UBUNTU-CVE-2022-4378

Description

A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system.

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• ubuntu•linux

  < 5.15.0-58.64

• ubuntu•linux-aws

  < 5.15.0-1028.32

• ubuntu•linux-aws-5.0

  all

• ubuntu•linux-aws-5.11

  all

• ubuntu•linux-aws-5.13

  all

• ubuntu•linux-aws-5.15

  < 5.15.0-1028.32~20.04.1

• ubuntu•linux-aws-5.3

  all

• ubuntu•linux-aws-5.8

  all

• ubuntu•linux-aws-6.2

  all

• ubuntu•linux-azure

  all | < 5.15.0-1031.38

• ubuntu•linux-azure-5.11

  all

• ubuntu•linux-azure-5.13

  all

• ubuntu•linux-azure-5.15

  < 5.15.0-1031.38~20.04.1

• ubuntu•linux-azure-5.3

  all

• ubuntu•linux-azure-5.8

  all

• ubuntu•linux-azure-6.2

  all

• ubuntu•linux-azure-edge

  all

• ubuntu•linux-azure-fde

  < 5.15.0-1031.38.1

• ubuntu•linux-azure-fde-5.15

  < 5.15.0-1031.38~20.04.1.1

• ubuntu•linux-azure-fde-6.2

  all

• ubuntu•linux-bluefield

  < 5.15.0-1014.16 | < 5.15.0-1014.16

• ubuntu•linux-gcp

  all | < 5.15.0-1027.34

• ubuntu•linux-gcp-5.11

  all

• ubuntu•linux-gcp-5.13

  all

• ubuntu•linux-gcp-5.15

  < 5.15.0-1027.34~20.04.1

• ubuntu•linux-gcp-5.3

  all

• ubuntu•linux-gcp-5.8

  all

• ubuntu•linux-gcp-6.2

  all

• ubuntu•linux-gke

  < 5.15.0-1027.32

• ubuntu•linux-gke-4.15

  all

• ubuntu•linux-gke-5.15

  < 5.15.0-1027.32~20.04.1

• ubuntu•linux-gke-5.4

  all

• ubuntu•linux-gkeop

  < 5.15.0-1013.17

• ubuntu•linux-gkeop-5.15

  < 5.15.0-1013.17~20.04.1

• ubuntu•linux-gkeop-5.4

  all

• ubuntu•linux-hwe

  all

• ubuntu•linux-hwe-5.11

  all

• ubuntu•linux-hwe-5.13

  all

• ubuntu•linux-hwe-5.15

  < 5.15.0-58.64~20.04.1

• ubuntu•linux-hwe-5.19

  < 5.19.0-32.33~22.04.1

• ubuntu•linux-hwe-5.8

  all

• ubuntu•linux-hwe-edge

  all

• ubuntu•linux-ibm

  < 5.15.0-1023.26

• ubuntu•linux-intel-5.13

  all

• ubuntu•linux-intel-iot-realtime

  all

• ubuntu•linux-intel-iotg

  < 5.15.0-1023.28

• ubuntu•linux-intel-iotg-5.15

  < 5.15.0-1023.28~20.04.1

• ubuntu•linux-kvm

  < 5.15.0-1026.31

• ubuntu•linux-lowlatency

  < 5.15.0-58.64

• ubuntu•linux-lowlatency-hwe-5.15

  < 5.15.0-58.64~20.04.1

Showing first 50 affected entries in server-rendered view.

References (17)

• https://ubuntu.com/security/CVE-2022-4378
• https://marc.info/?l=oss-security&m=167060228526317
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=bce9332220bd677d83b19d21502776ad555a0e73
• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=e6cfaf34be9fcd1a8285a294e18986bfc41a409c
• https://ubuntu.com/security/notices/USN-5799-1
• https://ubuntu.com/security/notices/USN-5803-1
• https://ubuntu.com/security/notices/USN-5809-1
• https://ubuntu.com/security/notices/USN-5814-1
• https://ubuntu.com/security/notices/USN-5831-1
• https://ubuntu.com/security/notices/USN-5832-1
• https://ubuntu.com/security/notices/USN-5860-1
• https://ubuntu.com/security/notices/USN-5877-1
• https://ubuntu.com/security/notices/USN-5879-1
• https://ubuntu.com/security/notices/USN-5883-1
• https://ubuntu.com/security/notices/USN-5919-1
• https://ubuntu.com/security/notices/USN-5920-1
• https://www.cve.org/CVERecord?id=CVE-2022-4378