Lucene search
K
UbuntuRecent

10869 matches found

Ubuntu
Ubuntu
•added 2025/11/18 2:59 p.m.•4 views

USN-7872-1: Lasso vulnerabilities

It was discovered that Lasso incorrectly handled certain malformed SAML responses. A remote attacker could possibly use this issue to cause Lasso to crash, resulting in a denial of service. CVE-2025-46404 It was discovered that Lasso incorrectly handled certain malformed SAML assertion responses....

9.8CVSS8.3AI score0.00827EPSS
Exploits4
Ubuntu
Ubuntu
•added 2025/11/17 8:52 a.m.•6 views

LSN-0116-1: Kernel Live Patch Security Notice

In the Linux kernel, the following vulnerability has been resolved: net: atlantic: eliminate double free in error handling logic Driver has a logic leak in ring data allocation/free, where aqringfree could be called multiple times on same ring, if system is under stress and got memory allocation...

7.8CVSS7AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/11/17 4:29 a.m.•4 views

USN-7870-1: Freeglut vulnerabilities

It was discovered that Freeglut incorrectly managed memory, resulting in a memory leak. An attacker could possibly use this issue to cause a denial of service...

7.5CVSS6.6AI score0.01147EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/11/16 11:19 p.m.•5 views

USN-7871-1: FFmpeg vulnerability

It was discovered that FFmpeg incorrectly handled memory allocation in the ALS audio decoder. If a user was tricked into loading a crafted media file, a remote attacker could possibly use this issue to make FFmpeg crash, resulting in a denial of service...

5.3CVSS6.4AI score0.0031EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/13 2:47 p.m.•5 views

USN-7862-3: Linux kernel (Xilinx ZynqMP) vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/13 2:33 p.m.•8 views

USN-7861-3: Linux kernel vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/11/12 5:30 p.m.•10 views

USN-7835-6: Linux kernel (AWS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

8.8CVSS7AI score0.00571EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/11/12 3:42 p.m.•9 views

USN-7836-2: Bind vulnerabilities

USN-7836-1 fixed vulnerabilities in Bind. This update provides the corresponding fixes for Ubuntu 20.04 LTS. Original advisory details: Zuyao Xu and Xiang Li discovered that Bind incorrectly handled certain malformed DNSKEY records. A remote attacker could possibly use this issue to cause Bind to...

8.6CVSS6.6AI score0.1096EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/11/10 9:28 p.m.•5 views

USN-7869-1: Raptor vulnerabilities

Hanno Böck discovered that Raptor incorrectly handled memory operations when processing certain input files. An attacker could possibly use this issue to cause Raptor to crash, resulting in a denial of service. CVE-2020-25713 Pedro Ribeiro discovered that Raptor incorrectly handled parsing certai...

9.3CVSS6.8AI score0.02143EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/11/10 9:20 p.m.•3 views

USN-7868-1: Raptor vulnerabilities

Hanno Böck discovered that Raptor incorrectly handled memory operations when processing certain input files. An attacker could use this issue to cause Raptor to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2017-18926 Hanno Böck discovered that Raptor incorrectl...

7.1CVSS6.8AI score0.03079EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/11/10 8:11 p.m.•6 views

USN-7866-1: Intel Microcode vulnerabilities

Barak Gross discovered that some Intel® Xeon® processors with SGX enabled did not properly handle buffer restrictions. A local authenticated user could potentially use this issue to escalate their privileges. CVE-2025-20053 Avinash Maddy discovered that some Intel® processors did not properly...

7.9CVSS7.3AI score0.00169EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/10 6:52 p.m.•5 views

USN-7867-1: sudo-rs vulnerabilities

It was discovered that sudo-rs incorrectly handled passwords when timeouts occurred and the pwfeedback default was not set. This could result in a partially typed password being output to standard input, contrary to expectations. It was discovered that sudo-rs incorrectly handled the targetpw and...

5.5AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2025/11/10 12:6 p.m.•6 views

USN-7865-1: Linux kernel (FIPS) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.5AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/11/10 9:54 a.m.•3 views

USN-7862-2: Linux kernel vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/10 9:40 a.m.•3 views

USN-7860-5: Linux kernel (HWE) vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/07 12:43 p.m.•6 views

USN-7853-3: Linux kernel (Azure) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/11/07 10:37 a.m.•6 views

USN-7860-4: Linux kernel (Real-time) vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/07 10:35 a.m.•4 views

USN-7860-3: Linux kernel (FIPS) vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/07 9:19 a.m.•4 views

USN-7795-5: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Ext4 file system; - Network file system NFS server daemon; - Packet sockets; - Network traffic control; - VMware...

7.8CVSS7.1AI score0.00288EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/07 9:8 a.m.•6 views

USN-7861-2: Linux kernel (Real-time) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/11/07 9:1 a.m.•5 views

USN-7864-1: Linux kernel (GCP and GKE) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/11/06 1:32 p.m.•3 views

USN-7860-2: Linux kernel (Real-time) vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/06 11:12 a.m.•8 views

USN-7835-5: Linux kernel (Oracle) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

8.8CVSS7AI score0.00571EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/11/06 10:5 a.m.•5 views

USN-7863-1: Linux kernel vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/11/06 9:16 a.m.•6 views

USN-7862-1: Linux kernel vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/06 9:10 a.m.•14 views

USN-7861-1: Linux kernel vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/11/06 9:2 a.m.•5 views

USN-7860-1: Linux kernel vulnerability

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

5.5CVSS7.4AI score0.00331EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/05 4:11 p.m.•9 views

USN-7859-1: Django vulnerabilities

It was discovered that Django incorrectly handled certain characters in queries. An attacker could possibly use this issue to execute arbitrary SQL commands...

9.1CVSS7.9AI score0.1914EPSS
Exploits10
Ubuntu
Ubuntu
•added 2025/11/05 8:56 a.m.•6 views

USN-7858-1: poppler vulnerability

It was discovered that poppler incorrectly handled certain PDF files. An attacker could possibly use this issue to cause a crash...

8.6CVSS5.3AI score0.00156EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/04 7:38 p.m.•11 views

USN-7857-1: OpenStack Keystone vulnerability

Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens and s3tokens APIs. A remote attacker could possibly use this issue to obtain unauthorized access and escalate privileges...

5.5AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2025/11/04 3:36 p.m.•10 views

USN-7851-1: runC vulnerabilities

Lei Wang and Li Fubang discovered that runC incorrectly handled masked paths. An attacker could possibly replace a container's /dev/null with a symlink to some other procfs file and possibly escape a container. CVE-2025-31133 Lei Wang and Li Fubang discovered that runC incorrectly handled the...

8.4CVSS7.3AI score0.00673EPSS
Exploits4
Ubuntu
Ubuntu
•added 2025/11/04 2:19 p.m.•5 views

USN-7856-1: Linux kernel (HWE) vulnerabilities

Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt discovered that some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information. A local attacker could possibly use this to...

7.8CVSS7.3AI score0.00482EPSS
Exploits4
Ubuntu
Ubuntu
•added 2025/11/04 2:3 p.m.•2 views

USN-7829-6: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Network drivers; - Netlink; CVE-2024-26700, CVE-2025-38727, CVE-2023-52593, CVE-2024-26896...

5.5CVSS6.8AI score0.00227EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/04 2:0 p.m.•3 views

USN-7855-1: Unbound vulnerability

Yuxiao Wu, Yunyi Zhang, Baojun Liu, and Haixin Duan discovered that Unbound incorrectly handled certain promiscuous NS RRSets. A remote attacker could possibly use this issue to perform a domain hijack attack...

7.1CVSS6.7AI score0.00311EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/04 10:41 a.m.•5 views

USN-7804-2: Squid vulnerability

USN-7804-1 fixed a vulnerability in Squid. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. Original advisory details: It was discovered that Squid incorrectly handled certain long SNMP OIDs. A remote attacker could possibly use this issue...

4CVSS5.1AI score0.00362EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/11/04 9:36 a.m.•6 views

USN-7849-1: libssh vulnerability

Philippe Antoine discovered that libssh did not properly manage memory when calculating a session id during the key exchange process. An attacker could possibly use this issue to cause libssh to crash, resulting in a denial of service...

4.7CVSS5.7AI score0.00217EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/11/03 10:18 a.m.•7 views

USN-7839-2: Google Guest Agent vulnerability

USN-7839-1 fixed vulnerabilities in Go Cryptography. This update provides the corresponding update in the Go Cryptography module included in Google Guest Agent. Original advisory details: Damien Tournoud, Patrick Dawkins, Vince Parker, and Jules Duvivier discovered that Go Cryptography incorrectl...

9.1CVSS7.6AI score0.03092EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/10/31 5:33 p.m.•11 views

USN-7835-4: Linux kernel (HWE) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

8.8CVSS7AI score0.00571EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/10/31 2:21 p.m.•9 views

USN-7833-4: Linux kernel (GCP) vulnerabilities

Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt discovered that some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information. A local attacker could possibly use this to...

7.8CVSS7.3AI score0.00482EPSS
Exploits4
Ubuntu
Ubuntu
•added 2025/10/30 8:3 p.m.•6 views

USN-7853-2: Linux kernel (FIPS) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/10/30 7:48 p.m.•8 views

USN-7854-1: Linux kernel (KVM) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.5AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/10/30 7:1 p.m.•7 views

USN-7853-1: Linux kernel vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.4AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/10/30 4:39 p.m.•4 views

USN-7852-1: libxml2 vulnerability

It was discovered that libxslt, used by libxml2, incorrectly handled certain attributes. An attacker could use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. This update adds a fix to libxml2 to mitigate the libxslt vulnerability...

7.8CVSS7AI score0.00339EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/10/30 2:21 p.m.•6 views

USN-7850-1: Linux kernel vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.1CVSS7.4AI score0.01325EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/10/29 7:51 p.m.•4 views

USN-7848-1: AMD Microcode vulnerabilities

Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt discovered that some AMD processors may allow an attacker to infer data from previous stores. A local attacker could possibly use this issue to expose sensitive information. This update provides the updat...

5.6CVSS7.3AI score0.00425EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/10/29 3:49 p.m.•4 views

USN-7847-1: GNU binutils vulnerabilities

It was discovered that GNU binutils incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. The attack is restricted to local execution. CVE-2025-11082 It was discovered that GNU binutils incorrectly handled certain inputs. An...

7.8CVSS6.5AI score0.00619EPSS
Exploits9
Ubuntu
Ubuntu
•added 2025/10/29 11:49 a.m.•7 views

USN-7846-1: X.Org X Server vulnerabilities

Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain memory operations. An attacker could use these issues to cause the X Server to crash, leading to a denial of service, obtain sensitive information, or possibly execute arbitrary code...

7.3CVSS5.9AI score0.00481EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/10/28 7:20 p.m.•3 views

USN-7844-1: YAML::Syck vulnerability

It was discovered that YAML::Syck did not properly handle parsing YAML files. An attacker could possibly use this issue to expose sensitive information...

6.5CVSS5.4AI score0.00243EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/10/28 7:14 p.m.•6 views

USN-7845-1: Squid vulnerability

Leonardo Giovannini discovered that Squid failed to redact HTTP Authentication credentials in a default configuration. An attacker could possibly use this issue to obtain sensitive information...

10CVSS8.2AI score0.6332EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/10/28 5:49 p.m.•7 views

USN-7843-1: Netty vulnerability

It was discovered that Netty did not properly handle user input. A remote attacker could possibly use this issue to forge arbitrary emails from a trusted server...

6.9CVSS7.6AI score0.01617EPSS
Exploits0
Total number of security vulnerabilities10869