22.10

DATE	CVE	VULNERABILITY TITLE	RISK
2024-07-01	CVE-2024-6387	Race Condition vulnerability in multiple products A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). network high complexity openbsd redhat suse debian canonical amazon netapp freebsd netbsd CWE-362	8.1
2024-01-08	CVE-2023-1032	Double Free vulnerability in multiple products The Linux kernel io_uring IORING_OP_SOCKET operation contained a double free in function __sys_socket_file() in file net/socket.c. local low complexity linux canonical CWE-415	5.5
2024-01-08	CVE-2022-2602	Use After Free vulnerability in multiple products io_uring UAF, Unix SCM garbage collection local high complexity linux canonical CWE-416	7.0
2024-01-08	CVE-2022-3328	Race Condition vulnerability in Canonical Snapd and Ubuntu Linux Race condition in snap-confine's must_mkdir_and_open_with_perms() local high complexity canonical CWE-362	7.0
2023-12-12	CVE-2023-5536	Incorrect Default Permissions vulnerability in Canonical Ubuntu Linux A feature in LXD (LP#1829071), affects the default configuration of Ubuntu Server which allows privileged users in the lxd group to escalate their privilege to root without requiring a sudo password. local high complexity canonical CWE-276	6.4
2023-09-01	CVE-2023-3297	Use After Free vulnerability in Canonical Accountsservice and Ubuntu Linux In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus message to the accounts-daemon process. local low complexity canonical CWE-416	7.8
2023-09-01	CVE-2023-1523	Injection vulnerability in Canonical Snapd Using the TIOCLINUX ioctl request, a malicious snap could inject contents into the input of the controlling terminal which could allow it to cause arbitrary commands to be executed outside of the snap sandbox after the snap exits. network low complexity canonical CWE-74 critical	10.0
2023-05-31	CVE-2023-2612	Improper Locking vulnerability in Canonical Ubuntu Linux 20.04/22.04/22.10 Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. local high complexity canonical CWE-667	4.7
2023-04-26	CVE-2023-1786	Information Exposure Through Log Files vulnerability in multiple products Sensitive data could be exposed in logs of cloud-init before version 23.1.2. local low complexity canonical fedoraproject CWE-532	5.5
2023-04-13	CVE-2023-1326	Improper Privilege Management vulnerability in Canonical Apport A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. local low complexity canonical CWE-269	7.8