USN-5357-2: Linux kernel vulnerability

Reference Links

• https://ubuntu.com/security/CVE-2022-27666
• https://ubuntu.com/security/notices/USN-5353-1
• https://ubuntu.com/security/notices/USN-5357-1
• https://ubuntu.com/security/notices/USN-5358-1
• https://ubuntu.com/security/notices/USN-5358-2
• https://ubuntu.com/security/notices/USN-5368-1
• https://ubuntu.com/security/notices/USN-5377-1
• https://launchpad.net/ubuntu/+source/linux-signed-gcp-4.15/4.15.0-1120.134
• https://launchpad.net/ubuntu/+source/linux-meta-gcp-4.15/4.15.0.1120.139
• https://launchpad.net/ubuntu/+source/linux-meta-oracle/4.15.0.1091.101
• https://launchpad.net/ubuntu/+source/linux-signed-oracle/4.15.0-1091.100
• https://launchpad.net/ubuntu/+source/linux-meta-raspi2/4.15.0.1107.105
• https://launchpad.net/ubuntu/+source/linux-raspi2/4.15.0-1107.114
• https://ubuntu.com/security/notices/USN-5357-2 (Advisory)

Child vulnerabilities

(Contains the following vulnerabilities)

• CVE-2022-27666

Frequently Asked Questions

• What is the impact of USN-5357-2?

  The vulnerability allows a local attacker to cause a denial of service (system crash) or possibly execute arbitrary code.

• Who is affected by USN-5357-2?

  Users running Ubuntu 16.04, Ubuntu 18.04, and Ubuntu 20.04 are affected.

• How do I fix USN-5357-2 vulnerability?

  Update the Linux kernel to versions 4.15.0-1120.134, 4.15.0.1120.139, 4.15.0.1091.101, 4.15.0-1091.100, 4.15.0.1107.105, 4.15.0-1107.114, 4.15.0.1136.126, 4.15.0.1091.79, 4.15.0-1126.135~16.04.2, 4.15.0-1120.134~16.04.1, 4.15.0.1120.121, 4.15.0-1091.100~16.04.1, 4.15.0.1120.121, 4.15.0-1136.149~16.04.1, 4.15.0.1126.116, 4.15.0.1136.108, 4.15.0-1136.149~14.04.1, or higher.

• Where can I find more information about USN-5357-2?

  You can find more information about USN-5357-2 on the Ubuntu security website.

• What is the Common Weakness Enumeration (CWE) ID for USN-5357-2?

  The Common Weakness Enumeration (CWE) ID for USN-5357-2 is CWE-119.