Vulnerabilities > Canonical > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-20	CVE-2018-1120	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel A flaw was found affecting the Linux kernel before version 4.17. network linux redhat debian canonical CWE-119	3.5
2018-05-28	CVE-2018-11508	Information Exposure vulnerability in Linux Kernel The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex. local low complexity linux canonical CWE-200	2.1
2018-05-22	CVE-2018-3639	Information Exposure Through Discrepancy vulnerability in multiple products Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4. local low complexity intel arm redhat debian canonical siemens oracle mitel sonicwall schneider-electric nvidia microsoft CWE-203	2.1
2018-05-08	CVE-2017-2592	Information Exposure Through Log Files vulnerability in multiple products python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an information disclosure. local low complexity openstack canonical CWE-532	2.1
2018-04-29	CVE-2018-10545	Information Exposure vulnerability in PHP An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. local php canonical debian netapp CWE-200	1.9
2018-04-24	CVE-2018-1059	Information Exposure vulnerability in multiple products The DPDK vhost-user interface does not check to verify that all the requested guest physical range is mapped and contiguous when performing Guest Physical Addresses to Host Virtual Addresses translations. canonical redhat dpdk CWE-200	2.9
2018-04-23	CVE-2018-1106	Improper Authentication vulnerability in multiple products An authentication bypass flaw has been found in PackageKit before 1.1.10 that allows users without administrator privileges to install signed packages. local low complexity packagekit-project redhat canonical debian CWE-287	2.1
2018-04-19	CVE-2018-2755	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). local high complexity oracle debian canonical mariadb netapp redhat	3.7
2018-04-19	CVE-2018-2762	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection). local low complexity oracle canonical	2.1
2018-04-19	CVE-2018-2773	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). local oracle debian canonical	1.9