Ubuntu Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2019-12-03	CVE-2019-19526	Use After Free vulnerability in multiple products In the Linux kernel before 5.3.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/nfc/pn533/usb.c driver, aka CID-6af3aa57a098. low complexity linux canonical opensuse CWE-416	4.6
2019-12-03	CVE-2019-19524	Use After Free vulnerability in multiple products In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9. low complexity linux debian canonical CWE-416	4.6
2019-12-02	CVE-2012-4428	Out-of-bounds Read vulnerability in multiple products openslp: SLPIntersectStringList()' Function has a DoS vulnerability network low complexity openslp debian fedoraproject canonical CWE-125	7.5
2019-12-01	CVE-2019-18609	Out-of-bounds Write vulnerability in multiple products An issue was discovered in amqp_handle_input in amqp_connection.c in rabbitmq-c 0.9.0. network low complexity rabbitmq-c-project fedoraproject canonical debian CWE-787 critical	9.8
2019-11-30	CVE-2019-19462	NULL Pointer Dereference vulnerability in multiple products relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result. local low complexity linux netapp canonical opensuse debian CWE-476	5.5
2019-11-29	CVE-2015-3406	Incorrect Conversion between Numeric Types vulnerability in multiple products The PGP signature parsing in Module::Signature before 0.74 allows remote attackers to cause the unsigned portion of a SIGNATURE file to be treated as the signed portion via unspecified vectors. network low complexity module-signature-project canonical CWE-681	7.5
2019-11-29	CVE-2019-14901	A heap overflow flaw was found in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. network low complexity linux fedoraproject debian canonical critical	9.8
2019-11-29	CVE-2019-14897	A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. network low complexity linux debian canonical critical	9.8
2019-11-29	CVE-2019-14895	A heap-based buffer overflow was discovered in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. network low complexity linux debian canonical fedoraproject opensuse critical	9.8
2019-11-28	CVE-2019-19318	Use After Free vulnerability in multiple products In the Linux kernel 5.3.11, mounting a crafted btrfs image twice can cause an rwsem_down_write_slowpath use-after-free because (in rwsem_can_spin_on_owner in kernel/locking/rwsem.c) rwsem_owner_flags returns an already freed pointer, local low complexity linux opensuse canonical debian netapp CWE-416	4.4