USN-5390-2

Advisory lineage Upstream: 6 Downstream: 0

Upstream

CVE-2022-1015 CVE-2022-1016 CVE-2022-26490 UBUNTU-CVE-2022-1015 UBUNTU-CVE-2022-1016 UBUNTU-CVE-2022-26490

Published: 03 May 2022, 21:04

Last modified:23 May 2026, 01:47

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

03 May 2022, 21:04

Published

Vulnerability first disclosed

23 May 2026, 01:47

Last Modified

Vulnerability information updated

Description

linux-raspi vulnerabilities David Bouman discovered that the netfilter subsystem in the Linux kernel did not properly validate passed user register indices. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2022-1015) David Bouman discovered that the netfilter subsystem in the Linux kernel did not initialize memory in some situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2022-1016) It was discovered that the ST21NFCA NFC driver in the Linux kernel did not properly validate the size of certain data in EVT_TRANSACTION events. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-26490)

Affected Systems

ubuntu•linux-raspi
< 5.15.0-1006.6

USN-5390-2

Vulnerability Summary

Timeline

Description

Affected Systems

References (4)