Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-2612: CVE-2023-2612 | Ubuntu

Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock).

CVE
#ubuntu#linux#debian#dos#git#oracle#intel#ibm#dell

linux
Launchpad, Ubuntu, Debian bionic Needs triage
focal Needs triage
jammy Needs triage
kinetic Needs triage
lunar Needs triage
trusty Needs triage
upstream Needs triage
xenial Needs triage
Patches:
Introduced by

local-CVE-2023-2612-break

Fixed by local-CVE-2023-2612
ubuntu: https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/kinetic/commit/?id=02b47547824b1cd0d55c6744f91886f04de8947e
linux-aws
Launchpad, Ubuntu, Debian bionic Needs triage
focal Needs triage
jammy Needs triage
kinetic Needs triage
lunar Needs triage
trusty Needs triage
upstream Needs triage
xenial Needs triage
linux-aws-5.0
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-aws-5.3)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-aws-5.11
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-aws-5.13)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-aws-5.13)
xenial Does not exist
linux-aws-5.13
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-aws-5.15)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-aws-5.15)
xenial Does not exist
linux-aws-5.15
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-aws-5.3
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-aws-5.4)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-aws-5.4)
xenial Does not exist
linux-aws-5.4
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-aws-5.8
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-aws-5.11)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-aws-5.11)
xenial Does not exist
linux-aws-hwe
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Needs triage
linux-azure
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-azure-5.3)
focal Needs triage
jammy Needs triage
kinetic Needs triage
lunar Needs triage
trusty Needs triage
upstream Needs triage
xenial Needs triage
linux-azure-4.15
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-azure-5.11
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-azure-5.13)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-azure-5.13)
xenial Does not exist
linux-azure-5.13
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-azure-5.15)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-azure-5.15)
xenial Does not exist
linux-azure-5.15
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-azure-5.19
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Needs triage
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-azure-5.3
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-azure-5.4)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-azure-5.4)
xenial Does not exist
linux-azure-5.4
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-azure-5.8
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-azure-5.11)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-azure-5.11)
xenial Does not exist
linux-azure-edge
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-azure-5.3)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-azure-fde
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Needs triage
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-azure-fde-5.15
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-bluefield
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-dell300x
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-fips
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Ignored (out of standard support)
upstream Needs triage
xenial Ignored (out of standard support)
linux-gcp
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-gcp-5.3)
focal Needs triage
jammy Needs triage
kinetic Needs triage
lunar Needs triage
trusty Does not exist
upstream Needs triage
xenial Needs triage
linux-gcp-4.15
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-gcp-5.11
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-gcp-5.13)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-gcp-5.13)
xenial Does not exist
linux-gcp-5.13
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-gcp-5.15)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-gcp-5.15)
xenial Does not exist
linux-gcp-5.15
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-gcp-5.3
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-gcp-5.4)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-gcp-5.4)
xenial Does not exist
linux-gcp-5.4
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-gcp-5.8
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-gcp-5.11)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-gcp-5.11)
xenial Does not exist
linux-gke
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Needs triage
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Ignored (reached end of standard support)
linux-gke-4.15
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-gke-5.0
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-gke-5.3)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-gke-5.15
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-gke-5.3
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-gke-5.4)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-gke-5.4)
xenial Does not exist
linux-gke-5.4
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-gkeop
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Needs triage
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-gkeop-5.4
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-hwe
Launchpad, Ubuntu, Debian bionic Ignored (replaced by linux-hwe-5.4)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Needs triage
linux-hwe-5.11
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-hwe-5.13)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-hwe-5.13)
xenial Does not exist
linux-hwe-5.13
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-hwe-5.15)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-hwe-5.15)
xenial Does not exist
linux-hwe-5.15
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-hwe-5.19
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Needs triage
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-hwe-5.4
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-hwe-5.8
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-hwe-5.11)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-hwe-5.11)
xenial Does not exist
linux-hwe-edge
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-hwe-5.4)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Ignored (superseded by linux-hwe)
linux-ibm
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Needs triage
kinetic Needs triage
lunar Needs triage
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-ibm-5.4
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-intel-5.13
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-intel-iotg
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Needs triage
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-intel-iotg-5.15
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-kvm
Launchpad, Ubuntu, Debian bionic Needs triage
focal Needs triage
jammy Needs triage
kinetic Needs triage
lunar Needs triage
trusty Does not exist
upstream Needs triage
xenial Needs triage
linux-lowlatency
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Needs triage
kinetic Needs triage
lunar Needs triage
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-lowlatency-hwe-5.15
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-lowlatency-hwe-5.19
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Needs triage
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-lts-xenial
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Needs triage
upstream Needs triage
xenial Does not exist
linux-oem
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Ignored (superseded by linux-hwe)
linux-oem-5.10
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oem-5.13
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-oem-5.14)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-oem-5.14)
xenial Does not exist
linux-oem-5.14
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oem-5.17
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Released (5.17.0-1032.33)
kinetic Needs triage
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oem-5.6
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oem-6.0
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Released (6.0.0-1017.17)
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oem-6.1
Launchpad, Ubuntu, Debian bionic Does not exist
focal Does not exist
jammy Released (6.1.0-1013.13)
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oem-osp1
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oracle
Launchpad, Ubuntu, Debian bionic Needs triage
focal Needs triage
jammy Needs triage
kinetic Needs triage
lunar Needs triage
trusty Does not exist
upstream Needs triage
xenial Needs triage
linux-oracle-5.0
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-oracle-5.3)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oracle-5.11
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-oracle-5.13)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-oracle-5.13)
xenial Does not exist
linux-oracle-5.13
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oracle-5.15
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oracle-5.3
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-oracle-5.4)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-oracle-5.4)
xenial Does not exist
linux-oracle-5.4
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-oracle-5.8
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-oracle-5.11)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-oracle-5.11)
xenial Does not exist
linux-raspi
Launchpad, Ubuntu, Debian bionic Does not exist
focal Needs triage
jammy Needs triage
kinetic Needs triage
lunar Needs triage
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-raspi-5.4
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-raspi2
Launchpad, Ubuntu, Debian bionic Needs triage
focal Ignored (replaced by linux-raspi)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Ignored (end of standard support)
linux-raspi2-5.3
Launchpad, Ubuntu, Debian bionic Ignored (superseded by linux-raspi-5.4)
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-raspi2-5.4)
xenial Does not exist
linux-riscv
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-riscv-5.8)
jammy Needs triage
kinetic Needs triage
lunar Needs triage
trusty Does not exist
upstream Needs triage
xenial Does not exist
linux-riscv-5.11
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-riscv-5.13)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-riscv-5.13)
xenial Does not exist
linux-riscv-5.8
Launchpad, Ubuntu, Debian bionic Does not exist
focal Ignored (superseded by linux-riscv-5.11)
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Ignored (superseded by linux-riscv-5.11)
xenial Does not exist
linux-snapdragon
Launchpad, Ubuntu, Debian bionic Needs triage
focal Does not exist
jammy Does not exist
kinetic Does not exist
lunar Does not exist
trusty Does not exist
upstream Needs triage
xenial Ignored (end of standard support)

Related news

Ubuntu Security Notice USN-6256-1

Ubuntu Security Notice 6256-1 - Jiasheng Jiang discovered that the HSA Linux kernel driver for AMD Radeon GPU devices did not properly validate memory allocation in certain situations, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service. Zheng Wang discovered that the Intel i915 graphics driver in the Linux kernel did not properly handle certain error conditions, leading to a double-free. A local attacker could possibly use this to cause a denial of service.

Ubuntu Security Notice USN-6222-1

Ubuntu Security Notice 6222-1 - Jiasheng Jiang discovered that the HSA Linux kernel driver for AMD Radeon GPU devices did not properly validate memory allocation in certain situations, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service. Zheng Wang discovered that the Intel i915 graphics driver in the Linux kernel did not properly handle certain error conditions, leading to a double-free. A local attacker could possibly use this to cause a denial of service.

Ubuntu Security Notice USN-6186-1

Ubuntu Security Notice 6186-1 - Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Kernel Live Patch Security Notice LSN-0095-1

It was discovered that the OverlayFS implementation in the Linux kernel did not properly handle copy up operation in some conditions. A local attacker could possibly use this to gain elevated privileges. It was discovered that the Broadcom FullMAC USB WiFi driver in the Linux kernel did not properly perform data buffer size validation in some situations. A physically proximate attacker could use this to craft a malicious USB device that when inserted, could cause a denial of service (system crash) or possibly expose sensitive information. It was discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Various other issues were also addressed.

Ubuntu Security Notice USN-6175-1

Ubuntu Security Notice 6175-1 - Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-6150-1

Ubuntu Security Notice 6150-1 - Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-6135-1

Ubuntu Security Notice 6135-1 - Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-6132-1

Ubuntu Security Notice 6132-1 - Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-6131-1

Ubuntu Security Notice 6131-1 - Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-6127-1

Ubuntu Security Notice 6127-1 - Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-6124-1

Ubuntu Security Notice 6124-1 - Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Reima Ishii discovered that the nested KVM implementation for Intel x86 processors in the Linux kernel did not properly validate control registers in certain situations. An attacker in a guest VM could use this to cause a denial of service.

Ubuntu Security Notice USN-6123-1

Ubuntu Security Notice 6123-1 - Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Reima Ishii discovered that the nested KVM implementation for Intel x86 processors in the Linux kernel did not properly validate control registers in certain situations. An attacker in a guest VM could use this to cause a denial of service.

Ubuntu Security Notice USN-6122-1

Ubuntu Security Notice 6122-1 - Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907