USN-6496-1

Description

linux, linux-aws, linux-aws-5.15, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15, linux-raspi vulnerabilities Ivan D Barrera, Christopher Bednarz, Mustafa Ismail, and Shiraz Saleem discovered that the InfiniBand RDMA driver in the Linux kernel did not properly check for zero-length STAG or MR registration. A remote attacker could possibly use this to execute arbitrary code. (CVE-2023-25775) Yu Hao discovered that the UBI driver in the Linux kernel did not properly check for MTD with zero erasesize during device attachment. A local privileged attacker could use this to cause a denial of service (system crash). (CVE-2023-31085) Manfred Rudigier discovered that the Intel(R) PCI-Express Gigabit (igb) Ethernet driver in the Linux kernel did not properly validate received frames that are larger than the set MTU size, leading to a buffer overflow vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-45871)

Affected Systems

• ubuntu•linux

  < 5.15.0-89.99

• ubuntu•linux-aws

  < 5.15.0-1050.55

• ubuntu•linux-aws-5.15

  < 5.15.0-1050.55~20.04.1

• ubuntu•linux-hwe-5.15

  < 5.15.0-89.99~20.04.1

• ubuntu•linux-ibm

  < 5.15.0-1043.46

• ubuntu•linux-ibm-5.15

  < 5.15.0-1043.46~20.04.1

• ubuntu•linux-kvm

  < 5.15.0-1047.52

• ubuntu•linux-lowlatency

  < 5.15.0-89.99

• ubuntu•linux-lowlatency-hwe-5.15

  < 5.15.0-89.99~20.04.1

• ubuntu•linux-nvidia

  < 5.15.0-1041.41

• ubuntu•linux-oracle

  < 5.15.0-1048.54

• ubuntu•linux-oracle-5.15

  < 5.15.0-1048.54~20.04.1

• ubuntu•linux-raspi

  < 5.15.0-1043.46

References (4)

• https://ubuntu.com/security/notices/USN-6496-1
• https://ubuntu.com/security/CVE-2023-25775
• https://ubuntu.com/security/CVE-2023-31085
• https://ubuntu.com/security/CVE-2023-45871