USN-5981-1: Linux kernel vulnerabilities
First published: Tue Mar 28 2023(Updated: )
It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service (memory exhaustion). (CVE-2021-3669) It was discovered that a use-after-free vulnerability existed in the SGI GRU driver in the Linux kernel. A local attacker could possibly use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-3424) Ziming Zhang discovered that the VMware Virtual GPU DRM driver in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-36280) Hyunwoo Kim discovered that the DVB Core driver in the Linux kernel did not properly perform reference counting in some situations, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-41218) It was discovered that the network queuing discipline implementation in the Linux kernel contained a null pointer dereference in some situations. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-47929) José Oliveira and Rodrigo Branco discovered that the prctl syscall implementation in the Linux kernel did not properly protect against indirect branch prediction attacks in some situations. A local attacker could possibly use this to expose sensitive information. (CVE-2023-0045) It was discovered that a use-after-free vulnerability existed in the Advanced Linux Sound Architecture (ALSA) subsystem. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-0266) Kyle Zeng discovered that the IPv6 implementation in the Linux kernel contained a NULL pointer dereference vulnerability in certain situations. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-0394) Kyle Zeng discovered that the ATM VC queuing discipline implementation in the Linux kernel contained a type confusion vulnerability in some situations. An attacker could use this to cause a denial of service (system crash). (CVE-2023-23455) It was discovered that the RNDIS USB driver in the Linux kernel contained an integer overflow vulnerability. A local attacker with physical access could plug in a malicious USB device to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-23559) Wei Chen discovered that the DVB USB AZ6027 driver in the Linux kernel contained a null pointer dereference when handling certain messages from user space. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-28328)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-oem | <4.15.0.208.193 | 4.15.0.208.193 |
| =16.04 | ||
| All of | ||
| ubuntu/linux-image-lowlatency-hwe-16.04 | <4.15.0.208.193 | 4.15.0.208.193 |
| =16.04 | ||
| All of | ||
| ubuntu/linux-image-4.15.0-1153-aws | <4.15.0-1153.166~16.04.1 | 4.15.0-1153.166~16.04.1 |
| =16.04 | ||
| All of | ||
| ubuntu/linux-image-4.15.0-208-generic | <4.15.0-208.219~16.04.1 | 4.15.0-208.219~16.04.1 |
| =16.04 | ||
| All of | ||
| ubuntu/linux-image-4.15.0-208-lowlatency | <4.15.0-208.219~16.04.1 | 4.15.0-208.219~16.04.1 |
| =16.04 | ||
| All of | ||
| ubuntu/linux-image-4.15.0-1116-oracle | <4.15.0-1116.127~16.04.1 | 4.15.0-1116.127~16.04.1 |
| =16.04 | ||
| All of | ||
| ubuntu/linux-image-aws-hwe | <4.15.0.1153.136 | 4.15.0.1153.136 |
| =16.04 | ||
| All of | ||
| ubuntu/linux-image-generic-hwe-16.04 | <4.15.0.208.193 | 4.15.0.208.193 |
| =16.04 | ||
| All of | ||
| ubuntu/linux-image-oracle | <4.15.0.1116.97 | 4.15.0.1116.97 |
| =16.04 | ||
| All of | ||
| ubuntu/linux-image-virtual-hwe-16.04 | <4.15.0.208.193 | 4.15.0.208.193 |
| =16.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2022-41218
- https://ubuntu.com/security/CVE-2023-0394
- https://ubuntu.com/security/CVE-2022-36280
- https://ubuntu.com/security/CVE-2021-3669
- https://ubuntu.com/security/CVE-2023-23455
- https://ubuntu.com/security/CVE-2022-3424
- https://ubuntu.com/security/CVE-2023-0045
- https://ubuntu.com/security/CVE-2023-0266
- https://ubuntu.com/security/CVE-2022-47929
- https://ubuntu.com/security/CVE-2023-23559
- https://ubuntu.com/security/CVE-2023-28328
- https://ubuntu.com/security/notices/USN-5915-1
- https://ubuntu.com/security/notices/USN-5917-1
- https://ubuntu.com/security/notices/USN-5924-1
- https://ubuntu.com/security/notices/USN-5927-1
- https://ubuntu.com/security/notices/USN-5934-1
- https://ubuntu.com/security/notices/USN-5939-1
- https://ubuntu.com/security/notices/USN-5940-1
- https://ubuntu.com/security/notices/USN-5951-1
- https://ubuntu.com/security/notices/USN-5975-1
- https://ubuntu.com/security/notices/USN-5982-1
- https://ubuntu.com/security/notices/USN-5984-1
- https://ubuntu.com/security/notices/USN-5987-1
- https://ubuntu.com/security/notices/USN-5991-1
- https://ubuntu.com/security/notices/USN-6000-1
- https://ubuntu.com/security/notices/USN-6001-1
- https://ubuntu.com/security/notices/USN-6004-1
- https://ubuntu.com/security/notices/USN-6009-1
- https://ubuntu.com/security/notices/USN-6013-1
- https://ubuntu.com/security/notices/USN-6014-1
- https://ubuntu.com/security/notices/USN-6024-1
- https://ubuntu.com/security/notices/USN-6030-1
- https://ubuntu.com/security/notices/USN-5976-1
- https://ubuntu.com/security/notices/USN-5978-1
- https://ubuntu.com/security/notices/USN-6025-1
- https://ubuntu.com/security/notices/USN-6040-1
- https://ubuntu.com/security/notices/USN-6057-1
- https://ubuntu.com/security/notices/USN-6079-1
- https://ubuntu.com/security/notices/USN-6091-1
- https://ubuntu.com/security/notices/USN-6096-1
- https://ubuntu.com/security/notices/USN-6134-1
- https://ubuntu.com/security/notices/USN-6032-1
- https://ubuntu.com/security/notices/USN-5980-1
- https://ubuntu.com/security/notices/USN-5985-1
- https://ubuntu.com/security/notices/USN-6020-1
- https://ubuntu.com/security/notices/USN-6151-1
- https://ubuntu.com/security/notices/USN-6071-1
- https://ubuntu.com/security/notices/USN-6072-1
- https://ubuntu.com/security/notices/USN-5856-1
- https://ubuntu.com/security/notices/USN-5884-1
- https://ubuntu.com/security/notices/USN-5913-1
- https://ubuntu.com/security/notices/USN-5914-1
- https://ubuntu.com/security/notices/USN-5926-1
- https://ubuntu.com/security/notices/USN-5970-1
- https://ubuntu.com/security/notices/USN-5979-1
- https://ubuntu.com/security/notices/USN-6247-1
- https://ubuntu.com/security/notices/USN-6248-1
- https://ubuntu.com/security/notices/USN-6031-1
- https://ubuntu.com/security/notices/USN-6149-1
- https://ubuntu.com/security/notices/USN-6385-1
- https://ubuntu.com/security/notices/USN-5981-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the severity of USN-5981-1?
The severity of USN-5981-1 is not specified.
How do I fix USN-5981-1?
To fix USN-5981-1, update your Linux kernel package to the specified version.
Which versions of Ubuntu are affected by USN-5981-1?
USN-5981-1 affects Ubuntu version 16.04.
What is the CWE ID for USN-5981-1?
The CWE IDs for USN-5981-1 are 190, 416, and 476.
Where can I find more information about USN-5981-1?
You can find more information about USN-5981-1 on the Ubuntu security website.
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- agent/weakness
- collector/usn
- source/Ubuntu
- anchor-related/USN-5915-1
- anchor-related/USN-5917-1
- anchor-related/USN-5924-1
- anchor-related/USN-5927-1
- anchor-related/USN-5934-1
- anchor-related/USN-5939-1
- anchor-related/USN-5940-1
- anchor-related/USN-5951-1
- anchor-related/USN-5975-1
- anchor-related/USN-5982-1
- anchor-related/USN-5984-1
- anchor-related/USN-5987-1
- anchor-related/USN-5991-1
- anchor-related/USN-6000-1
- anchor-related/USN-6001-1
- anchor-related/USN-6004-1
- anchor-related/USN-6009-1
- anchor-related/USN-6013-1
- anchor-related/USN-6014-1
- anchor-related/USN-6024-1
- anchor-related/USN-6030-1
- anchor-related/USN-5976-1
- anchor-related/USN-5978-1
- anchor-related/USN-6025-1
- anchor-related/USN-6040-1
- anchor-related/USN-6057-1
- anchor-related/USN-6079-1
- anchor-related/USN-6091-1
- anchor-related/USN-6096-1
- anchor-related/USN-6134-1
- anchor-related/USN-6032-1
- anchor-related/USN-5980-1
- anchor-related/USN-5985-1
- anchor-related/USN-6020-1
- anchor-related/USN-6151-1
- anchor-related/USN-6071-1
- anchor-related/USN-6072-1
- anchor-related/USN-5856-1
- anchor-related/USN-5884-1
- anchor-related/USN-5913-1
- anchor-related/USN-5914-1
- anchor-related/USN-5926-1
- anchor-related/USN-5970-1
- anchor-related/USN-5979-1
- anchor-related/USN-6247-1
- anchor-related/USN-6248-1
- anchor-related/USN-6031-1
- anchor-related/USN-6149-1
- anchor-related/USN-6385-1
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/16.04