Vulnerabilities > Canonical > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-25 CVE-2024-29068 Unspecified vulnerability in Canonical Snapd
In snapd versions prior to 2.62, snapd failed to properly check the file type when extracting a snap.
local
low complexity
canonical
6.6
6.6
2024-06-07 CVE-2022-4968 Unspecified vulnerability in Canonical Netplan
netplan leaks the private key of wireguard to local users.
local
low complexity
canonical
6.5
6.5
2024-06-04 CVE-2022-28652 XML Entity Expansion vulnerability in multiple products
~/.config/apport/settings parsing is vulnerable to "billion laughs" attack
local
low complexity
apport-project canonical CWE-776
5.5
5.5
2024-06-04 CVE-2022-28654 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
is_closing_session() allows users to fill up apport.log
local
low complexity
apport-project canonical CWE-770
5.5
5.5
2024-06-04 CVE-2022-28656 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
is_closing_session() allows users to consume RAM in the Apport process
local
low complexity
apport-project canonical CWE-770
5.5
5.5
2024-06-04 CVE-2022-28658 Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing
local
low complexity
apport-project canonical
5.5
5.5
2024-01-24 CVE-2022-4964 Incorrect Default Permissions vulnerability in Canonical Ubuntu Pipewire-Pulse
Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio-record is not set.
local
low complexity
canonical CWE-276
5.5
5.5
2024-01-08 CVE-2023-1032 Double Free vulnerability in multiple products
The Linux kernel io_uring IORING_OP_SOCKET operation contained a double free in function __sys_socket_file() in file net/socket.c.
local
low complexity
linux canonical CWE-415
5.5
5.5
2023-12-12 CVE-2023-5536 Incorrect Default Permissions vulnerability in Canonical Ubuntu Linux
A feature in LXD (LP#1829071), affects the default configuration of Ubuntu Server which allows privileged users in the lxd group to escalate their privilege to root without requiring a sudo password.
local
high complexity
canonical CWE-276
6.4
6.4
2023-12-08 CVE-2023-45866 Improper Authentication vulnerability in multiple products
Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate and establish an encrypted connection, and accept HID keyboard reports, potentially permitting injection of HID messages when no user interaction has occurred in the Central role to authorize such access. 		6.3
6.3