USN-5913-1

Details

It was discovered that the Upper Level Protocol (ULP) subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain protocols, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-0461)

Lee Jones discovered that a use-after-free vulnerability existed in the Bluetooth implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-20566)

It was discovered that the ISDN implementation of the Linux kernel contained a use-after-free vulnerability. A privileged user could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-3565)

It was discovered that the Netlink Transformation (XFRM) subsystem in the Linux kernel contained a reference counting error. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-36879)

It was discovered that the USB monitoring (usbmon) component in the Linux kernel did not properly set permissions on memory mapped in to user space processes. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-43750)

It was discovered that the NFSD implementation in the Linux kernel contained a use-after-free vulnerability. A remote attacker could possibly use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-4379)

It was discovered that the Atmel WILC1000 driver in the Linux kernel did not properly validate offsets, leading to an out-of-bounds read vulnerability. An attacker could use this to cause a denial of service (system crash). (CVE-2022-47520)

José Oliveira and Rodrigo Branco discovered that the prctl syscall implementation in the Linux kernel did not properly protect against indirect branch prediction attacks in some situations. A local attacker could possibly use this to expose sensitive information. (CVE-2023-0045)

Affected Packages

Ubuntu:20.04:LTSlinux-oem-5.14

Fixed in:

5.14.0-1058.66

Ubuntu:22.04:LTSlinux-oem-5.17

Fixed in:

5.17.0-1028.29

References

REPORThttps://ubuntu.com/security/CVE-2022-20566 REPORThttps://ubuntu.com/security/CVE-2022-3565 REPORThttps://ubuntu.com/security/CVE-2022-36879 REPORThttps://ubuntu.com/security/CVE-2022-43750 REPORThttps://ubuntu.com/security/CVE-2022-4379 REPORThttps://ubuntu.com/security/CVE-2022-47520 REPORThttps://ubuntu.com/security/CVE-2023-0045 REPORThttps://ubuntu.com/security/CVE-2023-0461 ADVISORYhttps://ubuntu.com/security/notices/USN-5913-1

USN-5913-1

Details

Affected Packages

References

Upstream

Ecosystems

Timeline