USN-6246-1

Description

linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gke-5.15, linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-intel-iotg, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15, linux-raspi vulnerabilities It was discovered that the IP-VLAN network driver for the Linux kernel did not properly initialize memory in some situations, leading to an out-of- bounds write vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-3090) Mingi Cho discovered that the netfilter subsystem in the Linux kernel did not properly validate the status of a nft chain while performing a lookup by id, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-31248) Querijn Voet discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-3389) It was discovered that the netfilter subsystem in the Linux kernel did not properly handle some error conditions, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-3390) Lin Ma discovered that a race condition existed in the MCTP implementation in the Linux kernel, leading to a use-after-free vulnerability. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-3439) Tanguy Dubroca discovered that the netfilter subsystem in the Linux kernel did not properly handle certain pointer data type, leading to an out-of- bounds write vulnerability. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-35001)

Affected Systems

• ubuntu•linux

  < 5.15.0-78.85

• ubuntu•linux-aws

  < 5.15.0-1040.45

• ubuntu•linux-aws-5.15

  < 5.15.0-1040.45~20.04.1

• ubuntu•linux-azure

  < 5.15.0-1042.49

• ubuntu•linux-azure-5.15

  < 5.15.0-1042.49~20.04.1

• ubuntu•linux-azure-fde

  < 5.15.0-1042.49.1

• ubuntu•linux-azure-fde-5.15

  < 5.15.0-1042.49~20.04.1.1

• ubuntu•linux-gcp

  < 5.15.0-1038.46

• ubuntu•linux-gcp-5.15

  < 5.15.0-1038.46~20.04.1

• ubuntu•linux-gke

  < 5.15.0-1038.43

• ubuntu•linux-gke-5.15

  < 5.15.0-1038.43~20.04.1

• ubuntu•linux-gkeop

  < 5.15.0-1024.29

• ubuntu•linux-gkeop-5.15

  < 5.15.0-1024.29~20.04.1

• ubuntu•linux-hwe-5.15

  < 5.15.0-78.85~20.04.1

• ubuntu•linux-ibm

  < 5.15.0-1034.37

• ubuntu•linux-intel-iotg

  < 5.15.0-1036.41

• ubuntu•linux-kvm

  < 5.15.0-1038.43

• ubuntu•linux-lowlatency

  < 5.15.0-78.85

• ubuntu•linux-lowlatency-hwe-5.15

  < 5.15.0-78.85~20.04.1

• ubuntu•linux-nvidia

  < 5.15.0-1029.29

• ubuntu•linux-oracle

  < 5.15.0-1039.45

• ubuntu•linux-oracle-5.15

  < 5.15.0-1039.45~20.04.1

• ubuntu•linux-raspi

  < 5.15.0-1034.37

References (7)

• https://ubuntu.com/security/notices/USN-6246-1
• https://ubuntu.com/security/CVE-2023-3090
• https://ubuntu.com/security/CVE-2023-3389
• https://ubuntu.com/security/CVE-2023-3390
• https://ubuntu.com/security/CVE-2023-3439
• https://ubuntu.com/security/CVE-2023-31248
• https://ubuntu.com/security/CVE-2023-35001