USN-5803-1

Description

linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-gcp, linux-gcp-5.15, linux-hwe-5.15, linux-ibm, linux-kvm, linux-oracle, linux-raspi, vulnerabilities Kyle Zeng discovered that the sysctl implementation in the Linux kernel contained a stack-based buffer overflow. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-4378) Tamás Koczka discovered that the Bluetooth L2CAP handshake implementation in the Linux kernel contained multiple use-after-free vulnerabilities. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-42896) It was discovered that the Xen netback driver in the Linux kernel did not properly handle packets structured in certain ways. An attacker in a guest VM could possibly use this to cause a denial of service (host NIC availability). (CVE-2022-3643) It was discovered that an integer overflow vulnerability existed in the Bluetooth subsystem in the Linux kernel. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2022-45934)

Affected Systems

• ubuntu•linux

  < 5.15.0-58.64

• ubuntu•linux-aws

  < 5.15.0-1028.32

• ubuntu•linux-aws-5.15

  < 5.15.0-1028.32~20.04.1

• ubuntu•linux-azure

  < 5.15.0-1031.38

• ubuntu•linux-azure-5.15

  < 5.15.0-1031.38~20.04.1

• ubuntu•linux-gcp

  < 5.15.0-1027.34

• ubuntu•linux-gcp-5.15

  < 5.15.0-1027.34~20.04.1

• ubuntu•linux-hwe-5.15

  < 5.15.0-58.64~20.04.1

• ubuntu•linux-ibm

  < 5.15.0-1023.26

• ubuntu•linux-kvm

  < 5.15.0-1026.31

• ubuntu•linux-oracle

  < 5.15.0-1027.33

• ubuntu•linux-raspi

  < 5.15.0-1023.25

References (5)

• https://ubuntu.com/security/notices/USN-5803-1
• https://ubuntu.com/security/CVE-2022-3643
• https://ubuntu.com/security/CVE-2022-4378
• https://ubuntu.com/security/CVE-2022-42896
• https://ubuntu.com/security/CVE-2022-45934