LSN-0095-1

Advisory lineage Upstream: 12 Downstream: 0
Published: 21 Jun 2023, 07:25
Last modified:23 May 2026, 01:48

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

21 Jun 2023, 07:25
Published
Vulnerability first disclosed
23 May 2026, 01:48
Last Modified
Vulnerability information updated

Description

Kernel Live Patch Security Notice It was discovered that the OverlayFS implementation in the Linux kernel did not properly handle copy up operation in some conditions. A local attacker could possibly use this to gain elevated privileges.(CVE-2023-0386) It was discovered that the Broadcom FullMAC USB WiFi driver in the Linux kernel did not properly perform data buffer size validation in some situations. A physically proximate attacker could use this to craft a malicious USB device that when inserted, could cause a denial of service (system crash) or possibly expose sensitive information.(CVE-2023-1380) It was discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-1872) Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock).(CVE-2023-2612) Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-31436) Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-32233)

Affected Systems

  • ubuntulinux

    < 5.4.0-150.167 | < 5.15.0-73.80 | all | < 5.15.0-71.78

  • ubuntulinux-aws

    < 5.4.0-1103.111 | < 5.15.0-1037.41 | all | < 5.15.0-1035.39

  • ubuntulinux-aws-5.15

    < 5.15.0-1037.41~20.04.1 | < 5.15.0-1035.39~20.04.1

  • ubuntulinux-aws-5.4

    < 5.4.0-1103.111~18.04.1 | all

  • ubuntulinux-azure

    < 5.4.0-1109.115 | < 5.15.0-1039.46 | all | < 5.15.0-1037.44

  • ubuntulinux-azure-5.4

    < 5.4.0-1109.115~18.04.1 | all

  • ubuntulinux-gcp

    < 5.4.0-1106.115 | < 5.15.0-1035.43 | all | < 5.15.0-1034.42

  • ubuntulinux-gcp-5.15

    < 5.15.0-1035.43~20.04.1 | < 5.15.0-1033.41~20.04.1

  • ubuntulinux-gcp-5.4

    < 5.4.0-1106.115~18.04.1 | all

  • ubuntulinux-gke

    < 5.4.0-1100.107 | < 5.15.0-1034.39 | all | < 5.15.0-1032.37

  • ubuntulinux-gke-5.15

    < 5.15.0-1034.39~20.04.1 | < 5.15.0-1032.37~20.04.1

  • ubuntulinux-gke-5.4

    all

  • ubuntulinux-gkeop

    < 5.4.0-1070.74 | all

  • ubuntulinux-gkeop-5.4

    all

  • ubuntulinux-hwe-5.4

    < 5.4.0-150.167~18.04.1 | all

  • ubuntulinux-ibm

    < 5.4.0-1050.55 | < 5.15.0-1031.34 | all | < 5.15.0-1029.32

  • ubuntulinux-ibm-5.4

    < 5.4.0-1050.55~18.04.1 | all

  • ubuntulinux-lowlatency

    < 5.15.0-73.80 | < 5.15.0-71.78

References (7)