Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

Canonical — Vulnerabilities & Security Advisories 106

Browse all 106 CVE security advisories affecting Canonical. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top 10 Products Canonical:apportLXDJujusnapdPython-aptMultipassaptdaemonpulseaudiocloud-initwhoopsieUbuntuunity-firefox-extensionUbuntu KernelMAASUbuntu LinuxJuju utilsauthdmysql-k8s-operatorcanonical-livepatchget-workflow-version-actionsnapoperatorUbuntu Serveradd-apt-repositoryaptsnapcraftLinux kernelsoftware-propertiespppSubiquity
CVE IDTitleCVSSSeverityPaused
CVE-2021-32547 apport read_file() function could follow maliciously constructed symbolic links — apportCWE-59 7.3 High2021-06-12
CVE-2021-25684 apport can be stalled by reading a FIFO — apportCWE-20 8.8 High2021-06-11
CVE-2021-25683 apport improperly parses /proc/pid/stat — apportCWE-20 8.8 High2021-06-11
CVE-2021-25682 apport improperly parses /proc/pid/status — apportCWE-20 8.8 High2021-06-11
CVE-2013-1055 Potential DoS through abuse of rate limit in libunity-webapps for Firefox — unity-firefox-extensionCWE-404 4.3 Medium2021-04-07
CVE-2013-1054 Possible remote DOS in WebApps — unity-firefox-extensionCWE-404 4.3 Medium2021-04-07
CVE-2020-16119 DCCP CCID structure use-after-free — Linux kernelCWE-416 6.3 Medium2021-01-14
CVE-2013-1053 Insecure crypto for storing passwords — remote-login-serviceCWE-261 5.5 Medium2021-01-13
CVE-2020-27351 Various memory and file descriptor leaks in apt-python — python-aptCWE-772 2.0 Low2020-12-10
CVE-2020-27350 apt integer wraparound — aptCWE-190 5.7 Medium2020-12-10
CVE-2020-16128 Aptdaemon error messages disclosed file existence to unprivileged users via dbus properties — aptdaemonCWE-209 3.8 Low2020-12-09
CVE-2020-27349 aptdaemon performed policykit permissions checks too late — aptdaemonCWE-862 7.1 -2020-12-09
CVE-2020-27348 snapcraft may build snaps with incorrect LD_LIBRARY_PATH — snapcraftCWE-427 6.8 Medium2020-12-04
CVE-2020-16123 Bypass of snapd pulseaudio restrictions — pulseaudioCWE-362 4.4 Medium2020-12-03
CVE-2012-0955 software-properties incorrectly validated TLS certificates — software-propertiesCWE-295 6.8 Medium2020-12-02
CVE-2020-15710 Potential double-free in pulseaudio — PulseAudioCWE-415 5.3 Medium2020-11-19
CVE-2020-15703 aptdaemon allows unprivileged users to test for the presence of local files via the transaction Locale property — aptdaemonCWE-22 4.0 Medium2020-10-31
CVE-2014-1420 Insecure temp file usage in Ubuntu UI toolkit — ubuntu-ui-toolkitCWE-59 3.8 Low2020-09-10
CVE-2020-15709 add-apt-repository print ASNI terminal codes — add-apt-repositoryCWE-20 5.5 -2020-09-05
CVE-2020-15704 pppd arbitrary file read information disclosure vulnerability — pppCWE-200 5.5 Medium2020-08-31
CVE-2020-15702 TOCTOU in apport — apportCWE-367 7.0 High2020-08-06
CVE-2020-11937 Resource exhaustion vulnerability in whoopsie — whoopsieCWE-400 5.5 Medium2020-08-06
CVE-2020-15701 Unhandled exception in apport — apportCWE-755 5.5 Medium2020-08-06
CVE-2020-11933 local snapd exploit through cloud-init — snapdCWE-264 7.3 High2020-07-29
CVE-2020-11934 Sandbox escape vulnerability via snapctl user-open (xdg-open) — snapd 5.9 Medium2020-07-29
CVE-2014-1422 Location service uses cached authorization even after revocation — trust-store (Ubuntu)CWE-275 5.0 Medium2020-07-22
CVE-2020-11931 Ubuntu modifications to pulseaudio to provide snap security enforcement could be unloaded — pulseaudioCWE-284 3.3 Low2020-05-15
CVE-2020-11932 Subiquity server installer logged LUKS full disk encryption password — SubiquityCWE-532 2.3 Low2020-05-13
CVE-2015-7946 MTP service exposed during emergency dialer — unity8 (Ubuntu)CWE-200 7.3 High2020-05-07
CVE-2019-15790 Apport reads PID files with elevated privileges — ApportCWE-250 2.8 Low2020-04-27

This page lists every published CVE security advisory associated with Canonical. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.