top button
Flag Notify
    Connect to us
      Site Registration

Site Registration

Ubuntu CVE Priority

+2 votes
341 views

I can't find any kind of information about the Priority field of CVEs: how is computed/assigned, who calculate it, ecc

The only information I know is (source README file of ubuntu cve tracker):

Ubuntu Priorities
These are very similar to the Debian priorities, but with some differences.Priorities can be roughly mapped as:

negligible Something that is technically a security problem, but is only theoretical in nature, requires a very special situation, has almost no install base, or does no real damage. These tend not to get backport from upstreams, and will likely not be included in security updates unless there is an easy fix and some other issue causes an update.

low Something that is a security problem, but is hard to exploit due to environment, requires a user-assisted attack, a small install base, or does very little damage. These tend to be included in security updates only when higher priority issues require an update, or if many low priority issues have built up.

medium Something is a real security problem, and is exploitable for many people. Includes network daemon denial of service attacks, cross-site scripting, and gaining user privileges. Updates should be made soon for this priority of issue.

high A real problem, exploitable for many people in a default installation. Includes serious remote denial of services, local root privilege escalations, or data loss.

critical A world-burning problem, exploitable for nearly all people in a default installation of Ubuntu. Includes remote root privilege escalations, or massive data loss.

posted May 15, 2013 by anonymous

Looking for an answer?  Promote on:
Facebook Share Button Twitter Share Button LinkedIn Share Button
I'm wondering if exist some kind of severity related to CVE besides the Priority

Similar Questions
0 votes

I want to know when "apt-add-repository" becomes mandatory to run in Ubuntu machine. Usually I used following two commands many times.
$sudo apt-get update
$sudo apt-get install

+1 vote

I want to get rid of mac os x but it seem the mac os firmware are not compatible with current linux? So I have to keep the mac os partition and mac os.
Is there anyone who managed to remove mac os x entirely and will 16.04 be able to do this?

+2 votes

I want to list all the application installed on ubuntu with date

dpkg -l this command list only installed application i want installed date

...