USN-5339-1

Advisory lineage Upstream: 12 Downstream: 0
Published: 22 Mar 2022, 07:46
Last modified:03 Jun 2026, 13:34

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

22 Mar 2022, 07:46
Published
Vulnerability first disclosed
03 Jun 2026, 13:34
Last Modified
Vulnerability information updated

Description

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-hwe, linux-gcp, linux-gcp-4.15, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities Yiqi Sun and Kevin Wang discovered that the cgroups implementation in the Linux kernel did not properly restrict access to the cgroups v1 release_agent feature. A local attacker could use this to gain administrative privileges. (CVE-2022-0492) It was discovered that an out-of-bounds (OOB) memory access flaw existed in the f2fs module of the Linux kernel. A local attacker could use this issue to cause a denial of service (system crash). (CVE-2021-3506) Brendan Dolan-Gavitt discovered that the Marvell WiFi-Ex USB device driver in the Linux kernel did not properly handle some error conditions. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2021-43976) It was discovered that the ARM Trusted Execution Environment (TEE) subsystem in the Linux kernel contained a race condition leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2021-44733) It was discovered that the Phone Network protocol (PhoNet) implementation in the Linux kernel did not properly perform reference counting in some error conditions. A local attacker could possibly use this to cause a denial of service (memory exhaustion). (CVE-2021-45095) Samuel Page discovered that the Transparent Inter-Process Communication (TIPC) protocol implementation in the Linux kernel contained a stack-based buffer overflow. A remote attacker could use this to cause a denial of service (system crash) for systems that have a TIPC bearer configured. (CVE-2022-0435)

Affected Systems

  • ubuntulinux

    < 4.15.0-173.182

  • ubuntulinux-aws

    < 4.15.0-1124.133

  • ubuntulinux-aws-hwe

    < 4.15.0-1124.133~16.04.1

  • ubuntulinux-azure

    < 4.15.0-1134.147~14.04.1 | < 4.15.0-1134.147~16.04.1

  • ubuntulinux-azure-4.15

    < 4.15.0-1134.147

  • ubuntulinux-dell300x

    < 4.15.0-1038.43

  • ubuntulinux-gcp

    < 4.15.0-1119.133~16.04.1

  • ubuntulinux-gcp-4.15

    < 4.15.0-1119.133

  • ubuntulinux-hwe

    < 4.15.0-173.182~16.04.1

  • ubuntulinux-kvm

    < 4.15.0-1110.113

  • ubuntulinux-oracle

    < 4.15.0-1090.99~16.04.1 | < 4.15.0-1090.99

  • ubuntulinux-raspi2

    < 4.15.0-1106.113

  • ubuntulinux-snapdragon

    < 4.15.0-1123.132

References (7)