|
224801
|
8.8 |
HIGH
Local
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, several locations which shift ids translate user/group ids before performing operations in the l…
|
CWE-276
Incorrect Default Permissions
|
CVE-2019-15793
|
2024-11-21 13:29 |
2020-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224802
|
7.8 |
HIGH
Local
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfs_btrfs_ioctl_fd_replace() calls fdget(oldfd), then without further checks passes the resu…
|
CWE-843
Type Confusion
|
CVE-2019-15792
|
2024-11-21 13:29 |
2020-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224803
|
7.8 |
HIGH
Local
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, shiftfs_btrfs_ioctl_fd_replace() installs an fd referencing a file from the lower filesystem wit…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2019-15791
|
2024-11-21 13:29 |
2020-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224804
|
7.8 |
HIGH
Local
|
canonical
|
microk8s
|
Privilege escalation vulnerability in MicroK8s allows a low privilege user with local access to obtain root access to the host by provisioning a privileged container. Fixed in MicroK8s 1.15.3.
|
NVD-CWE-noinfo
|
CVE-2019-15789
|
2024-11-21 13:29 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224805
|
4.7 |
MEDIUM
Network
|
ubuntu
debian
|
python-apt
|
Python-apt doesn't check if hashes are signed in `Version.fetch_binary()` and `Version.fetch_source()` of apt/package.py or in `_fetch_archives()` of apt/cache.py in version 1.9.3ubuntu2 and earlier.…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2019-15796
|
2024-11-21 13:29 |
2020-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224806
|
4.7 |
MEDIUM
Network
|
ubuntu
debian
|
python-apt
|
python-apt only checks the MD5 sums of downloaded files in `Version.fetch_binary()` and `Version.fetch_source()` of apt/package.py in version 1.9.0ubuntu1 and earlier. This allows a man-in-the-middle…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2019-15795
|
2024-11-21 13:29 |
2020-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224807
|
7.2 |
HIGH
Network
|
killernetworking
|
killer_control_center
|
An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120004 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an arb…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-15665
|
2024-11-21 13:29 |
2020-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224808
|
2.7 |
LOW
Network
|
killernetworking
|
killer_control_center
|
An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120404 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an out…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-15664
|
2024-11-21 13:29 |
2020-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224809
|
2.7 |
LOW
Network
|
killernetworking
|
killer_control_center
|
An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120404 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an out…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-15663
|
2024-11-21 13:29 |
2020-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224810
|
2.7 |
LOW
Network
|
killernetworking
|
killer_control_center
|
An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120444 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an arb…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-15662
|
2024-11-21 13:29 |
2020-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
