Search CVE reports
1 – 10 of 3031 results
Some fixes available 8 of 139
A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an upcall to the wrong namespace in containerized environments. This issue may lead...
143 affected packages
cifs-utils, linux, linux-allwinner, linux-allwinner-5.19, linux-aws...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cifs-utils | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
| linux | Vulnerable | Vulnerable | Vulnerable | Ignored |
| linux-allwinner | Not in release | Not in release | Not in release | Not in release |
| linux-allwinner-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-aws | Vulnerable | Vulnerable | Vulnerable | Ignored |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-5.15 | Not in release | Not in release | Vulnerable | Not in release |
| linux-aws-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-aws-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-aws-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-aws-6.8 | Not in release | Vulnerable | Not in release | Not in release |
| linux-aws-fips | Not in release | Vulnerable | Vulnerable | Vulnerable |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux-azure | Fixed | Fixed | Vulnerable | Ignored |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.11 | — | — | Ignored | Not in release |
| linux-azure-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-5.15 | Not in release | Not in release | Fixed | Not in release |
| linux-azure-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-6.11 | Fixed | Not in release | Not in release | Not in release |
| linux-azure-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-6.8 | Not in release | Fixed | Not in release | Not in release |
| linux-azure-edge | Not in release | Not in release | Not in release | Ignored |
| linux-azure-fde | Not in release | Needs evaluation | Ignored | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Needs evaluation | Not in release |
| linux-azure-fde-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-fde-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-azure-fips | Not in release | Fixed | Vulnerable | Vulnerable |
| linux-azure-nvidia | Fixed | Not in release | Not in release | Not in release |
| linux-bluefield | Not in release | Not in release | Vulnerable | Not in release |
| linux-dell300x | Not in release | Not in release | Not in release | Ignored |
| linux-fips | Not in release | Vulnerable | Vulnerable | Vulnerable |
| linux-gcp | Vulnerable | Vulnerable | Vulnerable | Ignored |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-5.15 | Not in release | Not in release | Vulnerable | Not in release |
| linux-gcp-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-6.11 | Vulnerable | Not in release | Not in release | Not in release |
| linux-gcp-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-gcp-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-gcp-6.8 | Not in release | Vulnerable | Not in release | Not in release |
| linux-gcp-fips | Not in release | Vulnerable | Vulnerable | Vulnerable |
| linux-gke | Vulnerable | Vulnerable | Ignored | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.15 | Not in release | Not in release | Ignored | Not in release |
| linux-gke-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-gkeop | Vulnerable | Vulnerable | Ignored | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Ignored | Not in release |
| linux-gkeop-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-hwe | Not in release | Not in release | Not in release | Ignored |
| linux-hwe-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-5.15 | Not in release | Not in release | Vulnerable | Not in release |
| linux-hwe-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-hwe-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-6.11 | Vulnerable | Not in release | Not in release | Not in release |
| linux-hwe-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-hwe-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-hwe-6.8 | Not in release | Vulnerable | Not in release | Not in release |
| linux-hwe-edge | Not in release | Not in release | Not in release | Ignored |
| linux-ibm | Vulnerable | Vulnerable | Vulnerable | Not in release |
| linux-ibm-5.15 | Not in release | Not in release | Vulnerable | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-intel | Vulnerable | Not in release | Not in release | Not in release |
| linux-intel-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-intel-iot-realtime | Not in release | Vulnerable | Not in release | Not in release |
| linux-intel-iotg | Not in release | Vulnerable | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Vulnerable | Not in release |
| linux-iot | Not in release | Not in release | Vulnerable | Not in release |
| linux-kvm | Not in release | Vulnerable | Vulnerable | Ignored |
| linux-laptop | Not in release | Not in release | Not in release | Not in release |
| linux-lowlatency | Vulnerable | Vulnerable | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Vulnerable | Not in release |
| linux-lowlatency-hwe-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-lowlatency-hwe-6.11 | Vulnerable | Not in release | Not in release | Not in release |
| linux-lowlatency-hwe-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-lowlatency-hwe-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Vulnerable | Not in release | Not in release |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-nvidia | Vulnerable | Vulnerable | Not in release | Not in release |
| linux-nvidia-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Vulnerable | Not in release | Not in release |
| linux-nvidia-lowlatency | Vulnerable | Not in release | Not in release | Not in release |
| linux-nvidia-tegra | Vulnerable | Vulnerable | Not in release | Not in release |
| linux-nvidia-tegra-igx | Not in release | Vulnerable | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Ignored |
| linux-oem-5.10 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.14 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.17 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-5.6 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-6.0 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-6.1 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-6.11 | Vulnerable | Not in release | Not in release | Not in release |
| linux-oem-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-oem-6.8 | Vulnerable | Not in release | Not in release | Not in release |
| linux-oem-osp1 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle | Vulnerable | Vulnerable | Vulnerable | Ignored |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-5.15 | Not in release | Not in release | Vulnerable | Not in release |
| linux-oracle-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-oracle-6.8 | Not in release | Vulnerable | Not in release | Not in release |
| linux-raspi | Vulnerable | Vulnerable | Vulnerable | Not in release |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-raspi-realtime | Vulnerable | Not in release | Not in release | Not in release |
| linux-raspi2 | Not in release | Not in release | Ignored | Ignored |
| linux-raspi2-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-realtime | Vulnerable | Vulnerable | Not in release | Not in release |
| linux-riscv | Vulnerable | Ignored | Ignored | Not in release |
| linux-riscv-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Vulnerable | Not in release |
| linux-riscv-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-riscv-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-riscv-6.8 | Not in release | Vulnerable | Not in release | Not in release |
| linux-snapdragon | Not in release | Not in release | Not in release | Ignored |
| linux-starfive | Not in release | Not in release | Not in release | Not in release |
| linux-starfive-5.19 | Not in release | Ignored | Not in release | Not in release |
| linux-starfive-6.2 | Not in release | Ignored | Not in release | Not in release |
| linux-starfive-6.5 | Not in release | Ignored | Not in release | Not in release |
| linux-xilinx-zynqmp | Not in release | Vulnerable | Vulnerable | Not in release |
SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.
3 affected packages
golang-go.crypto, lxd, snapd
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| golang-go.crypto | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| lxd | Not in release | Not in release | Not affected | Needs evaluation |
| snapd | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only...
18 affected packages
golang, golang-1.10, golang-1.13, golang-1.14, golang-1.16...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| golang | Not in release | Not in release | Not in release | — |
| golang-1.10 | Not in release | Not in release | Not in release | Needs evaluation |
| golang-1.13 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation |
| golang-1.14 | Not in release | Not in release | Needs evaluation | — |
| golang-1.16 | Not in release | Not in release | Needs evaluation | Needs evaluation |
| golang-1.17 | Not in release | Needs evaluation | Not in release | — |
| golang-1.18 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation |
| golang-1.20 | Not in release | Needs evaluation | Needs evaluation | — |
| golang-1.21 | Needs evaluation | Needs evaluation | Needs evaluation | — |
| golang-1.22 | Needs evaluation | Needs evaluation | Needs evaluation | — |
| golang-1.23 | Needs evaluation | Needs evaluation | Not in release | — |
| golang-1.24 | Not in release | Not in release | Not in release | — |
| golang-1.6 | Not in release | Not in release | Not in release | — |
| golang-1.8 | Not in release | Not in release | Not in release | Needs evaluation |
| golang-1.9 | Not in release | Not in release | Not in release | Needs evaluation |
| golang-go.crypto | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| lxd | Not in release | Not in release | Not affected | Needs evaluation |
| snapd | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Some fixes available 12 of 18
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
87 affected packages
linux, linux-aws, linux-aws-5.0, linux-aws-5.15, linux-aws-5.3...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | Not affected | Not affected | Not affected | Not affected |
| linux-aws | Not affected | Not affected | Not affected | Not affected |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-fips | Not in release | Not affected | Not affected | Not affected |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux-azure | Not affected | Not affected | Not affected | Ignored |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-edge | Not in release | Not in release | Not in release | Ignored |
| linux-azure-fde | Not in release | Not affected | Ignored | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fips | Not in release | Not affected | Not affected | Not affected |
| linux-bluefield | Not in release | Not in release | Not affected | Not in release |
| linux-dell300x | Not in release | Not in release | Not in release | Not affected |
| linux-fips | Not in release | Not affected | Not affected | Not affected |
| linux-gcp | Not affected | Not affected | Not affected | Ignored |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-edge | — | — | Not in release | Ignored |
| linux-gcp-fips | Not in release | Not affected | Not affected | Not affected |
| linux-gke | Not affected | Not affected | Ignored | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-gke-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-gkeop | Not affected | Not affected | Not affected | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gkeop-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-hwe | Not in release | Not in release | Not in release | Ignored |
| linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-hwe-5.8 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-edge | Not in release | Not in release | Not in release | Ignored |
| linux-ibm | Not affected | Not affected | Not affected | Not in release |
| linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-intel | Not affected | Not in release | Not in release | Not in release |
| linux-intel-iot-realtime | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-iot | Not in release | Not in release | Not affected | Not in release |
| linux-kvm | Not in release | Not affected | Not affected | Not affected |
| linux-lowlatency | Not affected | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency-hwe-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-lts-trusty | — | — | Not in release | Not in release |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-nvidia | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Ignored |
| linux-oem-5.10 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-5.6 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-osp1 | Not in release | Not in release | Not in release | Not affected |
| linux-oracle | Not affected | Not affected | Not affected | Not affected |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-raspi | Not affected | Not affected | Not affected | Not in release |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-raspi-realtime | Not affected | Not in release | Not in release | Not in release |
| linux-raspi2 | Not in release | Not in release | Ignored | Not affected |
| linux-raspi2-5.3 | Not in release | Not in release | Not in release | Not affected |
| linux-realtime | Not affected | Not affected | Not in release | Not in release |
| linux-riscv | Not affected | Ignored | Ignored | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-snapdragon | Not in release | Not in release | Not in release | Fixed |
| linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release |
Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConfig.PublicKeyCallback) may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says...
3 affected packages
golang-go.crypto, lxd, snapd
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| golang-go.crypto | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| lxd | Not in release | Not in release | Not affected | Needs evaluation |
| snapd | Not affected | Not affected | Not affected | Not affected |
Some fixes available 50 of 57
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
136 affected packages
linux, linux-allwinner, linux-allwinner-5.19, linux-aws, linux-aws-5.0...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | Not affected | Not affected | Fixed | Fixed |
| linux-allwinner | Not in release | Not in release | Not in release | Not in release |
| linux-allwinner-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-aws | Not affected | Not affected | Fixed | Fixed |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-aws-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-fips | Not in release | Not affected | Vulnerable | Vulnerable |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux-azure | Not affected | Not affected | Fixed | Ignored |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Fixed |
| linux-azure-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-azure-5.8 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-edge | Not in release | Not in release | Not in release | Ignored |
| linux-azure-fde | Not in release | Not affected | Fixed | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fde-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-fde-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-fips | Not in release | Not affected | Vulnerable | Vulnerable |
| linux-bluefield | Not in release | Not in release | Fixed | Not in release |
| linux-dell300x | Not in release | Not in release | Not in release | Fixed |
| linux-fips | Not in release | Not affected | Not affected | Vulnerable |
| linux-gcp | Not affected | Not affected | Fixed | Ignored |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Fixed |
| linux-gcp-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-gcp-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-edge | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-fips | Not in release | Not affected | Vulnerable | Not affected |
| linux-gke | Not affected | Not affected | Fixed | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gke-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-gkeop | Not affected | Not affected | Fixed | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gkeop-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-hwe | Not in release | Not in release | Not in release | Ignored |
| linux-hwe-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-hwe-5.8 | Not in release | Not in release | Fixed | Not in release |
| linux-hwe-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-edge | Not in release | Not in release | Not in release | Ignored |
| linux-ibm | Not affected | Not affected | Not affected | Not in release |
| linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected |
| linux-intel | Not affected | Not in release | Not in release | Not in release |
| linux-intel-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-intel-iot-realtime | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-iot | Not in release | Not in release | Not affected | Not in release |
| linux-kvm | Not in release | Not affected | Fixed | Fixed |
| linux-laptop | Not in release | Not in release | Not in release | Not in release |
| linux-lowlatency | Not affected | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency-hwe-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-nvidia | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Ignored |
| linux-oem-5.10 | Not in release | Not in release | Fixed | Not in release |
| linux-oem-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-5.14 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-5.17 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-5.6 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-6.0 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.1 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-osp1 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle | Not affected | Not affected | Fixed | Fixed |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-oracle-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-raspi | Not affected | Not affected | Fixed | Not in release |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Fixed |
| linux-raspi-realtime | Not affected | Not in release | Not in release | Not in release |
| linux-raspi2 | Not in release | Not in release | Ignored | Fixed |
| linux-raspi2-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-realtime | Not affected | Not affected | Not in release | Not in release |
| linux-riscv | Not affected | Not affected | Ignored | Not in release |
| linux-riscv-5.11 | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-riscv-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-snapdragon | Not in release | Not in release | Not in release | Fixed |
| linux-starfive | Not in release | Not in release | Not in release | Not in release |
| linux-starfive-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-starfive-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-starfive-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release |
Some fixes available 6 of 7
In snapd versions prior to 2.62, when using AppArmor for enforcement of sandbox permissions, snapd failed to restrict writes to the $HOME/bin path. In Ubuntu, when this path exists, it is automatically added to the users PATH. An...
1 affected package
snapd
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| snapd | Fixed | Fixed | Fixed | Fixed |
The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line...
1 affected package
snapd
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| snapd | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
Some fixes available 1 of 59
Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the...
142 affected packages
linux, linux-allwinner, linux-allwinner-5.19, linux-aws, linux-aws-5.0...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | Not affected | Not affected | Vulnerable | Ignored |
| linux-allwinner | Not in release | Not in release | Not in release | Not in release |
| linux-allwinner-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-aws | Not affected | Not affected | Vulnerable | Ignored |
| linux-aws-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-aws-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-aws-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-aws-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-aws-fips | Not in release | Not affected | Vulnerable | Vulnerable |
| linux-aws-hwe | Not in release | Not in release | Not in release | Not in release |
| linux-azure | Not affected | Not affected | Vulnerable | Ignored |
| linux-azure-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-azure-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-azure-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-azure-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-edge | Not in release | Not in release | Not in release | Ignored |
| linux-azure-fde | Not in release | Not affected | Ignored | Not in release |
| linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-azure-fde-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-fde-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-azure-fips | Not in release | Not affected | Vulnerable | Vulnerable |
| linux-azure-nvidia | Not affected | Not in release | Not in release | Not in release |
| linux-bluefield | Not in release | Not in release | Vulnerable | Not in release |
| linux-dell300x | Not in release | Not in release | Not in release | Ignored |
| linux-fips | Not in release | Not affected | Vulnerable | Vulnerable |
| linux-gcp | Not affected | Not affected | Vulnerable | Ignored |
| linux-gcp-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gcp-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-gcp-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-gcp-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-gcp-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-gcp-fips | Not in release | Not affected | Vulnerable | Vulnerable |
| linux-gke | Not affected | Not affected | Ignored | Not in release |
| linux-gke-4.15 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gke-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-gke-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-gkeop | Not affected | Not affected | Ignored | Not in release |
| linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-gkeop-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-hwe | Not in release | Not in release | Not in release | Ignored |
| linux-hwe-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-hwe-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-hwe-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-hwe-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-hwe-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-hwe-edge | Not in release | Not in release | Not in release | Ignored |
| linux-ibm | Not affected | Not affected | Vulnerable | Not in release |
| linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-ibm-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-intel | Not affected | Not in release | Not in release | Not in release |
| linux-intel-5.13 | Not in release | Not in release | Ignored | Not in release |
| linux-intel-iot-realtime | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg | Not in release | Not affected | Not in release | Not in release |
| linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-iot | Not in release | Not in release | Vulnerable | Not in release |
| linux-kvm | Not in release | Not affected | Vulnerable | Ignored |
| linux-laptop | Not in release | Not in release | Not in release | Not in release |
| linux-lowlatency | Not affected | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-lowlatency-hwe-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-lowlatency-hwe-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-lts-xenial | Not in release | Not in release | Not in release | Not in release |
| linux-nvidia | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release |
| linux-nvidia-tegra | Not affected | Not affected | Not in release | Not in release |
| linux-nvidia-tegra-igx | Not in release | Not affected | Not in release | Not in release |
| linux-oem | Not in release | Not in release | Not in release | Ignored |
| linux-oem-5.10 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-5.13 | Not in release | Not in release | Fixed | Not in release |
| linux-oem-5.14 | Not in release | Not in release | Not affected | Not in release |
| linux-oem-5.17 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-5.6 | Not in release | Not in release | Ignored | Not in release |
| linux-oem-6.0 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.1 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.11 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release |
| linux-oem-osp1 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle | Not affected | Not affected | Vulnerable | Ignored |
| linux-oracle-5.0 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-5.13 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-oracle-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-oracle-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-oracle-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-oracle-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-raspi | Not affected | Not affected | Vulnerable | Not in release |
| linux-raspi-5.4 | Not in release | Not in release | Not in release | Ignored |
| linux-raspi-realtime | Not affected | Not in release | Not in release | Not in release |
| linux-raspi2 | Not in release | Not in release | Ignored | Ignored |
| linux-raspi2-5.3 | Not in release | Not in release | Not in release | Ignored |
| linux-realtime | Not affected | Not affected | Not in release | Not in release |
| linux-riscv | Not affected | Not affected | Ignored | Not in release |
| linux-riscv-5.11 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release |
| linux-riscv-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-riscv-5.8 | Not in release | Not in release | Ignored | Not in release |
| linux-riscv-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release |
| linux-snapdragon | Not in release | Not in release | Not in release | Ignored |
| linux-starfive | Not in release | Not in release | Not in release | Not in release |
| linux-starfive-5.19 | Not in release | Not affected | Not in release | Not in release |
| linux-starfive-6.2 | Not in release | Not affected | Not in release | Not in release |
| linux-starfive-6.5 | Not in release | Not affected | Not in release | Not in release |
| linux-xilinx-zynqmp | Not in release | Not affected | Vulnerable | Not in release |
Some fixes available 6 of 7
In snapd versions prior to 2.62, snapd failed to properly check the destination of symbolic links when extracting a snap. The snap format is a squashfs file-system image and so can contain symbolic links and other file types....
1 affected package
snapd
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| snapd | Fixed | Fixed | Fixed | Fixed |