Vulnerabilidades em Ubuntu
39 resultadosCVE-2021-3493HIGHThe overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities EPSS 44.0%KEVCVE-2012-2092—A Security Bypass vulnerability exists in Ubuntu Cobbler before 2,2,2 in the cobbler-ubuntu-import script due to an error when verifying theEPSS 3.7%CVE-2026-3497LOWVulnerability in the OpenSSH GSSAPI delta included in various Linux distributions. This vulnerability affects the GSSAPI patches added by vaEPSS 2.0%CVE-2015-1326MEDIUMpython-dbusmock arbitrary code execution or file overwrite when templates are loaded from /tmpEPSS 1.8%CVE-2020-15707MEDIUMGRUB2 contained integer overflows when handling the initrd command, leading to a heap-based buffer overflow.EPSS 1.6%CVE-2021-3492HIGHUbuntu linux kernel shiftfs file system double free vulnerabilityEPSS 1.5%CVE-2020-15705MEDIUMGRUB2: avoid loading unsigned kernels when GRUB is booted directly under secureboot without shimEPSS 1.4%CVE-2014-1426HIGHget_file_by_name does not check ownerEPSS 1.4%CVE-2019-15791HIGHReference count underflow in shiftfsEPSS 1.3%CVE-2015-1316MEDIUMJuju Joyent provider uploads user's private ssh key by defaultEPSS 1.2%CVE-2019-15794HIGHReference counting error in overlayfs/shiftfs error path when used in conjuction with aufsEPSS 1.2%CVE-2016-1587HIGHThe Snapweb interface before version 0.21.2 was exposing controls to install or remove snap packages without controlling the identity of theEPSS 1.1%CVE-2019-15792HIGHType confusion in shiftfsEPSS 1.1%CVE-2014-1427CRITICALMAAS API vulnerable to CSRF attackEPSS 1.1%CVE-2020-15706MEDIUMGRUB2 contains a race condition leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing.EPSS 1.0%CVE-2014-1428LOWuuid.uuid1() is not suitable as an unguessable identifier/tokenEPSS 0.9%CVE-2015-1340HIGHchmod race in doUidshiftIntoContainerEPSS 0.9%CVE-2016-1584LOWUnity8 converged application lifecycle allows background applications to use on-screen keyboard when not top-mostEPSS 0.9%CVE-2015-1320MEDIUMProbe-and-enlist for SeaMicro chassis writes password to the logEPSS 0.9%CVE-2014-1423MEDIUMOnline Accounts Signon daemon gives out all oauth tokens to any appEPSS 0.8%