USN-5984-1: Linux kernel vulnerabilities
First published: Wed Mar 29 2023(Updated: )
It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service (memory exhaustion). (CVE-2021-3669) It was discovered that a use-after-free vulnerability existed in the SGI GRU driver in the Linux kernel. A local attacker could possibly use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-3424) Ziming Zhang discovered that the VMware Virtual GPU DRM driver in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-36280) Hyunwoo Kim discovered that the DVB Core driver in the Linux kernel did not properly perform reference counting in some situations, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-41218) It was discovered that the network queuing discipline implementation in the Linux kernel contained a null pointer dereference in some situations. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-47929) José Oliveira and Rodrigo Branco discovered that the prctl syscall implementation in the Linux kernel did not properly protect against indirect branch prediction attacks in some situations. A local attacker could possibly use this to expose sensitive information. (CVE-2023-0045) It was discovered that a use-after-free vulnerability existed in the Advanced Linux Sound Architecture (ALSA) subsystem. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-0266) Kyle Zeng discovered that the IPv6 implementation in the Linux kernel contained a NULL pointer dereference vulnerability in certain situations. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-0394) Kyle Zeng discovered that the ATM VC queuing discipline implementation in the Linux kernel contained a type confusion vulnerability in some situations. An attacker could use this to cause a denial of service (system crash). (CVE-2023-23455) It was discovered that the RNDIS USB driver in the Linux kernel contained an integer overflow vulnerability. A local attacker with physical access could plug in a malicious USB device to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-23559) Wei Chen discovered that the DVB USB AZ6027 driver in the Linux kernel contained a null pointer dereference when handling certain messages from user space. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-28328)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-4.15.0-1137-kvm | <4.15.0-1137.142 | 4.15.0-1137.142 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-virtual | <4.15.0.208.191 | 4.15.0.208.191 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-aws-lts-18.04 | <4.15.0.1153.151 | 4.15.0.1153.151 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-generic | <4.15.0.208.191 | 4.15.0.208.191 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-4.15.0-1129-raspi2 | <4.15.0-1129.137 | 4.15.0-1129.137 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-4.15.0-1062-dell300x | <4.15.0-1062.67 | 4.15.0-1062.67 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-4.15.0-1116-oracle | <4.15.0-1116.127 | 4.15.0-1116.127 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-oracle-lts-18.04 | <4.15.0.1116.121 | 4.15.0.1116.121 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-4.15.0-208-generic-lpae | <4.15.0-208.220 | 4.15.0-208.220 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-4.15.0-1153-aws | <4.15.0-1153.166 | 4.15.0-1153.166 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-4.15.0-208-generic | <4.15.0-208.220 | 4.15.0-208.220 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-generic-lpae | <4.15.0.208.191 | 4.15.0.208.191 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-4.15.0-208-lowlatency | <4.15.0-208.220 | 4.15.0-208.220 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-dell300x | <4.15.0.1062.61 | 4.15.0.1062.61 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-raspi2 | <4.15.0.1129.124 | 4.15.0.1129.124 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-kvm | <4.15.0.1137.128 | 4.15.0.1137.128 |
| Ubuntu Ubuntu | =18.04 | |
| All of | ||
| ubuntu/linux-image-lowlatency | <4.15.0.208.191 | 4.15.0.208.191 |
| Ubuntu Ubuntu | =18.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2023-0394
- https://ubuntu.com/security/CVE-2023-23455
- https://ubuntu.com/security/CVE-2022-41218
- https://ubuntu.com/security/CVE-2021-3669
- https://ubuntu.com/security/CVE-2023-0045
- https://ubuntu.com/security/CVE-2023-0266
- https://ubuntu.com/security/CVE-2023-28328
- https://ubuntu.com/security/CVE-2022-3424
- https://ubuntu.com/security/CVE-2023-23559
- https://ubuntu.com/security/CVE-2022-36280
- https://ubuntu.com/security/CVE-2022-47929
- https://ubuntu.com/security/notices/USN-5917-1
- https://ubuntu.com/security/notices/USN-5924-1
- https://ubuntu.com/security/notices/USN-5927-1
- https://ubuntu.com/security/notices/USN-5934-1
- https://ubuntu.com/security/notices/USN-5939-1
- https://ubuntu.com/security/notices/USN-5940-1
- https://ubuntu.com/security/notices/USN-5951-1
- https://ubuntu.com/security/notices/USN-5975-1
- https://ubuntu.com/security/notices/USN-5976-1
- https://ubuntu.com/security/notices/USN-5978-1
- https://ubuntu.com/security/notices/USN-5981-1
- https://ubuntu.com/security/notices/USN-5991-1
- https://ubuntu.com/security/notices/USN-6000-1
- https://ubuntu.com/security/notices/USN-6001-1
- https://ubuntu.com/security/notices/USN-6009-1
- https://ubuntu.com/security/notices/USN-6013-1
- https://ubuntu.com/security/notices/USN-6014-1
- https://ubuntu.com/security/notices/USN-6025-1
- https://ubuntu.com/security/notices/USN-6030-1
- https://ubuntu.com/security/notices/USN-6040-1
- https://ubuntu.com/security/notices/USN-6057-1
- https://ubuntu.com/security/notices/USN-6079-1
- https://ubuntu.com/security/notices/USN-6091-1
- https://ubuntu.com/security/notices/USN-6096-1
- https://ubuntu.com/security/notices/USN-6134-1
- https://ubuntu.com/security/notices/USN-5915-1
- https://ubuntu.com/security/notices/USN-5982-1
- https://ubuntu.com/security/notices/USN-5987-1
- https://ubuntu.com/security/notices/USN-6004-1
- https://ubuntu.com/security/notices/USN-6071-1
- https://ubuntu.com/security/notices/USN-6072-1
- https://ubuntu.com/security/notices/USN-6024-1
- https://ubuntu.com/security/notices/USN-5980-1
- https://ubuntu.com/security/notices/USN-5985-1
- https://ubuntu.com/security/notices/USN-6020-1
- https://ubuntu.com/security/notices/USN-6151-1
- https://ubuntu.com/security/notices/USN-5884-1
- https://ubuntu.com/security/notices/USN-5913-1
- https://ubuntu.com/security/notices/USN-5914-1
- https://ubuntu.com/security/notices/USN-5926-1
- https://ubuntu.com/security/notices/USN-5970-1
- https://ubuntu.com/security/notices/USN-5979-1
- https://ubuntu.com/security/notices/USN-6149-1
- https://ubuntu.com/security/notices/USN-6385-1
- https://ubuntu.com/security/notices/USN-5856-1
- https://ubuntu.com/security/notices/USN-6031-1
- https://ubuntu.com/security/notices/USN-6032-1
- https://ubuntu.com/security/notices/USN-6247-1
- https://ubuntu.com/security/notices/USN-6248-1
- https://launchpad.net/ubuntu/+source/linux-kvm/4.15.0-1137.142
- https://launchpad.net/ubuntu/+source/linux-meta/4.15.0.208.191
- https://launchpad.net/ubuntu/+source/linux-meta-aws/4.15.0.1153.151
- https://launchpad.net/ubuntu/+source/linux-raspi2/4.15.0-1129.137
- https://launchpad.net/ubuntu/+source/linux-signed-dell300x/4.15.0-1062.67
- https://launchpad.net/ubuntu/+source/linux-signed-oracle/4.15.0-1116.127
- https://launchpad.net/ubuntu/+source/linux-meta-oracle/4.15.0.1116.121
- https://launchpad.net/ubuntu/+source/linux/4.15.0-208.220
- https://launchpad.net/ubuntu/+source/linux-signed-aws/4.15.0-1153.166
- https://launchpad.net/ubuntu/+source/linux-signed/4.15.0-208.220
- https://launchpad.net/ubuntu/+source/linux-meta-dell300x/4.15.0.1062.61
- https://launchpad.net/ubuntu/+source/linux-meta-raspi2/4.15.0.1129.124
- https://launchpad.net/ubuntu/+source/linux-meta-kvm/4.15.0.1137.128
- https://ubuntu.com/security/notices/USN-5984-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the severity of CVE-2021-3669?
The severity of CVE-2021-3669 is medium.
How do I fix CVE-2021-3669?
To fix CVE-2021-3669, update your Linux kernel to version 4.15.0-1137.142 or later.
What is the severity of CVE-2023-0394?
The severity of CVE-2023-0394 is not specified.
How do I fix CVE-2023-0394?
There is no remedy available for CVE-2023-0394 at the moment.
What is the severity of CVE-2022-41218?
The severity of CVE-2022-41218 is not specified.
How do I fix CVE-2022-41218?
There is no remedy available for CVE-2022-41218 at the moment.
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- agent/weakness
- collector/usn
- source/Ubuntu
- anchor-related/USN-5917-1
- anchor-related/USN-5924-1
- anchor-related/USN-5927-1
- anchor-related/USN-5934-1
- anchor-related/USN-5939-1
- anchor-related/USN-5940-1
- anchor-related/USN-5951-1
- anchor-related/USN-5975-1
- anchor-related/USN-5976-1
- anchor-related/USN-5978-1
- anchor-related/USN-5981-1
- anchor-related/USN-5991-1
- anchor-related/USN-6000-1
- anchor-related/USN-6001-1
- anchor-related/USN-6009-1
- anchor-related/USN-6013-1
- anchor-related/USN-6014-1
- anchor-related/USN-6025-1
- anchor-related/USN-6030-1
- anchor-related/USN-6040-1
- anchor-related/USN-6057-1
- anchor-related/USN-6079-1
- anchor-related/USN-6091-1
- anchor-related/USN-6096-1
- anchor-related/USN-6134-1
- anchor-related/USN-5915-1
- anchor-related/USN-5982-1
- anchor-related/USN-5987-1
- anchor-related/USN-6004-1
- anchor-related/USN-6071-1
- anchor-related/USN-6072-1
- anchor-related/USN-6024-1
- anchor-related/USN-5980-1
- anchor-related/USN-5985-1
- anchor-related/USN-6020-1
- anchor-related/USN-6151-1
- anchor-related/USN-5884-1
- anchor-related/USN-5913-1
- anchor-related/USN-5914-1
- anchor-related/USN-5926-1
- anchor-related/USN-5970-1
- anchor-related/USN-5979-1
- anchor-related/USN-6149-1
- anchor-related/USN-6385-1
- anchor-related/USN-5856-1
- anchor-related/USN-6031-1
- anchor-related/USN-6032-1
- anchor-related/USN-6247-1
- anchor-related/USN-6248-1
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/18.04