Vulnerabilities > Canonical > Ubuntu Linux > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2019-10-01	CVE-2019-17052	Incorrect Default Permissions vulnerability in multiple products ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel 3.16 through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-0614e2b73768. local low complexity linux debian fedoraproject canonical CWE-276	3.3
2019-10-01	CVE-2019-17055	Missing Authorization vulnerability in multiple products base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21. local low complexity linux debian fedoraproject canonical opensuse redhat CWE-862	3.3
2019-09-24	CVE-2019-12068	Infinite Loop vulnerability in multiple products In QEMU 1:4.1-1, 1:2.1+dfsg-12+deb8u6, 1:2.8+dfsg-6+deb9u8, 1:3.1+dfsg-8~deb10u1, 1:3.1+dfsg-8+deb10u2, and 1:2.1+dfsg-12+deb8u12 (fixed), when executing script in lsi_execute_script(), the LSI scsi adapter emulator advances 's->dsp' index to read next opcode. local low complexity qemu canonical opensuse CWE-835	3.8
2019-07-23	CVE-2019-2738	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Compiling). network high complexity oracle canonical fedoraproject redhat	3.1
2019-07-23	CVE-2019-2786	Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). network high complexity oracle opensuse hp canonical redhat	3.4
2019-07-23	CVE-2019-2791	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Audit Plug-in). network low complexity oracle canonical	3.8
2019-07-23	CVE-2019-2842	Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JCE). network high complexity oracle opensuse hp mcafee canonical	3.7
2019-05-10	CVE-2019-11884	The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a '\0' character. local low complexity linux fedoraproject debian canonical redhat opensuse	3.3
2019-01-28	CVE-2018-10910	A bug in Bluez may allow for the Bluetooth Discoverable state being set to on when no Bluetooth agent is registered with the system. local low complexity bluez canonical	3.3
2019-01-16	CVE-2019-2422	Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). network high complexity oracle canonical netapp redhat debian opensuse hp	3.1