LSN-0084-1

Advisory lineage Upstream: 2 Downstream: 0
Published: 20 Jan 2022, 07:11
Last modified:23 May 2026, 01:30

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

20 Jan 2022, 07:11
Published
Vulnerability first disclosed
23 May 2026, 01:30
Last Modified
Vulnerability information updated

Description

Kernel Live Patch Security Notice William Liu and Jamie Hill-Daniel discovered that the file system context functionality in the Linux kernel contained an integer underflow vulnerability, leading to an out-of-bounds write. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code.(CVE-2022-0185)

Affected Systems

  • ubuntulinux

    < 5.4.0-96.109 | all

  • ubuntulinux-aws

    < 5.4.0-1063.66 | all

  • ubuntulinux-azure

    < 5.4.0-1067.70 | all

  • ubuntulinux-gcp

    < 5.4.0-1062.66 | all

  • ubuntulinux-gke

    < 5.4.0-1059.62 | all

  • ubuntulinux-gke-5.4

    < 5.4.0-1059.62~18.04.1 | all

  • ubuntulinux-gkeop

    < 5.4.0-1031.32 | all

  • ubuntulinux-gkeop-5.4

    < 5.4.0-1031.32~18.04.1 | all

  • ubuntulinux-hwe-5.4

    < 5.4.0-96.109~18.04.1 | all

  • ubuntulinux-ibm

    < 5.4.0-1012.13 | all

  • ubuntulinux-ibm-5.4

    < 5.4.0-1012.13~18.04.1 | all

References (2)