UBUNTU-CVE-2022-1048

Description

A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a local user to crash or potentially escalate their privileges on the system.

CVSS Metrics

• v3.1•HIGH•Score: 7CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• ubuntu•linux

  all | < 4.15.0-191.202 | < 5.4.0-124.140 | < 5.15.0-37.39

• ubuntu•linux-aws

  all | < 4.15.0-1139.150 | < 5.4.0-1083.90 | < 5.15.0-1011.14

• ubuntu•linux-aws-5.0

  all

• ubuntu•linux-aws-5.11

  all

• ubuntu•linux-aws-5.13

  all

• ubuntu•linux-aws-5.3

  all

• ubuntu•linux-aws-5.4

  < 5.4.0-1083.90~18.04.1

• ubuntu•linux-aws-5.8

  all

• ubuntu•linux-aws-fips

  < 4.15.0-2078.83 | all | < 5.4.0-1083.90+fips1

• ubuntu•linux-aws-hwe

  < 4.15.0-1139.150~16.04.1

• ubuntu•linux-azure

  < 4.15.0-1149.164~14.04.1 | < 4.15.0-1149.164~16.04.1 | all | < 5.4.0-1089.94 | < 5.15.0-1010.12

• ubuntu•linux-azure-4.15

  < 4.15.0-1149.164

• ubuntu•linux-azure-5.11

  all

• ubuntu•linux-azure-5.13

  all

• ubuntu•linux-azure-5.15

  < 5.15.0-1008.9~20.04.1

• ubuntu•linux-azure-5.3

  all

• ubuntu•linux-azure-5.4

  < 5.4.0-1089.94~18.04.1

• ubuntu•linux-azure-5.8

  all

• ubuntu•linux-azure-edge

  all

• ubuntu•linux-azure-fde-5.15

  all

• ubuntu•linux-azure-fips

  < 4.15.0-2059.65 | all | < 5.4.0-1089.94+fips1

• ubuntu•linux-bluefield

  < 5.4.0-1044.49 | all

• ubuntu•linux-dell300x

  < 4.15.0-1051.56

• ubuntu•linux-fips

  all | < 4.15.0-1096.107 | < 5.4.0-1059.67

• ubuntu•linux-gcp

  < 4.15.0-1134.150~16.04.2 | all | < 5.4.0-1086.94 | < 5.15.0-1008.12

• ubuntu•linux-gcp-4.15

  < 4.15.0-1134.150

• ubuntu•linux-gcp-5.11

  all

• ubuntu•linux-gcp-5.13

  all

• ubuntu•linux-gcp-5.3

  all

• ubuntu•linux-gcp-5.4

  < 5.4.0-1086.94~18.04.1

• ubuntu•linux-gcp-5.8

  all

• ubuntu•linux-gcp-fips

  < 4.15.0-2043.48 | all | < 5.4.0-1086.94+fips1

• ubuntu•linux-gke

  < 5.4.0-1080.86 | < 5.15.0-1008.10

• ubuntu•linux-gke-4.15

  all

• ubuntu•linux-gke-5.4

  < 5.4.0-1080.86~18.04.1

• ubuntu•linux-gkeop

  < 5.4.0-1051.54

• ubuntu•linux-gkeop-5.4

  < 5.4.0-1051.54~18.04.1

• ubuntu•linux-hwe

  < 4.15.0-191.202~16.04.1 | all

• ubuntu•linux-hwe-5.11

  all

• ubuntu•linux-hwe-5.13

  all

• ubuntu•linux-hwe-5.15

  < 5.15.0-41.44~20.04.1

• ubuntu•linux-hwe-5.4

  < 5.4.0-124.140~18.04.1

• ubuntu•linux-hwe-5.8

  all

• ubuntu•linux-hwe-edge

  all | all

• ubuntu•linux-ibm

  < 5.4.0-1031.35 | < 5.15.0-1007.8

• ubuntu•linux-ibm-5.4

  < 5.4.0-1031.35~18.04.1

• ubuntu•linux-intel-5.13

  all

• ubuntu•linux-intel-iot-realtime

  all

• ubuntu•linux-intel-iotg

  < 5.15.0-1008.11

• ubuntu•linux-intel-iotg-5.15

  < 5.15.0-1008.11~20.04.1

Showing first 50 affected entries in server-rendered view.

References (10)

• https://ubuntu.com/security/CVE-2022-1048
• https://www.openwall.com/lists/oss-security/2022/03/28/4
• https://ubuntu.com/security/notices/USN-5381-1
• https://ubuntu.com/security/notices/USN-5469-1
• https://ubuntu.com/security/notices/USN-5560-1
• https://ubuntu.com/security/notices/USN-5560-2
• https://ubuntu.com/security/notices/USN-5562-1
• https://ubuntu.com/security/notices/USN-5582-1
• https://ubuntu.com/security/notices/USN-5856-1
• https://www.cve.org/CVERecord?id=CVE-2022-1048