USN-6127-1

Advisory lineage Upstream: 10 Downstream: 0
Published: 31 May 2023, 22:15
Last modified:03 Jun 2026, 13:34

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

31 May 2023, 22:15
Published
Vulnerability first disclosed
03 Jun 2026, 13:34
Last Modified
Vulnerability information updated

Description

linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gke-5.15, linux-gkeop, linux-hwe-5.15, linux-hwe-5.19, linux-ibm, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-oracle, linux-oracle-5.15, linux-raspi vulnerabilities Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-32233) Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-31436) Reima Ishii discovered that the nested KVM implementation for Intel x86 processors in the Linux kernel did not properly validate control registers in certain situations. An attacker in a guest VM could use this to cause a denial of service (guest crash). (CVE-2023-30456) It was discovered that the Broadcom FullMAC USB WiFi driver in the Linux kernel did not properly perform data buffer size validation in some situations. A physically proximate attacker could use this to craft a malicious USB device that when inserted, could cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2023-1380) Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock). (CVE-2023-2612)

Affected Systems

  • ubuntulinux

    < 5.15.0-73.80

  • ubuntulinux-aws

    < 5.15.0-1037.41

  • ubuntulinux-aws-5.15

    < 5.15.0-1037.41~20.04.1

  • ubuntulinux-azure

    < 5.15.0-1039.46

  • ubuntulinux-azure-5.15

    < 5.15.0-1039.46~20.04.1

  • ubuntulinux-gcp

    < 5.15.0-1035.43

  • ubuntulinux-gcp-5.15

    < 5.15.0-1035.43~20.04.1

  • ubuntulinux-gke

    < 5.15.0-1034.39

  • ubuntulinux-gke-5.15

    < 5.15.0-1034.39~20.04.1

  • ubuntulinux-gkeop

    < 5.15.0-1021.26

  • ubuntulinux-hwe-5.15

    < 5.15.0-73.80~20.04.1

  • ubuntulinux-hwe-5.19

    < 5.19.0-43.44~22.04.1

  • ubuntulinux-ibm

    < 5.15.0-1031.34

  • ubuntulinux-kvm

    < 5.15.0-1034.39

  • ubuntulinux-lowlatency

    < 5.15.0-73.80

  • ubuntulinux-lowlatency-hwe-5.15

    < 5.15.0-73.80~20.04.1

  • ubuntulinux-oracle

    < 5.15.0-1036.42

  • ubuntulinux-oracle-5.15

    < 5.15.0-1036.42~20.04.1

References (6)