UBUNTU-CVE-2022-30594

Description

The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag.

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• ubuntu•linux

  < 4.4.0-227.261 | < 4.15.0-180.189 | < 5.4.0-113.127 | < 5.15.0-33.34

• ubuntu•linux-aws

  < 4.4.0-1107.113 | < 4.4.0-1143.158 | < 4.15.0-1130.139 | < 5.4.0-1075.80 | < 5.15.0-1008.10

• ubuntu•linux-aws-5.0

  all

• ubuntu•linux-aws-5.11

  all

• ubuntu•linux-aws-5.13

  < 5.13.0-1025.27~20.04.1

• ubuntu•linux-aws-5.3

  all

• ubuntu•linux-aws-5.4

  < 5.4.0-1075.80~18.04.1

• ubuntu•linux-aws-5.8

  all

• ubuntu•linux-aws-fips

  < 4.15.0-2069.72 | all | < 5.4.0-1078.84+fips1

• ubuntu•linux-aws-hwe

  < 4.15.0-1130.139~16.04.1

• ubuntu•linux-azure

  < 4.15.0-1139.152~14.04.1 | < 4.15.0-1139.152~16.04.1 | all | < 5.4.0-1080.83 | < 5.15.0-1007.8

• ubuntu•linux-azure-4.15

  < 4.15.0-1139.152

• ubuntu•linux-azure-5.11

  all

• ubuntu•linux-azure-5.13

  < 5.13.0-1025.29~20.04.1

• ubuntu•linux-azure-5.3

  all

• ubuntu•linux-azure-5.4

  < 5.4.0-1080.83~18.04.2

• ubuntu•linux-azure-5.8

  all

• ubuntu•linux-azure-edge

  all

• ubuntu•linux-azure-fips

  < 4.15.0-2050.54 | all | < 5.4.0-1080.83+fips1

• ubuntu•linux-bluefield

  < 5.4.0-1036.39 | all

• ubuntu•linux-dell300x

  < 4.15.0-1047.52

• ubuntu•linux-fips

  < 4.4.0-1077.84 | all | < 4.15.0-1087.96 | < 5.4.0-1051.57

• ubuntu•linux-gcp

  < 4.15.0-1124.138~16.04.1 | all | < 5.4.0-1075.80 | < 5.15.0-1005.8

• ubuntu•linux-gcp-4.15

  < 4.15.0-1124.138

• ubuntu•linux-gcp-5.11

  all

• ubuntu•linux-gcp-5.13

  < 5.13.0-1027.32~20.04.1

• ubuntu•linux-gcp-5.3

  all

• ubuntu•linux-gcp-5.4

  < 5.4.0-1075.80~18.04.1

• ubuntu•linux-gcp-5.8

  all

• ubuntu•linux-gcp-fips

  < 4.15.0-2034.37 | all | < 5.4.0-1075.80+fips1

• ubuntu•linux-gke

  < 5.4.0-1072.77 | < 5.15.0-1005.6

• ubuntu•linux-gke-4.15

  all

• ubuntu•linux-gke-5.4

  < 5.4.0-1072.77~18.04.1

• ubuntu•linux-gkeop

  < 5.4.0-1043.44

• ubuntu•linux-gkeop-5.4

  < 5.4.0-1043.44~18.04.1

• ubuntu•linux-hwe

  < 4.15.0-180.189~16.04.1 | all

• ubuntu•linux-hwe-5.11

  all

• ubuntu•linux-hwe-5.13

  < 5.13.0-44.49~20.04.1

• ubuntu•linux-hwe-5.4

  < 5.4.0-113.127~18.04.1

• ubuntu•linux-hwe-5.8

  all

• ubuntu•linux-hwe-edge

  all | all

• ubuntu•linux-ibm

  < 5.4.0-1023.25 | < 5.15.0-1004.4

• ubuntu•linux-ibm-5.4

  < 5.4.0-1023.25~18.04.1

• ubuntu•linux-intel-5.13

  all

• ubuntu•linux-intel-iot-realtime

  all

• ubuntu•linux-intel-iotg

  < 5.15.0-1008.11

• ubuntu•linux-intel-iotg-5.15

  < 5.15.0-1008.11~20.04.1

• ubuntu•linux-iot

  < 5.4.0-1004.6

• ubuntu•linux-kvm

  < 4.4.0-1108.118 | < 4.15.0-1116.119 | < 5.4.0-1065.68 | < 5.15.0-1007.7

• ubuntu•linux-lowlatency

  < 5.15.0-33.34

Showing first 50 affected entries in server-rendered view.

References (12)

• https://ubuntu.com/security/CVE-2022-30594
• https://bugs.chromium.org/p/project-zero/issues/detail?id=2276
• https://git.kernel.org/linus/ee1fee900537b5d9560e9f937402de5ddc8412f3
• https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.17.2
• https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ee1fee900537b5d9560e9f937402de5ddc8412f3
• https://github.com/torvalds/linux/commit/ee1fee900537b5d9560e9f937402de5ddc8412f3
• https://ubuntu.com/security/notices/USN-5442-1
• https://ubuntu.com/security/notices/USN-5443-1
• https://ubuntu.com/security/notices/USN-5442-2
• https://ubuntu.com/security/notices/USN-5443-2
• https://ubuntu.com/security/notices/USN-5465-1
• https://www.cve.org/CVERecord?id=CVE-2022-30594