Search CVE reports
231 – 240 of 2003 results
CVE-2020-12656
Negligible prioritySome fixes available 41 of 66
** DISPUTED ** gss_mech_free in net/sunrpc/auth_gss/gss_mech_switch.c in the rpcsec_gss_krb5 implementation in the Linux kernel through 5.6.10 lacks certain domain_release calls, leading to a memory leak. Note: This was disputed...
41 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.3, linux-aws-5.4...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Fixed | Fixed | Fixed |
linux-aws | — | — | Fixed | Fixed | Fixed |
linux-aws-5.0 | — | — | Not in release | Ignored | Not in release |
linux-aws-5.3 | — | — | Not in release | Ignored | Not in release |
linux-aws-5.4 | — | — | Not in release | Fixed | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Fixed |
linux-azure | — | — | Fixed | Ignored | Fixed |
linux-azure-4.15 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.3 | — | — | Not in release | Ignored | Not in release |
linux-azure-5.4 | — | — | Not in release | Fixed | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Not in release |
linux-gcp | — | — | Fixed | Ignored | Fixed |
linux-gcp-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.3 | — | — | Not in release | Ignored | Not in release |
linux-gcp-5.4 | — | — | Not in release | Fixed | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.0 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gkeop-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-5.4 | — | — | Not in release | Fixed | Not in release |
linux-hwe-5.8 | — | — | Not affected | Not in release | Not in release |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Fixed | Fixed | Fixed |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Fixed | Ignored |
linux-oem-5.6 | — | — | Fixed | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Fixed | Not in release |
linux-oracle | — | — | Fixed | Fixed | Fixed |
linux-oracle-5.0 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.3 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.4 | — | — | Not in release | Fixed | Not in release |
linux-raspi | — | — | Fixed | Not in release | Not in release |
linux-raspi-5.4 | — | — | Not in release | Fixed | Not in release |
linux-raspi2 | — | — | Ignored | Fixed | Fixed |
linux-raspi2-5.3 | — | — | Not in release | Fixed | Not in release |
linux-riscv | — | — | Fixed | Not in release | Not in release |
linux-snapdragon | — | — | Not in release | Fixed | Fixed |
CVE-2020-12655
Medium prioritySome fixes available 41 of 62
An issue was discovered in xfs_agf_verify in fs/xfs/libxfs/xfs_alloc.c in the Linux kernel through 5.6.10. Attackers may trigger a sync of excessive duration via an XFS v5 image with crafted metadata, aka CID-d0c7feaf8767.
44 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.3, linux-aws-5.4...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Fixed | Fixed | Fixed |
linux-aws | — | — | Fixed | Fixed | Fixed |
linux-aws-5.0 | — | — | Not in release | Ignored | Not in release |
linux-aws-5.3 | — | — | Not in release | Fixed | Not in release |
linux-aws-5.4 | — | — | Not in release | Fixed | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Fixed |
linux-azure | — | — | Fixed | Ignored | Fixed |
linux-azure-4.15 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.3 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.4 | — | — | Not in release | Fixed | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Not in release |
linux-dell300x | — | — | Not in release | Not affected | Not in release |
linux-gcp | — | — | Fixed | Ignored | Fixed |
linux-gcp-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.3 | — | — | Not in release | Ignored | Not in release |
linux-gcp-5.4 | — | — | Not in release | Fixed | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.0 | — | — | Not in release | Ignored | Not in release |
linux-gke-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gkeop | — | — | Not affected | Not in release | Not in release |
linux-gkeop-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-5.4 | — | — | Not in release | Fixed | Not in release |
linux-hwe-5.8 | — | — | Not affected | Not in release | Not in release |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Fixed | Fixed | Fixed |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Fixed | Ignored |
linux-oem-5.10 | — | — | Not affected | Not in release | Not in release |
linux-oem-5.6 | — | — | Fixed | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Ignored | Not in release |
linux-oracle | — | — | Fixed | Fixed | Fixed |
linux-oracle-5.0 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.3 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.4 | — | — | Not in release | Fixed | Not in release |
linux-raspi | — | — | Fixed | Not in release | Not in release |
linux-raspi-5.4 | — | — | Not in release | Fixed | Not in release |
linux-raspi2 | — | — | Ignored | Fixed | Ignored |
linux-raspi2-5.3 | — | — | Not in release | Fixed | Not in release |
linux-riscv | — | — | Fixed | Not in release | Not in release |
linux-snapdragon | — | — | Not in release | Fixed | Ignored |
CVE-2020-12653
Medium prioritySome fixes available 37 of 49
An issue was found in Linux kernel before 5.5.4. The mwifiex_cmd_append_vsie_tlv() function in drivers/net/wireless/marvell/mwifiex/scan.c allows local users to gain privileges or cause a denial of service because of an incorrect...
44 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.3, linux-aws-5.4...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Not affected | Fixed | Fixed |
linux-aws | — | — | Not affected | Fixed | Fixed |
linux-aws-5.0 | — | — | Not in release | Ignored | Not in release |
linux-aws-5.3 | — | — | Not in release | Fixed | Not in release |
linux-aws-5.4 | — | — | Not in release | Not affected | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Fixed |
linux-azure | — | — | Not affected | Ignored | Fixed |
linux-azure-4.15 | — | — | Not in release | Not affected | Not in release |
linux-azure-5.3 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.4 | — | — | Not in release | Not affected | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Not in release |
linux-dell300x | — | — | Not in release | Not affected | Not in release |
linux-gcp | — | — | Not affected | Ignored | Fixed |
linux-gcp-4.15 | — | — | Not in release | Not affected | Not in release |
linux-gcp-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.0 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gkeop | — | — | Not affected | Not in release | Not in release |
linux-gkeop-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe-5.8 | — | — | Not affected | Not in release | Not in release |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Not affected | Fixed | Fixed |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Fixed | Ignored |
linux-oem-5.10 | — | — | Not affected | Not in release | Not in release |
linux-oem-5.6 | — | — | Not affected | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Fixed | Not in release |
linux-oracle | — | — | Not affected | Fixed | Fixed |
linux-oracle-5.0 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.3 | — | — | Not in release | Fixed | Not in release |
linux-oracle-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi | — | — | Not affected | Not in release | Not in release |
linux-raspi-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi2 | — | — | Ignored | Fixed | Fixed |
linux-raspi2-5.3 | — | — | Not in release | Fixed | Not in release |
linux-riscv | — | — | Not affected | Not in release | Not in release |
linux-snapdragon | — | — | Not in release | Fixed | Fixed |
CVE-2020-12654
High prioritySome fixes available 38 of 49
An issue was found in Linux kernel before 5.5.4. mwifiex_ret_wmm_get_status() in drivers/net/wireless/marvell/mwifiex/wmm.c allows a remote AP to trigger a heap-based buffer overflow because of an incorrect memcpy, aka CID-3a9b153c5591.
44 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.3, linux-aws-5.4...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Not affected | Fixed | Fixed |
linux-aws | — | — | Not affected | Fixed | Fixed |
linux-aws-5.0 | — | — | Not in release | Ignored | Not in release |
linux-aws-5.3 | — | — | Not in release | Fixed | Not in release |
linux-aws-5.4 | — | — | Not in release | Not affected | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Fixed |
linux-azure | — | — | Not affected | Ignored | Fixed |
linux-azure-4.15 | — | — | Not in release | Not affected | Not in release |
linux-azure-5.3 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.4 | — | — | Not in release | Not affected | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Not in release |
linux-dell300x | — | — | Not in release | Not affected | Not in release |
linux-gcp | — | — | Not affected | Ignored | Fixed |
linux-gcp-4.15 | — | — | Not in release | Not affected | Not in release |
linux-gcp-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.0 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gkeop | — | — | Not affected | Not in release | Not in release |
linux-gkeop-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe-5.8 | — | — | Not affected | Not in release | Not in release |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Not affected | Fixed | Fixed |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Fixed | Ignored |
linux-oem-5.10 | — | — | Not affected | Not in release | Not in release |
linux-oem-5.6 | — | — | Not affected | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Fixed | Not in release |
linux-oracle | — | — | Not affected | Fixed | Fixed |
linux-oracle-5.0 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.3 | — | — | Not in release | Fixed | Not in release |
linux-oracle-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi | — | — | Not affected | Not in release | Not in release |
linux-raspi-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi2 | — | — | Ignored | Fixed | Fixed |
linux-raspi2-5.3 | — | — | Not in release | Fixed | Not in release |
linux-riscv | — | — | Not affected | Not in release | Not in release |
linux-snapdragon | — | — | Not in release | Fixed | Fixed |
CVE-2020-12652
Low prioritySome fixes available 35 of 47
The __mptctl_ioctl function in drivers/message/fusion/mptctl.c in the Linux kernel before 5.4.14 allows local users to hold an incorrect lock during the ioctl operation and trigger a race condition, i.e., a "double...
44 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.3, linux-aws-5.4...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Not affected | Fixed | Fixed |
linux-aws | — | — | Not affected | Fixed | Fixed |
linux-aws-5.0 | — | — | Not in release | Ignored | Not in release |
linux-aws-5.3 | — | — | Not in release | Not affected | Not in release |
linux-aws-5.4 | — | — | Not in release | Not affected | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Fixed |
linux-azure | — | — | Not affected | Ignored | Fixed |
linux-azure-4.15 | — | — | Not in release | Not affected | Not in release |
linux-azure-5.3 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.4 | — | — | Not in release | Not affected | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Not in release |
linux-dell300x | — | — | Not in release | Not affected | Not in release |
linux-gcp | — | — | Not affected | Ignored | Fixed |
linux-gcp-4.15 | — | — | Not in release | Not affected | Not in release |
linux-gcp-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.0 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gkeop | — | — | Not affected | Not in release | Not in release |
linux-gkeop-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe-5.8 | — | — | Not affected | Not in release | Not in release |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Not affected | Fixed | Fixed |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Fixed | Ignored |
linux-oem-5.10 | — | — | Not affected | Not in release | Not in release |
linux-oem-5.6 | — | — | Not affected | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Fixed | Not in release |
linux-oracle | — | — | Not affected | Fixed | Fixed |
linux-oracle-5.0 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.3 | — | — | Not in release | Not affected | Not in release |
linux-oracle-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi | — | — | Not affected | Not in release | Not in release |
linux-raspi-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi2 | — | — | Ignored | Fixed | Fixed |
linux-raspi2-5.3 | — | — | Not in release | Fixed | Not in release |
linux-riscv | — | — | Not affected | Not in release | Not in release |
linux-snapdragon | — | — | Not in release | Fixed | Fixed |
CVE-2020-12114
Medium prioritySome fixes available 49 of 60
A pivot_root race condition in fs/namespace.c in the Linux kernel 4.4.x before 4.4.221, 4.9.x before 4.9.221, 4.14.x before 4.14.178, 4.19.x before 4.19.119, and 5.x before 5.3 allows local users to cause a denial of service...
38 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.3, linux-aws-5.4...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Fixed | Fixed | Fixed |
linux-aws | — | — | Fixed | Fixed | Fixed |
linux-aws-5.0 | — | — | Not in release | Ignored | Not in release |
linux-aws-5.3 | — | — | Not in release | Fixed | Not in release |
linux-aws-5.4 | — | — | Not in release | Not affected | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Fixed |
linux-azure | — | — | Fixed | Ignored | Fixed |
linux-azure-4.15 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.3 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.4 | — | — | Not in release | Not affected | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Not in release |
linux-gcp | — | — | Fixed | Ignored | Fixed |
linux-gcp-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.0 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.3 | — | — | Not in release | Fixed | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Fixed | Fixed | Fixed |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Fixed | Ignored |
linux-oem-5.6 | — | — | Fixed | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Fixed | Not in release |
linux-oracle | — | — | Fixed | Fixed | Fixed |
linux-oracle-5.0 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.3 | — | — | Not in release | Fixed | Not in release |
linux-oracle-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi | — | — | Fixed | Not in release | Not in release |
linux-raspi-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi2 | — | — | Ignored | Fixed | Fixed |
linux-raspi2-5.3 | — | — | Not in release | Fixed | Not in release |
linux-riscv | — | — | Fixed | Not in release | Not in release |
linux-snapdragon | — | — | Not in release | Fixed | Fixed |
CVE-2020-12465
Medium prioritySome fixes available 16 of 30
An array overflow was discovered in mt76_add_fragment in drivers/net/wireless/mediatek/mt76/dma.c in the Linux kernel before 5.5.10, aka CID-b102f0c522cf. An oversized packet with too many rx fragments can corrupt memory of adjacent pages.
32 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.3, linux-aws-hwe...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Not affected | Not affected | Not affected |
linux-aws | — | — | Not affected | Not affected | Not affected |
linux-aws-5.0 | — | — | Not in release | Ignored | Not in release |
linux-aws-5.3 | — | — | Not in release | Fixed | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Not affected |
linux-azure | — | — | Not affected | Ignored | Not affected |
linux-azure-4.15 | — | — | Not in release | Not affected | Not in release |
linux-azure-5.3 | — | — | Not in release | Fixed | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Not in release |
linux-gcp | — | — | Not affected | Ignored | Not affected |
linux-gcp-4.15 | — | — | Not in release | Not affected | Not in release |
linux-gcp-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke-4.15 | — | — | Not in release | Not affected | Not in release |
linux-gke-5.0 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.3 | — | — | Not in release | Fixed | Not in release |
linux-hwe | — | — | Not in release | Fixed | Not affected |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Not affected | Not affected | Not affected |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Not affected | Ignored |
linux-oem-5.6 | — | — | Not affected | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Fixed | Not in release |
linux-oracle | — | — | Not affected | Not affected | Not affected |
linux-oracle-5.0 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.3 | — | — | Not in release | Fixed | Not in release |
linux-raspi | — | — | Not affected | Not in release | Not in release |
linux-raspi2 | — | — | Ignored | Not affected | Not affected |
linux-raspi2-5.3 | — | — | Not in release | Fixed | Not in release |
linux-riscv | — | — | Not affected | Not in release | Not in release |
linux-snapdragon | — | — | Not in release | Not affected | Not affected |
CVE-2020-12464
Medium prioritySome fixes available 48 of 60
usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel before 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925.
38 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.3, linux-aws-5.4...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Fixed | Fixed | Fixed |
linux-aws | — | — | Fixed | Fixed | Fixed |
linux-aws-5.0 | — | — | Not in release | Ignored | Not in release |
linux-aws-5.3 | — | — | Not in release | Fixed | Not in release |
linux-aws-5.4 | — | — | Not in release | Not affected | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Fixed |
linux-azure | — | — | Fixed | Ignored | Fixed |
linux-azure-4.15 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.3 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.4 | — | — | Not in release | Not affected | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Not in release |
linux-gcp | — | — | Fixed | Ignored | Fixed |
linux-gcp-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.0 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.3 | — | — | Not in release | Fixed | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Fixed | Fixed | Fixed |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Fixed | Ignored |
linux-oem-5.6 | — | — | Fixed | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Fixed | Not in release |
linux-oracle | — | — | Fixed | Fixed | Fixed |
linux-oracle-5.0 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.3 | — | — | Not in release | Fixed | Not in release |
linux-oracle-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi | — | — | Fixed | Not in release | Not in release |
linux-raspi-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi2 | — | — | Ignored | Fixed | Fixed |
linux-raspi2-5.3 | — | — | Not in release | Fixed | Not in release |
linux-riscv | — | — | Fixed | Not in release | Not in release |
linux-snapdragon | — | — | Not in release | Fixed | Fixed |
CVE-2020-11884
High prioritySome fixes available 7 of 9
In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enable_sacf_uaccess in arch/s390/lib/uaccess.c that fails to protect against a...
36 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.3, linux-aws-hwe...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Fixed | Fixed | Not affected |
linux-aws | — | — | Not affected | Not affected | Not affected |
linux-aws-5.0 | — | — | Not in release | Not affected | Not in release |
linux-aws-5.3 | — | — | Not in release | Fixed | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Not affected |
linux-azure | — | — | Not affected | Not affected | Not affected |
linux-azure-4.15 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.3 | — | — | Not in release | Not affected | Not in release |
linux-azure-5.4 | — | — | Not in release | Not affected | Not in release |
linux-azure-edge | — | — | Not in release | Not affected | Not in release |
linux-gcp | — | — | Not affected | Not affected | Not affected |
linux-gcp-4.15 | — | — | Not in release | Not affected | Not in release |
linux-gcp-5.3 | — | — | Not in release | Not affected | Not in release |
linux-gcp-edge | — | — | Not in release | Not affected | Not in release |
linux-gke-4.15 | — | — | Not in release | Not affected | Not in release |
linux-gke-5.0 | — | — | Not in release | Not affected | Not in release |
linux-gke-5.3 | — | — | Not in release | Not affected | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Not affected | Not affected | Not affected |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Not affected | Not affected |
linux-oem-5.6 | — | — | Not affected | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Not affected | Not in release |
linux-oracle | — | — | Not affected | Not affected | Not affected |
linux-oracle-5.0 | — | — | Not in release | Not affected | Not in release |
linux-oracle-5.3 | — | — | Not in release | Not affected | Not in release |
linux-oracle-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi | — | — | Not affected | Not in release | Not in release |
linux-raspi-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi2 | — | — | Not affected | Not affected | Not affected |
linux-raspi2-5.3 | — | — | Not in release | Not affected | Not in release |
linux-riscv | — | — | Not affected | Not in release | Not in release |
linux-snapdragon | — | — | Not in release | Not affected | Not affected |
CVE-2020-0067
Medium prioritySome fixes available 47 of 59
In f2fs_xattr_generic_list of xattr.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not required...
38 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.3, linux-aws-5.4...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | Fixed | Fixed | Fixed |
linux-aws | — | — | Fixed | Fixed | Fixed |
linux-aws-5.0 | — | — | Not in release | Ignored | Not in release |
linux-aws-5.3 | — | — | Not in release | Fixed | Not in release |
linux-aws-5.4 | — | — | Not in release | Not affected | Not in release |
linux-aws-hwe | — | — | Not in release | Not in release | Fixed |
linux-azure | — | — | Fixed | Ignored | Fixed |
linux-azure-4.15 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.3 | — | — | Not in release | Fixed | Not in release |
linux-azure-5.4 | — | — | Not in release | Not affected | Not in release |
linux-azure-edge | — | — | Not in release | Ignored | Not in release |
linux-gcp | — | — | Fixed | Ignored | Fixed |
linux-gcp-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.3 | — | — | Not in release | Fixed | Not in release |
linux-gcp-5.4 | — | — | Not in release | Not affected | Not in release |
linux-gcp-edge | — | — | Not in release | Ignored | Not in release |
linux-gke-4.15 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.0 | — | — | Not in release | Fixed | Not in release |
linux-gke-5.3 | — | — | Not in release | Fixed | Not in release |
linux-hwe | — | — | Not in release | Fixed | Fixed |
linux-hwe-5.4 | — | — | Not in release | Not affected | Not in release |
linux-hwe-edge | — | — | Not in release | Ignored | Ignored |
linux-kvm | — | — | Fixed | Fixed | Fixed |
linux-lts-trusty | — | — | Not in release | Not in release | Not in release |
linux-lts-xenial | — | — | Not in release | Not in release | Not in release |
linux-oem | — | — | Not in release | Fixed | Ignored |
linux-oem-5.6 | — | — | Not affected | Not in release | Not in release |
linux-oem-osp1 | — | — | Not in release | Fixed | Not in release |
linux-oracle | — | — | Fixed | Fixed | Fixed |
linux-oracle-5.0 | — | — | Not in release | Ignored | Not in release |
linux-oracle-5.3 | — | — | Not in release | Fixed | Not in release |
linux-oracle-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi | — | — | Fixed | Not in release | Not in release |
linux-raspi-5.4 | — | — | Not in release | Not affected | Not in release |
linux-raspi2 | — | — | Ignored | Fixed | Fixed |
linux-raspi2-5.3 | — | — | Not in release | Fixed | Not in release |
linux-riscv | — | — | Fixed | Not in release | Not in release |
linux-snapdragon | — | — | Not in release | Fixed | Fixed |