USN-5780-1

Description

linux-oem-6.0 vulnerabilities It was discovered that a memory leak existed in the IPv6 implementation of the Linux kernel. A local attacker could use this to cause a denial of service (memory exhaustion). (CVE-2022-3524) It was discovered that the Bluetooth HCI implementation in the Linux kernel did not properly deallocate memory in some situations. An attacker could possibly use this cause a denial of service (memory exhaustion). (CVE-2022-3619) It was discovered that the Broadcom FullMAC USB WiFi driver in the Linux kernel did not properly perform bounds checking in some situations. A physically proximate attacker could use this to craft a malicious USB device that when inserted, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-3628) Tamás Koczka discovered that the Bluetooth L2CAP implementation in the Linux kernel did not properly initialize memory in some situations. A physically proximate attacker could possibly use this to expose sensitive information (kernel memory). (CVE-2022-42895) Tamás Koczka discovered that the Bluetooth L2CAP handshake implementation in the Linux kernel contained multiple use-after-free vulnerabilities. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-42896)

Affected Systems

• ubuntu•linux-oem-6.0

  < 6.0.0-1008.8

References (6)

• https://ubuntu.com/security/notices/USN-5780-1
• https://ubuntu.com/security/CVE-2022-3524
• https://ubuntu.com/security/CVE-2022-3619
• https://ubuntu.com/security/CVE-2022-3628
• https://ubuntu.com/security/CVE-2022-42895
• https://ubuntu.com/security/CVE-2022-42896