USN-5443-1
Vulnerability Summary
Timeline
Description
linux, linux-aws, linux-aws-hwe, linux-aws-5.13, linux-azure, linux-azure-5.13, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-gke, linux-hwe, linux-hwe-5.13, linux-ibm, linux-kvm, linux-lowlatency, linux-oracle, linux-raspi, linux-raspi2, linux-snapdragon vulnerabilities Kyle Zeng discovered that the Network Queuing and Scheduling subsystem of the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-29581) Jann Horn discovered that the Linux kernel did not properly enforce seccomp restrictions in some situations. A local attacker could use this to bypass intended seccomp sandbox restrictions. (CVE-2022-30594)
Affected Systems
- ubuntu•linux
< 4.15.0-180.189 | < 5.15.0-33.34
- ubuntu•linux-aws
< 4.15.0-1130.139 | < 5.15.0-1008.10
- ubuntu•linux-aws-5.13
< 5.13.0-1025.27~20.04.1
- ubuntu•linux-aws-hwe
< 4.15.0-1130.139~16.04.1
- ubuntu•linux-azure
< 4.15.0-1139.152~14.04.1 | < 4.15.0-1139.152~16.04.1 | < 5.15.0-1007.8
- ubuntu•linux-azure-4.15
< 4.15.0-1139.152
- ubuntu•linux-azure-5.13
< 5.13.0-1025.29~20.04.1
- ubuntu•linux-gcp
< 4.15.0-1124.138~16.04.1 | < 5.15.0-1005.8
- ubuntu•linux-gcp-4.15
< 4.15.0-1124.138
- ubuntu•linux-gke
< 5.15.0-1005.6
- ubuntu•linux-hwe
< 4.15.0-180.189~16.04.1
- ubuntu•linux-hwe-5.13
< 5.13.0-44.49~20.04.1
- ubuntu•linux-ibm
< 5.15.0-1004.4
- ubuntu•linux-kvm
< 4.15.0-1116.119 | < 5.15.0-1007.7
- ubuntu•linux-lowlatency
< 5.15.0-33.34
- ubuntu•linux-oracle
< 4.15.0-1095.104~16.04.1 | < 4.15.0-1095.104 | < 5.15.0-1006.8
- ubuntu•linux-raspi
< 5.15.0-1008.8
- ubuntu•linux-raspi2
< 4.15.0-1111.118
- ubuntu•linux-snapdragon
< 4.15.0-1129.138