USN-6639-1: Linux kernel (OEM) vulnerabilities
First published: Thu Feb 15 2024(Updated: )
It was discovered that a race condition existed in the ATM (Asynchronous Transfer Mode) subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-51780) It was discovered that a race condition existed in the AppleTalk networking subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-51781) It was discovered that a race condition existed in the Rose X.25 protocol implementation in the Linux kernel, leading to a use-after- free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-51782) Alon Zahavi discovered that the NVMe-oF/TCP subsystem of the Linux kernel did not properly handle connect command payloads in certain situations, leading to an out-of-bounds read vulnerability. A remote attacker could use this to expose sensitive information (kernel memory). (CVE-2023-6121) Jann Horn discovered that a race condition existed in the Linux kernel when handling io_uring over sockets, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-6531) Xingyuan Mo discovered that the netfilter subsystem in the Linux kernel did not properly handle dynset expressions passed from userspace, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-6622) It was discovered that the IGMP protocol implementation in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-6932) Robert Morris discovered that the CIFS network file system implementation in the Linux kernel did not properly validate certain server commands fields, leading to an out-of-bounds read vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2024-0565) Dan Carpenter discovered that the netfilter subsystem in the Linux kernel did not store data in properly sized memory locations. A local user could use this to cause a denial of service (system crash). (CVE-2024-0607) Jann Horn discovered that the TLS subsystem in the Linux kernel did not properly handle spliced messages, leading to an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2024-0646) Yang Chaoming discovered that the KSMBD implementation in the Linux kernel did not properly validate request buffer sizes, leading to an out-of-bounds read vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2024-22705)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-6.1.0-1033-oem | <6.1.0-1033.33 | 6.1.0-1033.33 |
| Ubuntu Ubuntu | =22.04 | |
| All of | ||
| ubuntu/linux-image-oem-22.04 | <6.1.0.1033.34 | 6.1.0.1033.34 |
| Ubuntu Ubuntu | =22.04 | |
| All of | ||
| ubuntu/linux-image-oem-22.04a | <6.1.0.1033.34 | 6.1.0.1033.34 |
| Ubuntu Ubuntu | =22.04 | |
| All of | ||
| ubuntu/linux-image-oem-22.04c | <6.1.0.1033.34 | 6.1.0.1033.34 |
| Ubuntu Ubuntu | =22.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2023-6531
- https://ubuntu.com/security/CVE-2023-51780
- https://ubuntu.com/security/CVE-2023-6932
- https://ubuntu.com/security/CVE-2024-22705
- https://ubuntu.com/security/CVE-2023-51781
- https://ubuntu.com/security/CVE-2024-0646
- https://ubuntu.com/security/CVE-2023-51782
- https://ubuntu.com/security/CVE-2024-0565
- https://ubuntu.com/security/CVE-2023-6121
- https://ubuntu.com/security/CVE-2024-0607
- https://ubuntu.com/security/CVE-2023-6622
- https://ubuntu.com/security/notices/USN-6624-1
- https://ubuntu.com/security/notices/USN-6652-1
- https://ubuntu.com/security/notices/USN-6646-1
- https://ubuntu.com/security/notices/USN-6647-1
- https://ubuntu.com/security/notices/USN-6651-1
- https://ubuntu.com/security/notices/USN-6653-1
- https://ubuntu.com/security/notices/USN-6651-2
- https://ubuntu.com/security/notices/USN-6653-2
- https://ubuntu.com/security/notices/USN-6653-3
- https://ubuntu.com/security/notices/USN-6651-3
- https://ubuntu.com/security/notices/USN-6647-2
- https://ubuntu.com/security/notices/USN-6653-4
- https://ubuntu.com/security/notices/USN-6681-1
- https://ubuntu.com/security/notices/USN-6681-2
- https://ubuntu.com/security/notices/USN-6681-3
- https://ubuntu.com/security/notices/USN-6681-4
- https://ubuntu.com/security/notices/USN-6716-1
- https://ubuntu.com/security/notices/USN-6601-1
- https://ubuntu.com/security/notices/USN-6602-1
- https://ubuntu.com/security/notices/USN-6603-1
- https://ubuntu.com/security/notices/USN-6604-1
- https://ubuntu.com/security/notices/USN-6605-1
- https://ubuntu.com/security/notices/USN-6607-1
- https://ubuntu.com/security/notices/USN-6608-1
- https://ubuntu.com/security/notices/USN-6609-1
- https://ubuntu.com/security/notices/USN-6604-2
- https://ubuntu.com/security/notices/USN-6605-2
- https://ubuntu.com/security/notices/USN-6609-2
- https://ubuntu.com/security/notices/USN-6609-3
- https://ubuntu.com/security/notices/LSN-0100-1
- https://ubuntu.com/security/notices/USN-6628-1
- https://ubuntu.com/security/notices/USN-6608-2
- https://ubuntu.com/security/notices/USN-6635-1
- https://ubuntu.com/security/notices/USN-6628-2
- https://ubuntu.com/security/notices/LSN-0101-1
- https://ubuntu.com/security/notices/USN-6724-1
- https://ubuntu.com/security/notices/USN-6725-1
- https://ubuntu.com/security/notices/USN-6724-2
- https://ubuntu.com/security/notices/USN-6725-2
- https://ubuntu.com/security/notices/USN-6648-1
- https://ubuntu.com/security/notices/USN-6648-2
- https://ubuntu.com/security/notices/USN-6701-1
- https://ubuntu.com/security/notices/USN-6700-1
- https://ubuntu.com/security/notices/USN-6701-2
- https://ubuntu.com/security/notices/USN-6700-2
- https://ubuntu.com/security/notices/USN-6701-3
- https://ubuntu.com/security/notices/LSN-0102-1
- https://ubuntu.com/security/notices/USN-6701-4
- https://ubuntu.com/security/notices/LSN-0103-1
- https://ubuntu.com/security/notices/USN-6680-1
- https://ubuntu.com/security/notices/USN-6686-1
- https://ubuntu.com/security/notices/USN-6680-2
- https://ubuntu.com/security/notices/USN-6686-2
- https://ubuntu.com/security/notices/USN-6680-3
- https://ubuntu.com/security/notices/USN-6686-3
- https://ubuntu.com/security/notices/USN-6686-4
- https://ubuntu.com/security/notices/USN-6705-1
- https://ubuntu.com/security/notices/USN-6686-5
- https://ubuntu.com/security/notices/USN-6726-1
- https://ubuntu.com/security/notices/USN-6726-2
- https://ubuntu.com/security/notices/USN-6726-3
- https://ubuntu.com/security/notices/USN-6626-1
- https://ubuntu.com/security/notices/USN-6626-2
- https://ubuntu.com/security/notices/USN-6626-3
- https://launchpad.net/ubuntu/+source/linux-signed-oem-6.1/6.1.0-1033.33
- https://launchpad.net/ubuntu/+source/linux-meta-oem-6.1/6.1.0.1033.34
- https://ubuntu.com/security/notices/USN-6639-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
- agent/severity
- agent/title
- agent/weakness
- agent/last-modified-date
- agent/softwarecombine
- agent/type
- agent/event
- agent/description
- agent/first-publish-date
- agent/references
- agent/tags
- collector/usn
- source/Ubuntu
- anchor-related/USN-6624-1
- anchor-related/USN-6652-1
- anchor-related/USN-6646-1
- anchor-related/USN-6647-1
- anchor-related/USN-6651-1
- anchor-related/USN-6653-1
- anchor-related/USN-6651-2
- anchor-related/USN-6653-2
- anchor-related/USN-6653-3
- anchor-related/USN-6651-3
- anchor-related/USN-6647-2
- anchor-related/USN-6653-4
- anchor-related/USN-6681-1
- anchor-related/USN-6681-2
- anchor-related/USN-6681-3
- anchor-related/USN-6681-4
- anchor-related/USN-6716-1
- anchor-related/USN-6601-1
- anchor-related/USN-6602-1
- anchor-related/USN-6603-1
- anchor-related/USN-6604-1
- anchor-related/USN-6605-1
- anchor-related/USN-6607-1
- anchor-related/USN-6608-1
- anchor-related/USN-6609-1
- anchor-related/USN-6604-2
- anchor-related/USN-6605-2
- anchor-related/USN-6609-2
- anchor-related/USN-6609-3
- anchor-related/USN-6628-1
- anchor-related/USN-6608-2
- anchor-related/USN-6635-1
- anchor-related/USN-6628-2
- anchor-related/USN-6724-1
- anchor-related/USN-6725-1
- anchor-related/USN-6724-2
- anchor-related/USN-6725-2
- anchor-related/USN-6648-1
- anchor-related/USN-6648-2
- anchor-related/USN-6701-1
- anchor-related/USN-6700-1
- anchor-related/USN-6701-2
- anchor-related/USN-6700-2
- anchor-related/USN-6701-3
- anchor-related/USN-6701-4
- anchor-related/USN-6680-1
- anchor-related/USN-6686-1
- anchor-related/USN-6680-2
- anchor-related/USN-6686-2
- anchor-related/USN-6680-3
- anchor-related/USN-6686-3
- anchor-related/USN-6686-4
- anchor-related/USN-6705-1
- anchor-related/USN-6686-5
- anchor-related/USN-6726-1
- anchor-related/USN-6726-2
- anchor-related/USN-6726-3
- anchor-related/USN-6626-1
- anchor-related/USN-6626-2
- anchor-related/USN-6626-3
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/22.04