USN-6283-1: Linux kernel vulnerabilities
First published: Fri Aug 11 2023(Updated: )
Ruihan Li discovered that the bluetooth subsystem in the Linux kernel did not properly perform permissions checks when handling HCI sockets. A physically proximate attacker could use this to cause a denial of service (bluetooth communication). (CVE-2023-2002) Zheng Zhang discovered that the device-mapper implementation in the Linux kernel did not properly handle locking during table_clear() operations. A local attacker could use this to cause a denial of service (kernel deadlock). (CVE-2023-2269) It was discovered that the Ricoh R5C592 MemoryStick card reader driver in the Linux kernel contained a race condition during module unload, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-3141) Quentin Minster discovered that the KSMBD implementation in the Linux kernel did not properly validate pointers in some situations, leading to a null pointer dereference vulnerability. A remote attacker could use this to cause a denial of service (system crash). (CVE-2023-32248) Quentin Minster discovered that a race condition existed in the KSMBD implementation in the Linux kernel, leading to a use-after-free vulnerability. A remote attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-32254) It was discovered that the kernel->user space relay implementation in the Linux kernel did not properly perform certain buffer calculations, leading to an out-of-bounds read vulnerability. A local attacker could use this to cause a denial of service (system crash) or expose sensitive information (kernel memory). (CVE-2023-3268) It was discovered that the QCOM CPUFreq HW driver in the Linux kernel on ARM processors did not properly handle device unbind. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-3312) It was discovered that the MediaTek MT7921E (PCIe) WiFi driver in the Linux kernel contained a use-after-free vulnerability when querying the firmware features of the device. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-3317) It was discovered that the video4linux driver for Philips based TV cards in the Linux kernel contained a race condition during device removal, leading to a use-after-free vulnerability. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-35823) It was discovered that the SDMC DM1105 PCI device driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-35824) It was discovered that the Allwinner Cedar video engine driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-35826) It was discovered that the Renesas USB controller driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-35828) It was discovered that the Rockchip Video Decoder IP driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-35829)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-6.2.0-1007-ibm | <6.2.0-1007.7 | 6.2.0-1007.7 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-1009-aws | <6.2.0-1009.9 | 6.2.0-1009.9 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-1009-azure | <6.2.0-1009.9 | 6.2.0-1009.9 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-1009-oracle | <6.2.0-1009.9 | 6.2.0-1009.9 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-1010-kvm | <6.2.0-1010.10 | 6.2.0-1010.10 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-1010-lowlatency | <6.2.0-1010.10 | 6.2.0-1010.10 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-1010-lowlatency-64k | <6.2.0-1010.10 | 6.2.0-1010.10 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-1010-raspi | <6.2.0-1010.12 | 6.2.0-1010.12 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-1011-gcp | <6.2.0-1011.11 | 6.2.0-1011.11 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-27-generic | <6.2.0-27.28 | 6.2.0-27.28 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-27-generic-64k | <6.2.0-27.28 | 6.2.0-27.28 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-6.2.0-27-generic-lpae | <6.2.0-27.28 | 6.2.0-27.28 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-aws | <6.2.0.1009.10 | 6.2.0.1009.10 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-azure | <6.2.0.1009.9 | 6.2.0.1009.9 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-gcp | <6.2.0.1011.11 | 6.2.0.1011.11 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-generic | <6.2.0.27.27 | 6.2.0.27.27 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-generic-64k | <6.2.0.27.27 | 6.2.0.27.27 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-generic-lpae | <6.2.0.27.27 | 6.2.0.27.27 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-ibm | <6.2.0.1007.7 | 6.2.0.1007.7 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-kvm | <6.2.0.1010.10 | 6.2.0.1010.10 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-lowlatency | <6.2.0.1010.10 | 6.2.0.1010.10 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-lowlatency-64k | <6.2.0.1010.10 | 6.2.0.1010.10 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-oracle | <6.2.0.1009.9 | 6.2.0.1009.9 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-raspi | <6.2.0.1010.13 | 6.2.0.1010.13 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-raspi-nolpae | <6.2.0.1010.13 | 6.2.0.1010.13 |
| =23.04 | ||
| All of | ||
| ubuntu/linux-image-virtual | <6.2.0.27.27 | 6.2.0.27.27 |
| =23.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2023-35823
- https://ubuntu.com/security/CVE-2023-2002
- https://ubuntu.com/security/CVE-2023-35826
- https://ubuntu.com/security/CVE-2023-35829
- https://ubuntu.com/security/CVE-2023-35828
- https://ubuntu.com/security/CVE-2023-3141
- https://ubuntu.com/security/CVE-2023-32254
- https://ubuntu.com/security/CVE-2023-3312
- https://ubuntu.com/security/CVE-2023-3268
- https://ubuntu.com/security/CVE-2023-35824
- https://ubuntu.com/security/CVE-2023-2269
- https://ubuntu.com/security/CVE-2023-32248
- https://ubuntu.com/security/CVE-2023-3317
- https://ubuntu.com/security/notices/USN-6300-1
- https://ubuntu.com/security/notices/USN-6311-1
- https://ubuntu.com/security/notices/USN-6332-1
- https://ubuntu.com/security/notices/USN-6340-1
- https://ubuntu.com/security/notices/USN-6347-1
- https://ubuntu.com/security/notices/USN-6349-1
- https://ubuntu.com/security/notices/USN-6340-2
- https://ubuntu.com/security/notices/USN-6357-1
- https://ubuntu.com/security/notices/USN-6397-1
- https://ubuntu.com/security/notices/USN-6173-1
- https://ubuntu.com/security/notices/USN-6385-1
- https://ubuntu.com/security/notices/USN-6701-1
- https://ubuntu.com/security/notices/USN-6701-2
- https://ubuntu.com/security/notices/USN-6701-3
- https://ubuntu.com/security/notices/USN-6701-4
- https://ubuntu.com/security/notices/USN-6231-1
- https://ubuntu.com/security/notices/USN-6252-1
- https://ubuntu.com/security/notices/USN-6254-1
- https://ubuntu.com/security/notices/USN-6260-1
- https://ubuntu.com/security/notices/USN-6284-1
- https://ubuntu.com/security/notices/USN-6301-1
- https://ubuntu.com/security/notices/USN-6312-1
- https://ubuntu.com/security/notices/USN-6314-1
- https://ubuntu.com/security/notices/USN-6331-1
- https://ubuntu.com/security/notices/USN-6337-1
- https://ubuntu.com/security/notices/USN-6725-1
- https://ubuntu.com/security/notices/USN-6309-1
- https://ubuntu.com/security/notices/USN-6327-1
- https://ubuntu.com/security/notices/USN-6342-1
- https://ubuntu.com/security/notices/USN-6342-2
- https://launchpad.net/ubuntu/+source/linux-signed-ibm/6.2.0-1007.7
- https://launchpad.net/ubuntu/+source/linux-signed-aws/6.2.0-1009.9
- https://launchpad.net/ubuntu/+source/linux-signed-azure/6.2.0-1009.9
- https://launchpad.net/ubuntu/+source/linux-signed-oracle/6.2.0-1009.9
- https://launchpad.net/ubuntu/+source/linux-signed-kvm/6.2.0-1010.10
- https://launchpad.net/ubuntu/+source/linux-signed-lowlatency/6.2.0-1010.10
- https://launchpad.net/ubuntu/+source/linux-raspi/6.2.0-1010.12
- https://launchpad.net/ubuntu/+source/linux-signed-gcp/6.2.0-1011.11
- https://launchpad.net/ubuntu/+source/linux-signed/6.2.0-27.28
- https://launchpad.net/ubuntu/+source/linux/6.2.0-27.28
- https://launchpad.net/ubuntu/+source/linux-meta-aws/6.2.0.1009.10
- https://launchpad.net/ubuntu/+source/linux-meta-azure/6.2.0.1009.9
- https://launchpad.net/ubuntu/+source/linux-meta-gcp/6.2.0.1011.11
- https://launchpad.net/ubuntu/+source/linux-meta/6.2.0.27.27
- https://launchpad.net/ubuntu/+source/linux-meta-ibm/6.2.0.1007.7
- https://launchpad.net/ubuntu/+source/linux-meta-kvm/6.2.0.1010.10
- https://launchpad.net/ubuntu/+source/linux-meta-lowlatency/6.2.0.1010.10
- https://launchpad.net/ubuntu/+source/linux-meta-oracle/6.2.0.1009.9
- https://launchpad.net/ubuntu/+source/linux-meta-raspi/6.2.0.1010.13
- https://ubuntu.com/security/notices/USN-6283-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID for this advisory?
The vulnerability ID for this advisory is USN-6283-1.
What is the severity of USN-6283-1?
The severity of USN-6283-1 is not specified in the information provided.
Which subsystem in the Linux kernel is affected by this vulnerability?
The bluetooth subsystem in the Linux kernel is affected by this vulnerability.
What is the impact of this vulnerability?
This vulnerability could allow a physically proximate attacker to cause a denial of service in bluetooth communication.
How can I fix USN-6283-1?
To fix USN-6283-1, update the affected Linux kernel packages to the specified versions.
- agent/severity
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/title
- agent/event
- agent/description
- agent/weakness
- agent/references
- agent/tags
- collector/usn
- source/Ubuntu
- anchor-related/USN-6300-1
- anchor-related/USN-6311-1
- anchor-related/USN-6332-1
- anchor-related/USN-6340-1
- anchor-related/USN-6347-1
- anchor-related/USN-6349-1
- anchor-related/USN-6340-2
- anchor-related/USN-6357-1
- anchor-related/USN-6397-1
- anchor-related/USN-6173-1
- anchor-related/USN-6385-1
- anchor-related/USN-6701-1
- anchor-related/USN-6701-2
- anchor-related/USN-6701-3
- anchor-related/USN-6701-4
- anchor-related/USN-6231-1
- anchor-related/USN-6252-1
- anchor-related/USN-6254-1
- anchor-related/USN-6260-1
- anchor-related/USN-6284-1
- anchor-related/USN-6301-1
- anchor-related/USN-6312-1
- anchor-related/USN-6314-1
- anchor-related/USN-6331-1
- anchor-related/USN-6337-1
- anchor-related/USN-6725-1
- anchor-related/USN-6309-1
- anchor-related/USN-6327-1
- anchor-related/USN-6342-1
- anchor-related/USN-6342-2
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/23.04