Horn discovered that the Linux kernel mishandles mapping UID or GID ranges inside...

7CVSS6.9AI score0.07611EPSS
Exploits25
OSV
OSV
added 2018/12/04 4:49 a.m.9 views

USN-3836-2 linux-hwe, linux-gcp vulnerabilities

USN-3836-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 18.04 LTS for Ubuntu 16.04 LTS. Jann Horn discovered that the Linux kernel mishandles mapping UID or GID ranges inside...

7CVSS6.6AI score0.07611EPSS
Exploits25References3
Tenable Nessus
Tenable Nessus
added 2018/12/04 12:0 a.m.56 views

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-3836-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3836-1 advisory. Jann Horn discovered that the Linux kernel mishandles mapping UID or GID ranges inside nested user namespaces in some situations. A local attacker could...

7CVSS7.1AI score0.07611EPSS
Exploits25References3
OpenVAS
OpenVAS
added 2018/12/04 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-3833-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS5.6AI score0.07611EPSS
Exploits25References2
OpenVAS
OpenVAS
added 2018/12/04 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-3836-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS5.6AI score0.07611EPSS
Exploits25References2
OpenVAS
OpenVAS
added 2018/12/04 12:0 a.m.253 views

Ubuntu: Security Advisory (USN-3835-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.07611EPSS
Exploits28References2
OpenVAS
OpenVAS
added 2018/12/04 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-3836-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS5.6AI score0.07611EPSS
Exploits25References2
Tenable Nessus
Tenable Nessus
added 2018/12/04 12:0 a.m.36 views

Ubuntu 16.04 LTS : Linux kernel (HWE) vulnerabilities (USN-3836-2)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3836-2 advisory. USN-3836-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

7CVSS7.1AI score0.07611EPSS
Exploits25References3
OpenVAS
OpenVAS
added 2018/12/04 12:0 a.m.49 views

Ubuntu: Security Advisory (USN-3832-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.07611EPSS
Exploits28References2
Ubuntu
Ubuntu
added 2018/12/03 7:40 p.m.69 views

USN-3836-1: Linux kernel vulnerabilities

Jann Horn discovered that the Linux kernel mishandles mapping UID or GID ranges inside nested user namespaces in some situations. A local attacker could use this to bypass access controls on resources outside the namespace. CVE-2018-18955 Philipp Wendler discovered that the overlayfs implementati...

7CVSS6.9AI score0.07611EPSS
Exploits25
Ubuntu
Ubuntu
added 2018/11/30 6:31 a.m.70 views

USN-3833-1: Linux kernel (AWS) vulnerabilities

Jann Horn discovered that the Linux kernel mishandles mapping UID or GID ranges inside nested user namespaces in some situations. A local attacker could use this to bypass access controls on resources outside the namespace. CVE-2018-18955 Philipp Wendler discovered that the overlayfs implementati...

7CVSS6.9AI score0.07611EPSS
Exploits25
Tenable Nessus
Tenable Nessus
added 2018/11/30 12:0 a.m.68 views

Ubuntu 18.10 : Linux kernel (AWS) vulnerabilities (USN-3832-1)

Jann Horn discovered that the procfs file system implementation in the Linux kernel did not properly restrict the ability to inspect the kernel stack of an arbitrary task. A local attacker could use this to expose sensitive information. CVE-2018-17972 Jann Horn discovered that the mremap system...

7.8CVSS6.8AI score0.07611EPSS
Exploits28References7
Tenable Nessus
Tenable Nessus
added 2018/11/30 12:0 a.m.374 views

Ubuntu 18.04 LTS : Linux kernel (AWS) vulnerabilities (USN-3833-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3833-1 advisory. Jann Horn discovered that the Linux kernel mishandles mapping UID or GID ranges inside nested user namespaces in some situations. A local attacker could...

7CVSS7.1AI score0.07611EPSS
Exploits25References3
CVE
CVE
added 2018/10/26 5:0 p.m.97 views

CVE-2018-6559

CVE-2018-6559 affects the Linux kernel overlayfs in Ubuntu 18.04/18.10. The vulnerability arises when mapping directory contents permissions inside nested user namespaces; a local attacker could exploit this to reveal names of files they would not normally access, bypassing some access controls. ...

3.3CVSS4.5AI score0.00532EPSS
Exploits1References9Affected Software1
Rows per page
Query Builder