Vulnerabilidades em Canonical Ltd.
51 resultadosCVE-2023-3297HIGHIn Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus EPSS 0.3%CVE-2024-11586MEDIUMUbuntu's implementation of pulseaudio can be crashed by a malicious program if a bluetooth headset is connected.EPSS 0.3%CVE-2023-2612MEDIUMshiftfs lock unbalance in Ubuntu-specific kernelsEPSS 0.3%CVE-2022-0555HIGHSubiquity Shows Guided Storage Passphrase in Plaintext with Read-all PermissionsEPSS 0.3%CVE-2024-9312HIGHAuthd, through version 0.3.6, did not sufficiently randomize user IDs to prevent collisions. A local attacker who can register user names coEPSS 0.3%CVE-2022-4964MEDIUMUbuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio-record is not set.EPSS 0.3%CVE-2023-1786MEDIUMsensitive data exposure in cloud-init logsEPSS 0.3%CVE-2022-4968MEDIUMnetplan leaks the private key of wireguard to local users. Versions after 1.0 are not affected.EPSS 0.3%CVE-2024-6714HIGHAn issue was discovered in provd before version 0.1.5 with a setuid binary, which allows a local attacker to escalate their privilege.EPSS 0.3%CVE-2023-48733MEDIUMAn insecure default to allow UEFI Shell in EDK2 was left enabled in Ubuntu's EDK2. This allows an OS-resident attacker to bypass Secure BootEPSS 0.3%CVE-2020-27352CRITICALWhen generating the systemd service units for the docker snap (and other similar snaps), snapd does not specify Delegate=yes - as a result sEPSS 0.3%CVE-2021-3155LOWsnapd created ~/snap with too-wide permissionsEPSS 0.3%CVE-2022-28654MEDIUMis_closing_session() allows users to fill up apport.logEPSS 0.3%CVE-2023-49721MEDIUMAn insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot.EPSS 0.2%CVE-2022-2084MEDIUMsensitive data exposure in cloud-init logsEPSS 0.2%CVE-2022-1242HIGHApport can be tricked into connecting to arbitrary sockets as the root userEPSS 0.2%CVE-2022-28657HIGHApport does not disable python crash handler before entering chrootEPSS 0.2%CVE-2021-3429MEDIUMsensitive data exposure in cloud-init logsEPSS 0.2%CVE-2023-5182MEDIUMSensitive data could be exposed in logs of subiquity version 23.09.1 and earlier. An attacker in the adm group could use this information toEPSS 0.2%CVE-2024-8038HIGHVulnerable juju introspection abstract UNIX domain socket. An abstract UNIX domain socket responsible for introspection is available withoutEPSS 0.2%