- Vulnerability/
- USN-5384-1
20/4/2022
USN-5384-1: Linux kernel vulnerabilities
First published: Wed Apr 20 2022(Updated: )
It was discovered that the UDF file system implementation in the Linux kernel could attempt to dereference a null pointer in some situations. An attacker could use this to construct a malicious UDF image that, when mounted and operated on, could cause a denial of service (system crash). (CVE-2022-0617) Lyu Tao discovered that the NFS implementation in the Linux kernel did not properly handle requests to open a directory on a regular file. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2022-24448) It was discovered that the YAM AX.25 device driver in the Linux kernel did not properly deallocate memory in some error conditions. A local privileged attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2022-24959)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-5.4.0-1062-kvm | <5.4.0-1062.65 | 5.4.0-1062.65 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-109-generic-lpae | <5.4.0-109.123 | 5.4.0-109.123 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-gkeop | <5.4.0.1039.42 | 5.4.0.1039.42 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-virtual | <5.4.0.109.113 | 5.4.0.109.113 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-generic | <5.4.0.109.113 | 5.4.0.109.113 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-oem | <5.4.0.109.113 | 5.4.0.109.113 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1059-raspi | <5.4.0-1059.67 | 5.4.0-1059.67 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-oem-osp1 | <5.4.0.109.113 | 5.4.0.109.113 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1068-gke | <5.4.0-1068.71 | 5.4.0-1068.71 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-ibm-lts-20.04 | <5.4.0.1020.20 | 5.4.0.1020.20 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-azure-lts-20.04 | <5.4.0.1077.75 | 5.4.0.1077.75 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-gkeop-5.4 | <5.4.0.1039.42 | 5.4.0.1039.42 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-azure-fde | <5.4.0.1076.79+cvm1.21 | 5.4.0.1076.79+cvm1.21 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1077-azure | <5.4.0-1077.80 | 5.4.0-1077.80 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-gke | <5.4.0.1068.78 | 5.4.0.1068.78 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-ibm | <5.4.0.1020.20 | 5.4.0.1020.20 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1076-azure-fde | <5.4.0-1076.79+cvm1.1 | 5.4.0-1076.79+cvm1.1 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-aws-lts-20.04 | <5.4.0.1072.74 | 5.4.0.1072.74 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1070-oracle | <5.4.0-1070.76 | 5.4.0-1070.76 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1020-ibm | <5.4.0-1020.22 | 5.4.0-1020.22 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-raspi2 | <5.4.0.1059.93 | 5.4.0.1059.93 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-109-lowlatency | <5.4.0-109.123 | 5.4.0-109.123 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-gcp-lts-20.04 | <5.4.0.1072.80 | 5.4.0.1072.80 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1072-gcp | <5.4.0-1072.77 | 5.4.0-1072.77 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1039-gkeop | <5.4.0-1039.40 | 5.4.0-1039.40 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-109-generic | <5.4.0-109.123 | 5.4.0-109.123 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-raspi | <5.4.0.1059.93 | 5.4.0.1059.93 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-gke-5.4 | <5.4.0.1068.78 | 5.4.0.1068.78 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-kvm | <5.4.0.1062.61 | 5.4.0.1062.61 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-oracle-lts-20.04 | <5.4.0.1070.70 | 5.4.0.1070.70 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-generic-lpae | <5.4.0.109.113 | 5.4.0.109.113 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1072-aws | <5.4.0-1072.77 | 5.4.0-1072.77 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-lowlatency | <5.4.0.109.113 | 5.4.0.109.113 |
| =20.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-109-generic-lpae | <5.4.0-109.123~18.04.1 | 5.4.0-109.123~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-generic-hwe-18.04 | <5.4.0.109.123~18.04.94 | 5.4.0.109.123~18.04.94 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-snapdragon-hwe-18.04 | <5.4.0.109.123~18.04.94 | 5.4.0.109.123~18.04.94 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-oem | <5.4.0.109.123~18.04.94 | 5.4.0.109.123~18.04.94 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-aws | <5.4.0.1072.54 | 5.4.0.1072.54 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-109-generic | <5.4.0-109.123~18.04.1 | 5.4.0-109.123~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-raspi-hwe-18.04 | <5.4.0.1059.60 | 5.4.0.1059.60 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1072-gcp | <5.4.0-1072.77~18.04.1 | 5.4.0-1072.77~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1059-raspi | <5.4.0-1059.66~18.04.1 | 5.4.0-1059.66~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1072-aws | <5.4.0-1072.77~18.04.1 | 5.4.0-1072.77~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-generic-lpae-hwe-18.04 | <5.4.0.109.123~18.04.94 | 5.4.0.109.123~18.04.94 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1068-gke | <5.4.0-1068.71~18.04.1 | 5.4.0-1068.71~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-gkeop-5.4 | <5.4.0.1039.40~18.04.39 | 5.4.0.1039.40~18.04.39 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-azure | <5.4.0.1077.56 | 5.4.0.1077.56 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1020-ibm | <5.4.0-1020.22~18.04.1 | 5.4.0-1020.22~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1077-azure | <5.4.0-1077.80~18.04.1 | 5.4.0-1077.80~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1039-gkeop | <5.4.0-1039.40~18.04.1 | 5.4.0-1039.40~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-ibm | <5.4.0.1020.37 | 5.4.0.1020.37 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-virtual-hwe-18.04 | <5.4.0.109.123~18.04.94 | 5.4.0.109.123~18.04.94 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-1070-oracle | <5.4.0-1070.76~18.04.1 | 5.4.0-1070.76~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-5.4.0-109-lowlatency | <5.4.0-109.123~18.04.1 | 5.4.0-109.123~18.04.1 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-gcp | <5.4.0.1072.56 | 5.4.0.1072.56 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-oem-osp1 | <5.4.0.109.123~18.04.94 | 5.4.0.109.123~18.04.94 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-oracle | <5.4.0.1070.76~18.04.49 | 5.4.0.1070.76~18.04.49 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-lowlatency-hwe-18.04 | <5.4.0.109.123~18.04.94 | 5.4.0.109.123~18.04.94 |
| =18.04 | ||
| All of | ||
| ubuntu/linux-image-gke-5.4 | <5.4.0.1068.71~18.04.32 | 5.4.0.1068.71~18.04.32 |
| =18.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2022-24448
- https://ubuntu.com/security/CVE-2022-24959
- https://ubuntu.com/security/CVE-2022-0617
- https://ubuntu.com/security/notices/USN-5302-1
- https://ubuntu.com/security/notices/USN-5383-1
- https://ubuntu.com/security/notices/USN-5385-1
- https://ubuntu.com/security/notices/USN-6001-1
- https://ubuntu.com/security/notices/USN-6013-1
- https://ubuntu.com/security/notices/USN-6014-1
- https://launchpad.net/ubuntu/+source/linux-signed-kvm/5.4.0-1062.65
- https://launchpad.net/ubuntu/+source/linux/5.4.0-109.123
- https://launchpad.net/ubuntu/+source/linux-meta-gkeop/5.4.0.1039.42
- https://launchpad.net/ubuntu/+source/linux-meta/5.4.0.109.113
- https://launchpad.net/ubuntu/+source/linux-raspi/5.4.0-1059.67
- https://launchpad.net/ubuntu/+source/linux-signed-gke/5.4.0-1068.71
- https://launchpad.net/ubuntu/+source/linux-meta-ibm/5.4.0.1020.20
- https://launchpad.net/ubuntu/+source/linux-meta-azure/5.4.0.1077.75
- https://launchpad.net/ubuntu/+source/linux-meta-azure-fde/5.4.0.1076.79+cvm1.21
- https://launchpad.net/ubuntu/+source/linux-signed-azure/5.4.0-1077.80
- https://launchpad.net/ubuntu/+source/linux-meta-gke/5.4.0.1068.78
- https://launchpad.net/ubuntu/+source/linux-signed-azure-fde/5.4.0-1076.79+cvm1.1
- https://launchpad.net/ubuntu/+source/linux-meta-aws/5.4.0.1072.74
- https://launchpad.net/ubuntu/+source/linux-signed-oracle/5.4.0-1070.76
- https://launchpad.net/ubuntu/+source/linux-signed-ibm/5.4.0-1020.22
- https://launchpad.net/ubuntu/+source/linux-meta-raspi/5.4.0.1059.93
- https://launchpad.net/ubuntu/+source/linux-signed/5.4.0-109.123
- https://launchpad.net/ubuntu/+source/linux-meta-gcp/5.4.0.1072.80
- https://launchpad.net/ubuntu/+source/linux-signed-gcp/5.4.0-1072.77
- https://launchpad.net/ubuntu/+source/linux-signed-gkeop/5.4.0-1039.40
- https://launchpad.net/ubuntu/+source/linux-meta-kvm/5.4.0.1062.61
- https://launchpad.net/ubuntu/+source/linux-meta-oracle/5.4.0.1070.70
- https://launchpad.net/ubuntu/+source/linux-signed-aws/5.4.0-1072.77
- https://launchpad.net/ubuntu/+source/linux-hwe-5.4/5.4.0-109.123~18.04.1
- https://launchpad.net/ubuntu/+source/linux-meta-hwe-5.4/5.4.0.109.123~18.04.94
- https://launchpad.net/ubuntu/+source/linux-meta-aws-5.4/5.4.0.1072.54
- https://launchpad.net/ubuntu/+source/linux-signed-hwe-5.4/5.4.0-109.123~18.04.1
- https://launchpad.net/ubuntu/+source/linux-meta-raspi-5.4/5.4.0.1059.60
- https://launchpad.net/ubuntu/+source/linux-signed-gcp-5.4/5.4.0-1072.77~18.04.1
- https://launchpad.net/ubuntu/+source/linux-raspi-5.4/5.4.0-1059.66~18.04.1
- https://launchpad.net/ubuntu/+source/linux-signed-aws-5.4/5.4.0-1072.77~18.04.1
- https://launchpad.net/ubuntu/+source/linux-signed-gke-5.4/5.4.0-1068.71~18.04.1
- https://launchpad.net/ubuntu/+source/linux-meta-gkeop-5.4/5.4.0.1039.40~18.04.39
- https://launchpad.net/ubuntu/+source/linux-meta-azure-5.4/5.4.0.1077.56
- https://launchpad.net/ubuntu/+source/linux-signed-ibm-5.4/5.4.0-1020.22~18.04.1
- https://launchpad.net/ubuntu/+source/linux-signed-azure-5.4/5.4.0-1077.80~18.04.1
- https://launchpad.net/ubuntu/+source/linux-signed-gkeop-5.4/5.4.0-1039.40~18.04.1
- https://launchpad.net/ubuntu/+source/linux-meta-ibm-5.4/5.4.0.1020.37
- https://launchpad.net/ubuntu/+source/linux-signed-oracle-5.4/5.4.0-1070.76~18.04.1
- https://launchpad.net/ubuntu/+source/linux-meta-gcp-5.4/5.4.0.1072.56
- https://launchpad.net/ubuntu/+source/linux-meta-oracle-5.4/5.4.0.1070.76~18.04.49
- https://launchpad.net/ubuntu/+source/linux-meta-gke-5.4/5.4.0.1068.71~18.04.32
- https://ubuntu.com/security/notices/USN-5384-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/usn
- source/Ubuntu
- anchor-related/USN-5302-1
- anchor-related/USN-5383-1
- anchor-related/USN-5385-1
- anchor-related/USN-6001-1
- anchor-related/USN-6013-1
- anchor-related/USN-6014-1
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/20.04
- version/ubuntu ubuntu/18.04