High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-18	CVE-2024-8287	Improper Certificate Validation vulnerability in Canonical Anbox Cloud Anbox Management Service, in versions 1.17.0 through 1.23.0, does not validate the TLS certificate provided to it by the Anbox Stream Agent. high complexity canonical CWE-295	7.5
2024-07-25	CVE-2024-29069	Link Following vulnerability in Canonical Snapd In snapd versions prior to 2.62, snapd failed to properly check the destination of symbolic links when extracting a snap. local low complexity canonical CWE-59	7.3
2024-07-25	CVE-2024-1724	Incorrect Permission Assignment for Critical Resource vulnerability in Canonical Snapd In snapd versions prior to 2.62, when using AppArmor for enforcement of sandbox permissions, snapd failed to restrict writes to the $HOME/bin path. local low complexity canonical CWE-732	8.2
2024-07-01	CVE-2024-6387	Race Condition vulnerability in multiple products A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). network high complexity openbsd redhat suse debian canonical amazon netapp freebsd netbsd CWE-362	8.1
2024-06-04	CVE-2022-28655	Allocation of Resources Without Limits or Throttling vulnerability in multiple products is_closing_session() allows users to create arbitrary tcp dbus connections local low complexity apport-project canonical CWE-770	7.1
2024-06-04	CVE-2022-28657	Apport does not disable python crash handler before entering chroot local low complexity apport-project canonical	7.8
2024-01-08	CVE-2021-3600	Out-of-bounds Write vulnerability in multiple products It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. local low complexity linux canonical fedoraproject redhat CWE-787	7.8
2024-01-08	CVE-2022-2585	Use After Free vulnerability in multiple products It was discovered that when exec'ing from a non-leader thread, armed POSIX CPU timers would be left on a list but freed, leading to a use-after-free. local low complexity linux canonical CWE-416	7.8
2024-01-08	CVE-2022-2586	Use After Free vulnerability in multiple products It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted. local low complexity linux canonical CWE-416	7.8
2024-01-08	CVE-2022-2588	Double Free vulnerability in multiple products It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0. local low complexity linux canonical CWE-415	7.8