Search CVE reports
1 – 7 of 7 results
CVE-2023-4016
Low prioritySome fixes available 6 of 7
Under some circumstances, this weakness allows a user who has access to run the “ps” utility on a machine, the ability to write almost unlimited amounts of unfiltered data into the process heap.
1 affected packages
procps
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
procps | Not affected | Fixed | Fixed | Fixed | Fixed |
CVE-2018-1126
Medium priorityprocps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.* leading to truncation/integer overflow issues. This flaw is related to CVE-2018-1124.
1 affected packages
procps
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
procps | — | — | — | Fixed | Fixed |
CVE-2018-1125
Medium priorityprocps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. This vulnerability is mitigated by FORTIFY, as it involves strncat() to a stack-allocated string. When pgrep is compiled with FORTIFY (as on...
1 affected packages
procps
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
procps | — | — | — | Fixed | Fixed |
CVE-2018-1124
Medium priorityprocps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escalation for a local attacker who can create entries in procfs by starting...
1 affected packages
procps
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
procps | — | — | — | Fixed | Fixed |
CVE-2018-1123
Medium priorityprocps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of the overflowed buffer, ensuring that the impact of this flaw is limited...
1 affected packages
procps
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
procps | — | — | — | Fixed | Fixed |
CVE-2018-1122
Medium priorityprocps-ng before version 3.3.15 is vulnerable to a local privilege escalation in top. If a user runs top with HOME unset in an attacker-controlled directory, the attacker could achieve privilege escalation by exploiting one of...
1 affected packages
procps
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
procps | — | — | — | Fixed | Fixed |
CVE-2018-1120
Medium prioritySome fixes available 21 of 30
A flaw was found affecting the Linux kernel before version 4.17. By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker can cause utilities from psutils or...
74 affected packages
linux, linux-aws, linux-aws-5.15, linux-aws-5.4, linux-aws-fips...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-aws | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-aws-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-aws-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-aws-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-aws-hwe | Not in release | Not in release | Not in release | Not in release | Not affected |
linux-azure | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-azure-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-azure-edge | Not in release | Not in release | Not in release | Fixed | Not in release |
linux-azure-fde | Not in release | Not affected | Ignored | Not in release | Not in release |
linux-azure-fde-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-azure-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-bluefield | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-euclid | — | — | — | Not in release | Ignored |
linux-fips | Not in release | Not in release | Not in release | Not in release | Fixed |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | Not affected | Not affected | Not affected | Fixed | Fixed |
linux-gcp-4.15 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-gcp-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-gcp-edge | — | — | — | Not affected | Not in release |
linux-gcp-fips | Not in release | Not in release | Not in release | Not in release | Ignored |
linux-gke | Not affected | Not affected | Ignored | Not in release | Ignored |
linux-gkeop | Not in release | Not affected | Not affected | Not in release | Not in release |
linux-gkeop-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-hwe-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-hwe-edge | Not in release | Not in release | Not in release | Not affected | Fixed |
linux-ibm | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-ibm-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-ibm-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-intel | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-intel-iot-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-intel-iotg | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-intel-iotg-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-iot | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-kvm | Not in release | Not affected | Not affected | Fixed | Fixed |
linux-lowlatency | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-lowlatency-hwe-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-lowlatency-hwe-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-nvidia | Not affected | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.5 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-nvidia-lowlatency | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oem | Not in release | Not in release | Not in release | Fixed | Ignored |
linux-oem-6.8 | Not affected | Not in release | Not in release | Not in release | Not in release |
linux-oracle | Not affected | Not affected | Not affected | Not affected | Not affected |
linux-oracle-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-oracle-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-raspi | Not affected | Not affected | Not affected | Not in release | Not in release |
linux-raspi-5.4 | Not in release | Not in release | Not in release | Not affected | Not in release |
linux-raspi-realtime | Not in release | Not in release | Not in release | Not in release | Not in release |
linux-raspi2 | Not in release | Not in release | Ignored | Fixed | Fixed |
linux-realtime | Not in release | Ignored | Not in release | Not in release | Not in release |
linux-riscv | Not affected | Ignored | Ignored | Not in release | Not in release |
linux-riscv-5.15 | Not in release | Not in release | Not affected | Not in release | Not in release |
linux-riscv-6.8 | Not in release | Not affected | Not in release | Not in release | Not in release |
linux-snapdragon | Not in release | Not in release | Not in release | Fixed | Fixed |
linux-xilinx-zynqmp | Not in release | Not affected | Not affected | Not in release | Not in release |
procps | Not affected | Not affected | Not affected | Not affected | Not affected |