Security
Headlines
HeadlinesLatestCVEs

Headline

Ubuntu Security Notice USN-5691-1

Ubuntu Security Notice 5691-1 - David Bouman and Billy Jheng Bing Jhong discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Soenke Huster discovered that an integer overflow vulnerability existed in the WiFi driver stack in the Linux kernel, leading to a buffer overflow. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code.

Packet Storm
#vulnerability#web#google#microsoft#amazon#ubuntu#linux#dos#oracle#perl#aws#buffer_overflow#ibm#wifi
==========================================================================Ubuntu Security Notice USN-5691-1October 19, 2022linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4,linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gke, linux-gkeop,linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle,linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTS- Ubuntu 18.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-azure: Linux kernel for Microsoft Azure Cloud systems- linux-bluefield: Linux kernel for NVIDIA BlueField platforms- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems- linux-gke: Linux kernel for Google Container Engine (GKE) systems- linux-gkeop: Linux kernel for Google Container Engine (GKE) systems- linux-ibm: Linux kernel for IBM cloud systems- linux-kvm: Linux kernel for cloud environments- linux-oracle: Linux kernel for Oracle Cloud systems- linux-raspi: Linux kernel for Raspberry Pi systems- linux-aws-5.4: Linux kernel for Amazon Web Services (AWS) systems- linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems- linux-gcp-5.4: Linux kernel for Google Cloud Platform (GCP) systems- linux-hwe-5.4: Linux hardware enablement (HWE) kernel- linux-ibm-5.4: Linux kernel for IBM cloud systems- linux-oracle-5.4: Linux kernel for Oracle Cloud systems- linux-raspi-5.4: Linux kernel for Raspberry Pi systemsDetails:David Bouman and Billy Jheng Bing Jhong discovered that a race conditionexisted in the io_uring subsystem in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denialof service (system crash) or possibly execute arbitrary code.(CVE-2022-2602)Sönke Huster discovered that an integer overflow vulnerability existed inthe WiFi driver stack in the Linux kernel, leading to a buffer overflow. Aphysically proximate attacker could use this to cause a denial of service(system crash) or possibly execute arbitrary code. (CVE-2022-41674)Sönke Huster discovered that the WiFi driver stack in the Linux kernel didnot properly perform reference counting in some situations, leading to ause-after-free vulnerability. A physically proximate attacker could usethis to cause a denial of service (system crash) or possibly executearbitrary code. (CVE-2022-42720)Sönke Huster discovered that the WiFi driver stack in the Linux kernel didnot properly handle BSSID/SSID lists in some situations. A physicallyproximate attacker could use this to cause a denial of service (infiniteloop). (CVE-2022-42721)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS:   linux-image-5.4.0-1036-ibm      5.4.0-1036.41   linux-image-5.4.0-1049-bluefield  5.4.0-1049.55   linux-image-5.4.0-1056-gkeop    5.4.0-1056.60   linux-image-5.4.0-1073-raspi    5.4.0-1073.84   linux-image-5.4.0-1078-kvm      5.4.0-1078.84   linux-image-5.4.0-1086-gke      5.4.0-1086.93   linux-image-5.4.0-1086-oracle   5.4.0-1086.95   linux-image-5.4.0-1088-aws      5.4.0-1088.96   linux-image-5.4.0-1092-gcp      5.4.0-1092.101   linux-image-5.4.0-1094-azure    5.4.0-1094.100   linux-image-5.4.0-131-generic   5.4.0-131.147   linux-image-5.4.0-131-generic-lpae  5.4.0-131.147   linux-image-5.4.0-131-lowlatency  5.4.0-131.147   linux-image-aws-lts-20.04       5.4.0.1088.87   linux-image-azure-lts-20.04     5.4.0.1094.90   linux-image-bluefield           5.4.0.1049.47   linux-image-gcp-lts-20.04       5.4.0.1092.96   linux-image-generic             5.4.0.131.131   linux-image-generic-lpae        5.4.0.131.131   linux-image-gke                 5.4.0.1086.93   linux-image-gke-5.4             5.4.0.1086.93   linux-image-gkeop               5.4.0.1056.56   linux-image-gkeop-5.4           5.4.0.1056.56   linux-image-ibm                 5.4.0.1036.64   linux-image-ibm-lts-20.04       5.4.0.1036.64   linux-image-kvm                 5.4.0.1078.74   linux-image-lowlatency          5.4.0.131.131   linux-image-oem                 5.4.0.131.131   linux-image-oem-osp1            5.4.0.131.131   linux-image-oracle-lts-20.04    5.4.0.1086.82   linux-image-raspi               5.4.0.1073.105   linux-image-raspi2              5.4.0.1073.105   linux-image-virtual             5.4.0.131.131Ubuntu 18.04 LTS:   linux-image-5.4.0-1036-ibm      5.4.0-1036.41~18.04.1   linux-image-5.4.0-1073-raspi    5.4.0-1073.84~18.04.1   linux-image-5.4.0-1086-oracle   5.4.0-1086.95~18.04.1   linux-image-5.4.0-1088-aws      5.4.0-1088.96~18.04.1   linux-image-5.4.0-1092-gcp      5.4.0-1092.101~18.04.1   linux-image-5.4.0-1094-azure    5.4.0-1094.100~18.04.1   linux-image-5.4.0-131-generic   5.4.0-131.147~18.04.1   linux-image-5.4.0-131-generic-lpae  5.4.0-131.147~18.04.1   linux-image-5.4.0-131-lowlatency  5.4.0-131.147~18.04.1   linux-image-aws                 5.4.0.1088.67   linux-image-azure               5.4.0.1094.70   linux-image-gcp                 5.4.0.1092.70   linux-image-generic-hwe-18.04   5.4.0.131.147~18.04.108   linux-image-generic-lpae-hwe-18.04  5.4.0.131.147~18.04.108   linux-image-ibm                 5.4.0.1036.49   linux-image-lowlatency-hwe-18.04  5.4.0.131.147~18.04.108   linux-image-oem                 5.4.0.131.147~18.04.108   linux-image-oem-osp1            5.4.0.131.147~18.04.108   linux-image-oracle              5.4.0.1086.95~18.04.62   linux-image-raspi-hwe-18.04     5.4.0.1073.72   linux-image-snapdragon-hwe-18.04  5.4.0.131.147~18.04.108   linux-image-virtual-hwe-18.04   5.4.0.131.147~18.04.108After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://ubuntu.com/security/notices/USN-5691-1   CVE-2022-2602, CVE-2022-41674, CVE-2022-42720, CVE-2022-42721Package Information:   https://launchpad.net/ubuntu/+source/linux/5.4.0-131.147   https://launchpad.net/ubuntu/+source/linux-aws/5.4.0-1088.96   https://launchpad.net/ubuntu/+source/linux-azure/5.4.0-1094.100   https://launchpad.net/ubuntu/+source/linux-bluefield/5.4.0-1049.55   https://launchpad.net/ubuntu/+source/linux-gcp/5.4.0-1092.101   https://launchpad.net/ubuntu/+source/linux-gke/5.4.0-1086.93   https://launchpad.net/ubuntu/+source/linux-gkeop/5.4.0-1056.60   https://launchpad.net/ubuntu/+source/linux-ibm/5.4.0-1036.41   https://launchpad.net/ubuntu/+source/linux-kvm/5.4.0-1078.84   https://launchpad.net/ubuntu/+source/linux-oracle/5.4.0-1086.95   https://launchpad.net/ubuntu/+source/linux-raspi/5.4.0-1073.84   https://launchpad.net/ubuntu/+source/linux-aws-5.4/5.4.0-1088.96~18.04.1   https://launchpad.net/ubuntu/+source/linux-azure-5.4/5.4.0-1094.100~18.04.1   https://launchpad.net/ubuntu/+source/linux-gcp-5.4/5.4.0-1092.101~18.04.1   https://launchpad.net/ubuntu/+source/linux-hwe-5.4/5.4.0-131.147~18.04.1   https://launchpad.net/ubuntu/+source/linux-ibm-5.4/5.4.0-1036.41~18.04.1   https://launchpad.net/ubuntu/+source/linux-oracle-5.4/5.4.0-1086.95~18.04.1   https://launchpad.net/ubuntu/+source/linux-raspi-5.4/5.4.0-1073.84~18.04.1

Related news

Red Hat Security Advisory 2024-1188-03

Red Hat Security Advisory 2024-1188-03 - An update for kernel is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Issues addressed include code execution, denial of service, memory leak, out of bounds read, out of bounds write, and use-after-free vulnerabilities.

Red Hat Security Advisory 2023-3495-01

Red Hat Security Advisory 2023-3495-01 - Logging Subsystem 5.7.2 - Red Hat OpenShift. Issues addressed include cross site scripting and denial of service vulnerabilities.

RHSA-2023:3495: Red Hat Security Advisory: Logging Subsystem 5.7.2 - Red Hat OpenShift security update

Logging Subsystem 5.7.2 - Red Hat OpenShift Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-41723: A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests. * CVE-2023-27539: A denial of service vulnerability was found in rubygem-rack in how it parses headers. A carefully crafted input can cause header parsing to take an unexpe...

Red Hat Security Advisory 2023-3356-01

Red Hat Security Advisory 2023-3356-01 - Red Hat Advanced Cluster Management for Kubernetes 2.5.9 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which fix several bugs.

Red Hat Security Advisory 2023-3326-01

Red Hat Security Advisory 2023-3326-01 - Red Hat Advanced Cluster Management for Kubernetes 2.6.6 images. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which fix several bugs.

CVE-2023-23694: DSA-2023-071: Dell VxRail Security Update for Multiple Third-Party Component Vulnerabilities – 7.0.450

Dell VxRail versions earlier than 7.0.450, contain(s) an OS command injection vulnerability in VxRail Manager. A local authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. Exploitation may lead to a system take over by an attacker.

RHSA-2023:2736: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-26341: A flaw was found in hw. This issue can cause AMD CPUs to transiently execute beyond unconditional direct branches. * CVE-2021-33655: An out-of-bounds write flaw was found in the Linux kernel’s framebuffer-based console driver functionality in the way a user triggers ioctl FBIOPUT_VSCREENINFO with malicious data. This flaw allows a local user t...

Red Hat Security Advisory 2023-2148-01

Red Hat Security Advisory 2023-2148-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include buffer overflow, bypass, denial of service, double free, memory leak, null pointer, out of bounds read, privilege escalation, traversal, and use-after-free vulnerabilities.

RHSA-2023:2458: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-26341: A flaw was found in hw. This issue can cause AMD CPUs to transiently execute beyond unconditional direct branches. * CVE-2021-33655: An out-of-bounds write flaw was found in the Linux kernel’s framebuffer-based console driver functionality in the way a user triggers ioctl FBIOPUT_VSCREENINFO with malicious data. This flaw allows a local user to c...

RHSA-2023:2148: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2021-26341: A flaw was found in hw. This issue can cause AMD CPUs to transiently execute beyond unconditional direct branches. * CVE-2021-33655: An out-of-bounds write flaw was found in the Linux kernel’s framebuffer-based console driver functionality in the way a user triggers ioctl FBIOPUT_VSCREENINFO with malicious data. This flaw allows a local user t...

CVE-2022-20235: Android Security Bulletin—January 2023  |  Android Open Source Project

The PowerVR GPU kernel driver maintains an "Information Page" used by its cache subsystem. This page can only be written by the GPU driver itself, but prior to DDK 1.18 however, a user-space program could write arbitrary data to the page, leading to memory corruption issues.Product: AndroidVersions: Android SoCAndroid ID: A-259967780

Google patches 60 vulnerabilities in first Android update of 2023

Categories: Android Categories: News Tags: 2023-01-01 Tags: 2023-01-05 Tags: Google Tags: Android Tags: CVE-2022-42719 Tags: CVE-2022-42720 Tags: CVE-2022-42721 Tags: mac80211 Tags: CVE-2022-41674 Tags: Qualcomm Tags: CVE-2022-22088 Google has published its first security bulletin of 2023 with details of vulnerabilities affecting Android devices. It includes fixes for 60 security issues. (Read more...) The post Google patches 60 vulnerabilities in first Android update of 2023 appeared first on Malwarebytes Labs.

Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs

Hello everyone! Great news for my open source Scanvus project! You can now perform vulnerability checks on Linux hosts and docker images not only using the Vulners.com API, but also with the Vulns.io VM API. It’s especially nice that all the code to support the new API was written and contributed by colleagues from Vulns.io. […]

CVE-2022-41802: en/security-disclosure/2022/2022-12.md · OpenHarmony/security - Gitee.com

Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernel_liteos_a has a kernel stack overflow vulnerability when call SysClockGetres. 4 bytes padding data from kernel stack are copied to user space incorrectly and leaked.

Ubuntu Security Notice USN-5752-1

Ubuntu Security Notice 5752-1 - David Bouman and Billy Jheng Bing Jhong discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Soenke Huster discovered that an integer overflow vulnerability existed in the WiFi driver stack in the Linux kernel, leading to a buffer overflow. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code.

Kernel Live Patch Security Notice LSN-0090-1

David Bouman discovered that the netfilter subsystem in the Linux kernel did not properly validate passed user register indices. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. David Bouman and Billy Jheng Bing Jhong discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Various other issues were also addressed.

Ubuntu Security Notice USN-5708-1

Ubuntu Security Notice 5708-1 - Soenke Huster discovered that an integer overflow vulnerability existed in the WiFi driver stack in the Linux kernel, leading to a buffer overflow. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code. Soenke Huster discovered that a use-after-free vulnerability existed in the WiFi driver stack in the Linux kernel. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-5700-1

Ubuntu Security Notice 5700-1 - David Bouman and Billy Jheng Bing Jhong discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Soenke Huster discovered that an integer overflow vulnerability existed in the WiFi driver stack in the Linux kernel, leading to a buffer overflow. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code.

Ubuntu Security Notice USN-5693-1

Ubuntu Security Notice 5693-1 - David Bouman and Billy Jheng Bing Jhong discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Duoming Zhou discovered that race conditions existed in the timer handling implementation of the Linux kernel's Rose X.25 protocol layer, resulting in use-after-free vulnerabilities. A local attacker could use this to cause a denial of service.

Debian Security Advisory 5257-1

Debian Linux Security Advisory 5257-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.

Debian Security Advisory 5257-1

Debian Linux Security Advisory 5257-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.

Debian Security Advisory 5257-1

Debian Linux Security Advisory 5257-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.

Debian Security Advisory 5257-1

Debian Linux Security Advisory 5257-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.

CVE-2022-42720: Invalid Bug ID

Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to trigger use-after-free conditions to potentially execute code.

CVE-2022-42721

A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to corrupt a linked list and, in turn, potentially execute code.

CVE-2022-41674: git/torvalds/linux.git - Linux kernel source tree

An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_info_update function in net/mac80211/scan.c.

Packet Storm: Latest News

Zeek 6.0.9