14.04

DATE	CVE	VULNERABILITY TITLE	RISK
2020-09-24	CVE-2020-26088	Incorrect Default Permissions vulnerability in multiple products A missing CAP_NET_RAW check in NFC socket creation in net/nfc/rawsock.c in the Linux kernel before 5.8.2 could be used by local attackers to create raw sockets, bypassing security mechanisms, aka CID-26896f01467a. local low complexity linux debian opensuse canonical CWE-276	5.5
2020-09-17	CVE-2019-20919	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in the DBI module before 1.643 for Perl. local high complexity perl fedoraproject canonical debian opensuse CWE-476	4.7
2020-09-16	CVE-2020-14392	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An untrusted pointer dereference flaw was found in Perl-DBI < 1.643. local low complexity perl canonical opensuse fedoraproject debian CWE-119	5.5
2020-09-15	CVE-2020-14314	A memory out-of-bounds read flaw was found in the Linux kernel before 5.9-rc2 with the ext3/ext4 file system, in the way it accesses a directory with broken indexing. local low complexity linux debian canonical starwindsoftware	5.5
2020-09-15	CVE-2020-14362	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products A flaw was found in X.Org Server before xorg-x11-server 1.20.9. local low complexity x-org redhat canonical CWE-191	7.8
2020-09-15	CVE-2020-14361	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products A flaw was found in X.Org Server before xorg-x11-server 1.20.9. local low complexity x-org redhat canonical CWE-191	7.8
2020-09-15	CVE-2020-14346	Integer Underflow (Wrap or Wraparound) vulnerability in multiple products A flaw was found in xorg-x11-server before 1.20.9. local low complexity x-org redhat canonical CWE-191	7.8
2020-09-15	CVE-2020-14345	A flaw was found in X.Org Server before xorg-x11-server 1.20.9. local low complexity x-org canonical	7.8
2020-09-13	CVE-2020-25285	NULL Pointer Dereference vulnerability in multiple products A race condition between hugetlb sysctl handlers in mm/hugetlb.c in the Linux kernel before 5.8.8 could be used by local attackers to corrupt memory, cause a NULL pointer dereference, or possibly have unspecified other impact, aka CID-17743798d812. local high complexity linux debian canonical CWE-476	6.4
2020-09-11	CVE-2013-7490	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An issue was discovered in the DBI module before 1.632 for Perl. network low complexity perl canonical CWE-119	5.3