What is the vulnerability ID for this security notice?

The vulnerability ID for this security notice is USN-5517-1.

What is the severity of USN-5517-1?

The severity of USN-5517-1 is not mentioned in the provided information.

How does the Atheros ath9k wireless device driver vulnerability impact the Linux kernel?

The Atheros ath9k wireless device driver vulnerability in the Linux kernel can lead to a use-after-free vulnerability, causing a denial of service or possible execution of arbitrary code.

What is the affected package/version in Ubuntu?

The affected package/version in Ubuntu is linux-image-oem-20.04c (version 5.14.0.1045.41).

How can I fix the vulnerability in Ubuntu?

To fix the vulnerability in Ubuntu, update the linux-image-oem-20.04c package to version 5.14.0.1045.41 or higher.

Vulnerability/
USN-5517-1

CWE

416

13/7/2022

USN-5517-1: Linux kernel (OEM) vulnerabilities

First published: Wed Jul 13 2022(Updated: )

It was discovered that the Atheros ath9k wireless device driver in the Linux kernel did not properly handle some error conditions, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-1679) It was discovered that the virtio RPMSG bus driver in the Linux kernel contained a double-free vulnerability in certain error conditions. A local attacker could possibly use this to cause a denial of service (system crash). (CVE-2022-34494)

Affected Software	Affected Version	How to fix
All of
ubuntu/linux-image-oem-20.04c	<5.14.0.1045.41	5.14.0.1045.41
Ubuntu Ubuntu	=20.04
All of
ubuntu/linux-image-oem-20.04b	<5.14.0.1045.41	5.14.0.1045.41
Ubuntu Ubuntu	=20.04
All of
ubuntu/linux-image-oem-20.04	<5.14.0.1045.41	5.14.0.1045.41
Ubuntu Ubuntu	=20.04
All of
ubuntu/linux-image-5.14.0-1045-oem	<5.14.0-1045.51	5.14.0-1045.51
Ubuntu Ubuntu	=20.04

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

Frequently Asked Questions

What is the vulnerability ID for this security notice?
The vulnerability ID for this security notice is USN-5517-1.
What is the severity of USN-5517-1?
The severity of USN-5517-1 is not mentioned in the provided information.
How does the Atheros ath9k wireless device driver vulnerability impact the Linux kernel?
The Atheros ath9k wireless device driver vulnerability in the Linux kernel can lead to a use-after-free vulnerability, causing a denial of service or possible execution of arbitrary code.
What is the affected package/version in Ubuntu?
The affected package/version in Ubuntu is linux-image-oem-20.04c (version 5.14.0.1045.41).
How can I fix the vulnerability in Ubuntu?
To fix the vulnerability in Ubuntu, update the linux-image-oem-20.04c package to version 5.14.0.1045.41 or higher.

agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/severity
agent/softwarecombine
agent/tags
agent/title
agent/type
agent/weakness
collector/usn
source/Ubuntu
anchor-related/USN-5529-1
anchor-related/USN-5624-1
anchor-related/USN-5623-1
anchor-related/USN-5633-1
anchor-related/USN-5635-1
anchor-related/USN-5640-1
anchor-related/USN-5644-1
anchor-related/USN-5648-1
anchor-related/USN-5655-1
anchor-related/USN-5683-1
anchor-related/USN-5500-1
anchor-related/USN-5505-1
anchor-related/USN-5513-1
anchor-related/USN-5544-1
anchor-related/USN-5560-1
anchor-related/USN-5560-2
anchor-related/USN-5562-1
anchor-related/USN-5564-1
anchor-related/USN-5566-1
anchor-related/USN-5582-1
agent/software-canonical-lookup
package-manager/ubuntu
vendor/ubuntu
canonical/ubuntu ubuntu
version/ubuntu ubuntu/20.04