What is the vulnerability ID?

The vulnerability ID is USN-5560-2.

What software is affected by this vulnerability?

The Linux kernel versions on Ubuntu 16.04 are affected.

What is the severity of USN-5560-2?

The severity of USN-5560-2 is not mentioned in the provided information.

How can I fix USN-5560-2 on Ubuntu 16.04?

To fix USN-5560-2 on Ubuntu 16.04, update the Linux kernel to version 4.15.0-1134.150~16.04.2 or later.

Where can I find more information about this vulnerability?

You can find more information about this vulnerability on the Ubuntu Security Notices page.

Vulnerability/
USN-5560-2

CWE

416 362

10/8/2022

USN-5560-2: Linux kernel vulnerabilities

First published: Wed Aug 10 2022(Updated: )

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-2588) It was discovered that the netfilter subsystem of the Linux kernel did not prevent one nft object from referencing an nft set in another nft table, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-2586) It was discovered that the block layer subsystem in the Linux kernel did not properly initialize memory in some situations. A privileged local attacker could use this to expose sensitive information (kernel memory). (CVE-2022-0494) Hu Jiahui discovered that multiple race conditions existed in the Advanced Linux Sound Architecture (ALSA) framework, leading to use-after-free vulnerabilities. A local attacker could use these to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-1048) It was discovered that the implementation of the 6pack and mkiss protocols in the Linux kernel did not handle detach events properly in some situations, leading to a use-after-free vulnerability. A local attacker could possibly use this to cause a denial of service (system crash). (CVE-2022-1195) Minh Yuan discovered that the floppy disk driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. A local attacker could possibly use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-1652) It was discovered that the Atheros ath9k wireless device driver in the Linux kernel did not properly handle some error conditions, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-1679) Norbert Slusarek discovered that a race condition existed in the perf subsystem in the Linux kernel, resulting in a use-after-free vulnerability. A privileged local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-1729) It was discovered that the Marvell NFC device driver implementation in the Linux kernel did not properly perform memory cleanup operations in some situations, leading to a use-after-free vulnerability. A local attacker could possibly use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-1734) Duoming Zhou discovered a race condition in the NFC subsystem in the Linux kernel, leading to a use-after-free vulnerability. A privileged local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-1974) Duoming Zhou discovered that the NFC subsystem in the Linux kernel did not properly prevent context switches from occurring during certain atomic context operations. A privileged local attacker could use this to cause a denial of service (system crash). (CVE-2022-1975) Minh Yuan discovered that the floppy driver in the Linux kernel contained a race condition in some situations, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-33981) Arthur Mongodin discovered that the netfilter subsystem in the Linux kernel did not properly perform data validation. A local attacker could use this to escalate privileges in certain situations. (CVE-2022-34918)

Affected Software	Affected Version	How to fix
All of
ubuntu/linux-image-4.15.0-1134-gcp	<4.15.0-1134.150~16.04.2	4.15.0-1134.150~16.04.2
	=16.04
All of
ubuntu/linux-image-lowlatency-hwe-16.04	<4.15.0.191.178	4.15.0.191.178
	=16.04
All of
ubuntu/linux-image-4.15.0-1149-azure	<4.15.0-1149.164~16.04.1	4.15.0-1149.164~16.04.1
	=16.04
All of
ubuntu/linux-image-oem	<4.15.0.191.178	4.15.0.191.178
	=16.04
All of
ubuntu/linux-image-4.15.0-191-generic	<4.15.0-191.202~16.04.1	4.15.0-191.202~16.04.1
	=16.04
All of
ubuntu/linux-image-4.15.0-191-lowlatency	<4.15.0-191.202~16.04.1	4.15.0-191.202~16.04.1
	=16.04
All of
ubuntu/linux-image-4.15.0-1139-aws-hwe	<4.15.0-1139.150~16.04.1	4.15.0-1139.150~16.04.1
	=16.04
All of
ubuntu/linux-image-azure	<4.15.0.1149.136	4.15.0.1149.136
	=16.04
All of
ubuntu/linux-image-gke	<4.15.0.1134.129	4.15.0.1134.129
	=16.04
All of
ubuntu/linux-image-gcp	<4.15.0.1134.129	4.15.0.1134.129
	=16.04
All of
ubuntu/linux-image-aws-hwe	<4.15.0.1139.126	4.15.0.1139.126
	=16.04
All of
ubuntu/linux-image-generic-hwe-16.04	<4.15.0.191.178	4.15.0.191.178
	=16.04
All of
ubuntu/linux-image-oracle	<4.15.0.1104.88	4.15.0.1104.88
	=16.04
All of
ubuntu/linux-image-virtual-hwe-16.04	<4.15.0.191.178	4.15.0.191.178
	=16.04
All of
ubuntu/linux-image-4.15.0-1104-oracle	<4.15.0-1104.115~16.04.1	4.15.0-1104.115~16.04.1
	=16.04
All of
ubuntu/linux-image-4.15.0-1149-azure	<4.15.0-1149.164~14.04.1	4.15.0-1149.164~14.04.1
	=14.04
All of
ubuntu/linux-image-azure	<4.15.0.1149.118	4.15.0.1149.118
	=14.04

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

Frequently Asked Questions

What is the vulnerability ID?
The vulnerability ID is USN-5560-2.
What software is affected by this vulnerability?
The Linux kernel versions on Ubuntu 16.04 are affected.
What is the severity of USN-5560-2?
The severity of USN-5560-2 is not mentioned in the provided information.
How can I fix USN-5560-2 on Ubuntu 16.04?
To fix USN-5560-2 on Ubuntu 16.04, update the Linux kernel to version 4.15.0-1134.150~16.04.2 or later.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability on the Ubuntu Security Notices page.

agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/severity
agent/softwarecombine
agent/tags
agent/title
agent/type
agent/weakness
collector/usn
source/Ubuntu
anchor-related/USN-5518-1
anchor-related/USN-5560-1
anchor-related/USN-5562-1
anchor-related/USN-5564-1
anchor-related/USN-5582-1
anchor-related/USN-6001-1
anchor-related/USN-6013-1
anchor-related/USN-6014-1
anchor-related/USN-5557-1
anchor-related/USN-5565-1
anchor-related/USN-5566-1
anchor-related/USN-5567-1
anchor-related/USN-5594-1
anchor-related/USN-5599-1
anchor-related/USN-5602-1
anchor-related/USN-5616-1
anchor-related/USN-5622-1
anchor-related/USN-5623-1
anchor-related/USN-5630-1
anchor-related/USN-5639-1
anchor-related/USN-5647-1
anchor-related/USN-5650-1
anchor-related/USN-5654-1
anchor-related/USN-5660-1
anchor-related/USN-5540-1
anchor-related/USN-5544-1
anchor-related/USN-5545-1
anchor-related/USN-5588-1
anchor-related/USN-5500-1
anchor-related/USN-5505-1
anchor-related/USN-5513-1
anchor-related/USN-5529-1
anchor-related/USN-5381-1
anchor-related/USN-5517-1
anchor-related/USN-5514-1
anchor-related/USN-5539-1
anchor-related/USN-5469-1
anchor-related/USN-5856-1
anchor-related/USN-5471-1
agent/software-canonical-lookup
package-manager/ubuntu
vendor/ubuntu
canonical/ubuntu ubuntu
version/ubuntu ubuntu/16.04
version/ubuntu ubuntu/14.04