USN-5357-2

Details

It was discovered that the IPsec implementation in the Linux kernel did not properly allocate enough memory when performing ESP transformations, leading to a heap-based buffer overflow. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.

Affected Packages

Ubuntu:18.04:LTSlinux-gcp-4.15

Fixed in:

4.15.0-1120.134

Ubuntu:18.04:LTSlinux-oracle

Fixed in:

4.15.0-1091.100

Ubuntu:18.04:LTSlinux-raspi2

Fixed in:

4.15.0-1107.114

Ubuntu:Pro:14.04:LTSlinux-azure

Fixed in:

4.15.0-1136.149~14.04.1

Ubuntu:Pro:16.04:LTSlinux-aws-hwe

Fixed in:

4.15.0-1126.135~16.04.2

Ubuntu:Pro:16.04:LTSlinux-azure

Fixed in:

4.15.0-1136.149~16.04.1

Ubuntu:Pro:16.04:LTSlinux-gcp

Fixed in:

4.15.0-1120.134~16.04.1

Ubuntu:Pro:16.04:LTSlinux-oracle

Fixed in:

4.15.0-1091.100~16.04.1

References

REPORThttps://ubuntu.com/security/CVE-2022-27666 ADVISORYhttps://ubuntu.com/security/notices/USN-5357-2

USN-5357-2

Details

Affected Packages

References

Upstream

Ecosystems

Timeline