USN-5729-1

Details

It was discovered that a race condition existed in the instruction emulator of the Linux kernel on Arm 64-bit systems. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-20422)

Hsin-Wei Hung discovered that the BPF subsystem in the Linux kernel contained an out-of-bounds read vulnerability in the x86 JIT compiler. A local attacker could possibly use this to cause a denial of service (system crash) or expose sensitive information (kernel memory). (CVE-2022-2905)

Hao Sun and Jiacheng Xu discovered that the NILFS file system implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-2978)

Abhishek Shah discovered a race condition in the PF_KEYv2 implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information (kernel memory). (CVE-2022-3028)

It was discovered that the Netlink device interface implementation in the Linux kernel did not properly handle certain error conditions, leading to a use-after-free vulnerability with some network device drivers. A local attacker with admin access to the network device could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-3625)

It was discovered that the IDT 77252 ATM PCI device driver in the Linux kernel did not properly remove any pending timers during device exit, resulting in a use-after-free vulnerability. A local attacker could possibly use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-3635)

Gwangun Jung discovered that the netfilter subsystem in the Linux kernel did not properly prevent binding to an already bound chain. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-39190)

Xingyuan Mo and Gengjia Chen discovered that the Promise SuperTrak EX storage controller driver in the Linux kernel did not properly handle certain structures. A local attacker could potentially use this to expose sensitive information (kernel memory). (CVE-2022-40768)

Affected Packages

Ubuntu:20.04:LTSlinux-aws-5.15

Fixed in:

5.15.0-1023.27~20.04.1

Ubuntu:20.04:LTSlinux-azure-5.15

Fixed in:

5.15.0-1023.29~20.04.1

Ubuntu:20.04:LTSlinux-hwe-5.15

Fixed in:

5.15.0-53.59~20.04.1

Ubuntu:20.04:LTSlinux-lowlatency-hwe-5.15

Fixed in:

5.15.0-53.59~20.04.1

Ubuntu:20.04:LTSlinux-oracle-5.15

Fixed in:

5.15.0-1022.28~20.04.1

Ubuntu:22.04:LTSlinux

Fixed in:

5.15.0-53.59

Ubuntu:22.04:LTSlinux-aws

Fixed in:

5.15.0-1023.27

Ubuntu:22.04:LTSlinux-azure

Fixed in:

5.15.0-1023.29

Ubuntu:22.04:LTSlinux-gcp

Fixed in:

5.15.0-1022.29

Ubuntu:22.04:LTSlinux-gke

Fixed in:

5.15.0-1020.25

Ubuntu:22.04:LTSlinux-gkeop

Fixed in:

5.15.0-1008.12

Ubuntu:22.04:LTSlinux-ibm

Fixed in:

5.15.0-1018.21

Ubuntu:22.04:LTSlinux-kvm

Fixed in:

5.15.0-1021.26

Ubuntu:22.04:LTSlinux-lowlatency

Fixed in:

5.15.0-53.59

Ubuntu:22.04:LTSlinux-oracle

Fixed in:

5.15.0-1022.28

References

REPORThttps://ubuntu.com/security/CVE-2022-20422 REPORThttps://ubuntu.com/security/CVE-2022-2905 REPORThttps://ubuntu.com/security/CVE-2022-2978 REPORThttps://ubuntu.com/security/CVE-2022-3028 REPORThttps://ubuntu.com/security/CVE-2022-3625 REPORThttps://ubuntu.com/security/CVE-2022-3635 REPORThttps://ubuntu.com/security/CVE-2022-39190 REPORThttps://ubuntu.com/security/CVE-2022-40768 ADVISORYhttps://ubuntu.com/security/notices/USN-5729-1

USN-5729-1

Details

Affected Packages

References

Upstream

Ecosystems

Timeline